My Oracle Support Banner

Oracle Access Manager How To Pre-Fetch User Attributes Used In Responses Or Attribute Conditions (Doc ID 1510124.1)

Last updated on MAY 24, 2022

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Goal

This note describes how to configure Oracle Access Manager ( OAM ) to pre-fetch LDAP user attributes.

Authentication and Authorization Responses in OAM could be defined based on user attributes. Further OAM 11.1.2 provides the option to configure attribute conditions in authorization policies.  The OAM server executes additional ldapsearch operations to get the attribute values from the LDAP server. Attribute conditions and responses could be configured in different authentication or authorization policies. For this reason the OAM server performs multiple ldapsearch operations dependent from the number of different attributes configured in responses or attribute conditions. If the OAM server executes a response or attribute condition and the LDAP attribute is not found in the cache, a ldapsearch is executed. The user attributes are cached for reuse.  If the OAM server generates a response or executes an attribute condition and the LDAP attribute is not found in the cache, an additional ldapsearch is executed. 

 

 

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.