Home
> Identity Manager, Oracle MiddleWare > Oracle Internet Directory (OID) Synchronization with Active Directory for Enterprise User Security – Part 1
Oracle Internet Directory (OID) Synchronization with Active Directory for Enterprise User Security – Part 1
This blog post outlines the step-by-step configurations to be made at Active Directory (AD) side and on the Oracle Internet Directory (OID) for the synchronization of identities from Active Directory to OID. Intentionally I split it into multiple blog posts for the configuration…
Following are the salient features of this integration:
- Synchronization is only from Active Directory to OID i.e. changes made at OID will not be reflected on Active Directory
- Create of a new user in the Active Directory would be reflected on to OID
- For the synchronization to start, Administrator has to trigger a change password request for all the users of interest
High-Level Configurations to be made on Active Directory:
- Install Oracle Password Filter, with comes with Oracle Identity Management 11gR2 Patch.
- If AD machine is 64 bit then go into Utils –> adpwdfilter –> 64 bit –>setup.exe
- If AD machine is 32 bit then go into Utils –> adpwdfilter –> setup.exe
- Create SSL connection between OID and AD, with OID as server and AD as client. Add certificate of OID into AD’s trust store
High-Level Configuration to be made on OID:
- Configure a new OID instance (don’t disturb the default OID instance that runs on 3060)
- Configure SSL Authentication Server Mode:2 for the newly created OID instance
- Configure synchronization profile using Oracle Directory Integration Platform
- Test the synchronization profile to see that uid and userpassword attributes are replicated at OID
High-Level design diagram for Active Directory – Oracle Internet Directory one-way synchronization:
Next blog post is about how to configure new OID Instance
Advertisements
Categories: Identity Manager, Oracle MiddleWare
Tags: OID-AD synchronization, Oracle IAM
Comments (0)
Trackbacks (0)
Leave a comment
Trackback
Recent Posts
Categories
- About Me (1)
- General (79)
- Algorithms (5)
- Apache Ant (7)
- kubernetes (1)
- Oracle MiddleWare (28)
- Identity Manager (18)
- Oracle Database (3)
- WebLogic (9)
- Product Marketing Management (3)
- Security (54)
- Information Security (16)
- Log Management (3)
- Openstack (1)
- SAML (6)
- Technology (25)
- web services (5)
- Weblogic (3)
- Writer in me… (3)
Top Posts
- Weblogic Error : unable to get file lock, will retry ...
- How many books can you store in 1 GB hard drive?
- Synchronization of Identities from Active Directory to Oracle Internet Directory for Enterprise User Security
- SAML2 Assertion is not yet valid (NotBefore condition)
- Oracle Access Manager Brief Intro
- Java Sample Client – Oracle Access Manager API – OAMAuthnCookie Validator
- Ant foreach Directory traversal
- OpenStack Barbican & HSM Flow
- How to detect Windows Server Unexpected System Shutdown
- Tomcat 2 way SSL Configuration (Step-by-Step)
Hits so far...
- 136,816 hits
Advertisements