Oracle by Example brandingConfiguring Oracle Unified Directory for OAM 12c

section 0Before You Begin

This tutorial shows you how to install and configure Oracle Unified Directory (OUD) for use with Oracle Access Management 12c. This tutorial takes approximately 15 minutes to complete.

This is the fifth tutorial in the series Getting Started with Oracle Access Management 12c. Read them sequentially.


Background

By default Oracle Access Management 12c uses the WLS Embedded LDAP server to store identity information such as users and groups. Alternatively you can store this identity information in another LDAP Server such as Oracle Unified Directory. If you prefer to use the WLS Embedded LDAP server then skip this OBE.

What Do You Need?

  • An environment with:
    • At least 16 GB of physical memory
    • Oracle Enterprise Linux 6.6 or later with access to the Internet
    • oracle and root credentials
  • A basic understanding of Linux

section 1Download the Oracle Unified Directory Software

  1. In a browser, go to the Oracle Technology Network download page for Identity Management 12c PS3 (12.2.1.3.0).
  2. Accept the license agreement and download the Oracle Unified Directory (12.2.1.3.0) software, File 1, highlighted in the illustration:

    Identity and Access Management Downloads page
    Description

  3. After the download is complete, move the fmw_12.2.1.3.0_oud_linux64_Disk1_1of1.zip to /stage and unzip it.

section 2Install Oracle Unified Directory in Standalone Mode

  1. Launch a terminal window as oracle and enter the following command:
    java -jar fmw_12.2.1.3.0_oud_generic.jar
  2. Follow the table below to guide you through the installation screens:
    Step Window Description Choices or Values
    1. Welcome Click Next
    2. Auto Updates Skip Auto Updates
    3. Installation Location Oracle Home: /u01/app/oracle/product/middleware/oud
    4. Installation Type Standalone Oracle Unified Directory Server (Managed independently of WebLogic Server)
    5. Prerequisite Checks Click Next
    6. Installation Summary Click Install
    7. Installation Progress Click Next
    8. Installation Complete Click Finish

section 3Configure Oracle Unified Directory

  1. Launch a terminal window as oracle and enter the following command:
    cd /u01/app/oracle/product/middleware/oud/oud
    ./oud-setup
  2. Follow the table below to guide you through the configuration screens:
    Step Window Description Choices or Values
    1. Welcome Click Next
    2. Server Administration Settings Instance Path: /u01/app/oracle/product/middleware/oud/asinst_1/OUD
    Host Name: oam.example.com
    Password: Welcome1
    Confirm Password: Welcome1
    3. Ports Select Checkbox: LDAPS: Enable on Port
    4. Topology Options Select: This will be a standalone server
    5. Directory Data Select: Leave Database Empty
    6. Oracle Components Integration Click Next
    7. Server Tuning Click Next
    8. Review Click Finish
    9. Finished Click Close

Note: Oracle Unified Directory will automatically start after the configuration wizard has completed. For information on stopping and starting Oracle Unified Directory see: 15. Starting and Stopping the Server.


section 4Import Sample Identity Data

                In this section you import sample identity data including some users and groups.
  1. Download the example.ldif file and move the file to /stage.
  2. Launch a terminal window as oracle and run the following command to populate the oud1 directory server with sample data:

    cd /u01/app/oracle/product/middleware/oud/asinst_1/OUD/bin
    ./ldapmodify -p 1389 -D "cn=Directory Manager" -w Welcome1 -a -c -f /stage/example.ldif

section 5Configure OUD as the Identity Store in OAM

  1. Launch a browser and login to the OAM Console (http://oam.example.com:7001/oamconsole) as weblogic/Welcome1.
  2. Click the Configuration tab (top right), then click User Identity Stores. Click Create in the OAM ID Stores section.
  3. Specify the values as shown:
    • Store Name: OUD Store
    • Store Type: OUD: Oracle Unified Directory
    • Location: oam.example.com:1389
    • Bind DN: cn=Directory Manager
    • Password: Welcome1
    • Login ID Attribute: uid
    • User Password Attribute : userPassword
    • User Search Base: ou=People,dc=example,dc=com
    • Group Name Attribute: cn
    • Group Search Base: ou=Groups, dc=example, dc=com
  4. Click Test Connection. Assuming the connection works, click OK in the Connection Status window.
  5. Click Apply to save the definition.
  6. Access the User Identity Stores tab, and set Default Store to OUD_Store, and then Click Apply.
  7. Click Application Security, and then Authentication Modules under the Plug-ins tile.
  8. Click Create > Create LDAP Authentication Module. Enter the following values and click Apply:
    • Name: LDAPOverOUD
    • User Identity Store: OUD_Store
  9. Click the Launch Pad tab, and click the Authentication Schemes link in the Access Manger tile. In the Search Authentication Schemes page, click Search. Select the LDAPScheme row in the search result and click Edit.
    In the LDAPScheme, click Duplicate. It creates a new scheme with the name 'Copy of LDAP Scheme'. Change this scheme as follows, and then click Apply.
    • Name: LDAPOUDScheme
    • Description: LDAP Scheme Over OUD
    • Authentication Module: LDAPOverOUD
  10. Click Set As Default and then click OK in the confirmation pop-up.


next stepNext Tutorial

Install and Configure Oracle HTTP Server 12c