LibOVD - How to map attributes from external Ldap in different attributes for Webcenter Portal? (Doc ID 2179247.1)

Last updated on SEPTEMBER 06, 2016

Applies to:

Oracle Platform Security for Java - Version 11.1.1.9.0 and later
Oracle Virtual Directory - Version 11.1.1.9.0 and later
Oracle WebCenter Portal - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Goal

How to map attributes from external Ldap in different attributes for Webcenter Portal?

For example in Fax have the Telephone attribute value?

After enable Libovd debug in these file => $DOMAIN_NAME/config/fmwconfig/servers/$SERVER_NAME/logging.xml
Adding the next lines:

     <logger name='oracle.ods.virtualization' level='TRACE:32'>
        <handler name='odl-handler'/>
     </logger>


Seeing in  => AdminServer-diagnostic.log

1- I can see the attributes mapped

[2016-08-19T12:23:44.800-06:00] [AdminServer] [TRACE] [] [oracle.ods.virtualization] [tid: [ACTIVE].ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: weblogic] [ecid: 0748ef5c9c548c60:-7e135f78:156a4087fe2:-8000-0000000000000090,0] [APP: oracle.security.apm#11.1.1.3.0] [DSID: 0000LQ^2kJSATO25vr_AiX1Nhorn000005] [SRC_CLASS: oracle.ods.virtualization.engine.util.VDELogger] [SRC_METHOD: debug] LibOVD initialized with below in-memory configuration: [[
LibOVD Configurations for Application Name: default
--------------------------------------------
TrustManagerProviderConfig Name: BlindTrustManager
TrustManagerProviderConfig Enabled: false
TrustManagerProviderConfig Name: FileTrustManager
TrustManagerProviderConfig Enabled: true
FileTrustManagerProviderConfig: /opt/oracle/Middleware/MW_HOME/user_projects/domains/oes_domain/config/fmwconfig/ovd/default/keystores/adapters.jks
TrustManagerProviderConfig Name: KSSTrustManager
TrustManagerProviderConfig Enabled: false
KSSTrustManagerProviderConfig.
KeyManagerProviderConfig Name: FileKeyManager
KeyManagerProviderConfig Enabled: true
FileKeyManagerProviderConfig: /opt/oracle/Middleware/MW_HOME/user_projects/domains/oes_domain/config/fmwconfig/ovd/default/keystores/adapters.jks
KeyManagerProviderConfig Name: KSSKeyManager
KeyManagerProviderConfig Enabled: false
KSSKeyManagerProviderConfig App Name: libovd
KSSKeyManagerProviderConfig KeyStore Name: adapters
Mapping Config Name: idxuserrole
Rule Direction: inbound
Rule Source Attribute: firstname
Rule Destination Attribute: givenname
Rule Direction: outbound
Rule Source Attribute: givenname
Rule Destination Attribute: firstname
Rule Direction: inbound
Rule Source Attribute: lastname

.............

2-The complete attributes from Ldap

[2016-08-19T12:24:15.568-06:00] [AdminServer] [NOTIFICATION] [LIBOVD-20043] [oracle.ods.virtualization.accesslog] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: weblogic] [ecid: 0748ef5c9c548c60:-7e135f78:156a4087fe2:-8000-0000000000000186,0] [APP: oracle.security.apm#11.1.1.3.0] [DSID: 0000LQ^2kJSATO25vr_AiX1Nhorn000005] conn=2 op=1 SRCH base= scope=sub filter=(&(objectclass=person)(|(commonname=*)(displayname;lang-en-US=*))) requestedAttributes=[uid, postalcode, wirelessacctnumber, manager, visible, street, dateofbirth, defaultgroup, uniquename, orgunit, timezone, employeenumber, activestartdate, initials, description, description;lang-en-US, maidenname, gender, localityname, objectclass, middlename, fax, homeaddress, country, preferredlanguage, pobox, tenantuid, mobile, hiredate, uiaccessmode, department, state, lastname, org, employeetype, title, tenantguid, usernameattr, tenantuniquename, homephone, pager, activeenddate, mail, usernameattr, firstname, guid, postaladdress, commonname, generationqualifier, telephone, displayname, displayname;lang-en-US] sizelimit=301 timelimit=0 typesOnly=false

 ...

3-The access logs at  Ldap shows that sending all attributes requested

[19/Aug/2016:12:23:45 -0600] SEARCH REQ conn=3 op=1 msgID=2 base="dc=example,dc=com" scope=sub filter="(&(uid=weblogic)(objectclass=person))" attrs="mail,sn,cn,description,usernameattr,givenname,loginid,objectclass,displayname,orclmttenantguid,preferredlanguage,orcltimezone,ou,maiden_name,telephonenumber,postofficebox,employeetype,user_certificate,c,street,date_of_hire,ui_access_mode,orclmtuid,manager,jpegphoto,o,wireless_acct_number,userpassword,pager,departmentnumber,homephone,st,orclmttenantuname,mobile,generationqualifier,initials,postaladdress,employeenumber,date_of_birth,middle_name,default_group,homepostaladdress,postalcode,l,title,facsimiletelephonenumber,nsUniqueID,uid"
...


4-The AdminServer-diagnostic.log it is visible the user all values

2016-08-19T12:24:16.512-06:00] [AdminServer] [TRACE] [] [oracle.ods.virtualization] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: weblogic] [ecid: 0748ef5c9c548c60:-7e135f78:156a4087fe2:-8000-0000000000000186,0] [APP: oracle.security.apm#11.1.1.3.0] [DSID: 0000LQ^2kJSATO25vr_AiX1Nhorn000005] [SRC_CLASS: oracle.ods.virtualization.engine.util.VDELogger] [SRC_METHOD: debug] Entry to be returned: uid=abarnes,ou=People,dc=example,dc=com[[
initials: AB
l: Santa Clara
loginid: abarnes
sn: Barnes
ou: Payroll
mail: abarnes@example.com
displayname: annebar
orclGUID: e2e8cb75-44ff32b3-9db9a300-d635bbf9
mobile: 123456789
givenname: Anne-Louise
uid: abarnes
groupnameattr: Anne-Louise Barnes
usernameattr: abarnes
cn: Anne-Louise Barnes
telephonenumber: +1 408 555 9445
title: ms
objectclass: person
objectclass: organizationalPerson
objectclass: inetOrgPerson
objectclass: top
facsimileTelephoneNumber: +1 408 555 4661
]]

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms