My Oracle Support Banner

OUD 12c - Steps to Configure Two Replicated OUD Proxy Instances for a High Availability (HA) EUS Configuration (Using PDB) Against ODSEE Replicated Instances (Doc ID 2660680.1)

Last updated on MAY 04, 2023

Applies to:

Oracle Unified Directory - Version 12.2.1.4.0 and later
Information in this document applies to any platform.

Goal

This KM doc goes over the steps to configure High Availability (HA)/Replication Between OUD Proxy Instances Used for EUS (PDB) Authentication Against ODSEE Replicated Instances using -
ODSEE 11.1.1.7.0
OUD Proxy 12.2.1.4.0
Pluggable DB 12.2.0.1.0

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Goal
Solution
 1) Create ODSEE Instances and Configure Suffixes / Replication
 
2) Create OUD Proxy 1
 
3) Run netca - Creating the ldap.ora Configuration
 
3) Run DBCA and Select "Manage Pluggable Databases" (to register a PDB)
 
4) Create Shared Schema on PDB / Grant Connect / Check ldap_directory_access
 
5) Modify the Root User's Password Storage Scheme to AES
 
6) Modify the Root User's to Store the Password in AES
 
7) Configure TLS for LDAPS Connection Handler
 
8) Create Schema Mapping Using eusm
 
9) Check EUS config under cn=Common,cn=Products,cn=OracleContext,<SUFFIX_DN>
 
10) Testing EUS authentication
 
= ORA-01017 when running sqlplus to authenticate & result=53 (in OUD access log)
 
= Configure "use-specific-identity" for client-cred-mode for the Proxy Workflow Element
 
= Proxy Access Log when Authentication Successful -
 
11) Create 2nd OUD Proxy Instance with EUS Integration pointing at the same two ODSEE instances
 
12) Modify OUD Proxy 2 Configuration
 
13) Configure replication between OUD Proxy instances
 
a) Use "dsreplication enable" to enable replication on OUD Proxy 1 and OUD Proxy 2
 
b) Use "dsreplication initialize" to bring the contents of both suffixes from OUD Proxy1 to OUD Proxy 2
 
14) Check that OUD Proxy 2 has been initialized and replication is working
 
15) Add Second OUD Proxy Instance to ldap.ora
 
16) Test without shutting down OUD Proxy instances
 
17) Test failover to OUD Proxy 2
 

18) Test failover to OUD Proxy 1
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.