Enterprise User Security (EUS) with Active Directory (AD) Integration Using OUD Proxy
(Doc ID 1571196.1)
Last updated on MAY 18, 2023
Applies to:
Oracle Unified Directory - Version 11.1.2.1.0 and laterInformation in this document applies to any platform.
Goal
The goal of this document is to describe all the steps necessary to configure Enterprise User Security (EUS) with user entries stored in Active Directory (AD) when a connection between EUS/Oracle Database has been made using OUD proxy using password authentication to AD.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Goal |
| Solution |
| Prerequisites |
| 1) Installation of AD OIDPWDCN.DLL plugin |
| 1.1) Update AD Schema |
| 1.2) Downloading and copying OIDPWDCN.DLL |
| 1.3) Updating the Key registry |
| 1.4) Allowing Anonymous Bind on Active Directory |
| 1.4.1) Case where Anonymous Bind is required |
| 1.4.2) Case where anonymous bind is not required |
| 1.5) Verification |
2) Creating OUD Proxy Instance |
| 2.1) Run oud-proxy-setup |
| 2.2) Post-Configuration Steps - After Creating the OUD Proxy Instance |
| 2.3) Update the realm information in the OUD configuration |
3) Using netca |
| 3.2) Troubleshooting netca |
4) Running dbca |
| 4.1) Running dbca (screenshots) |
| 4.2) Troubleshooting dbca |
| 5) EM and DB preparation for LDAP connection |
| 5.1) Connection between DB and LDAP server need to be set to PASSWORD |
| 5.2) Creating a Shared Schema in the Database |
| 5.3) Create New User Schema Mapping |
| Using EUSM |
| Using EM |
| 5.4) EM Contribution verification |
| 5.4.1 Check cn=mapping0 |
| 5.4.2 Checking cn=Common |
| 5.4.3 Troubleshooting EM /EUSM contribution |
| 6) Update of orclCommonNicknameAttribute |
| 7) Run sqlplus connection as normal user1 |
| 7.1) Run sqlplus connection as user1 |
| 7.2) OUD access log trace |
| 8) Debugging |
9) References |
| References |