How to Delegate Access or Privileges to Realm Administrators / Admin Users in OID 11g to Manage Users and Groups (Similar to 10g OIDDAS Delegation)? (Doc ID 2237510.1)

Last updated on SEPTEMBER 28, 2017

Applies to:

Oracle Internet Directory - Version 11.1.1 and later
Information in this document applies to any platform.

Goal

How to assign privileges and grant access to custom administrator accounts / admin users in Oracle Internet Directory (OID) 11g, similar to delegated privileges that were available in 10g Oracle Internet Directory Delegated Administration Services (OIDDAS)?

Note: Without these required privileges, attempting to manage a user in OID via Oracle Directory Services Manager (ODSM) fails with error, for example:

Modify Failed. Host='<hostname>' Details: [LDAP: error code 50 - Insufficient Access Rights]

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms