Oracle® Identity Management Integration Guide
10g Release 2 (10.1.2) B14085-02 |
|
Previous |
Next |
This section lists and describes the windows and fields you use when registering and editing a directory integration profile.
Use this dialog box to create or modify a directory integration profile. You can:
Create an integration profile by copying an existing one. To do this, select the directory integration profile you want to copy, then choose Create Like. The Integration Profile dialog box displays the General tab page.
Create an integration profile without copying an existing one. To do this, choose Create New. The Integration Profile dialog box displays the General tab page.
Edit an integration profile by selecting it, then choosing Edit. This displays the General tab page.
Table A-3 Fields on the General Tab Page for Synchronization in the Oracle Directory Integration and Provisioning Server Administration Tool
Field | Description |
---|---|
Profile Name |
Specify the name of the Profile. The name you enter is used as the RDN component of the DN for this integration profile. For example, specifying a profile name This field is mandatory. There is no default. |
Profile Version |
Version of Oracle Directory Integration and Provisioning with which this profile was created. |
Synchronization Mode |
Specify whether this is an import or an export operation. An import operation pulls changes from a connected directory into Oracle Internet Directory. An export operation pushes changes from Oracle Internet Directory into a connected directory. This field is mandatory. The default is |
Profile Status |
Specify whether the profile is enabled or disabled. This field is mandatory. The default is |
Profile Password |
Specify the password that directory integration and provisioning server is to use when binding to Oracle Internet Directory on behalf of the profile. This field is mandatory and the default is |
Scheduling Interval |
Specify the number of seconds between synchronization attempts between a connected directory and Oracle Internet Directory. This field is mandatory. The default is |
Maximum Number of Retries |
Specify the maximum number of times the directory integration and provisioning server is to attempt synchronization before it disables synchronization. This field is mandatory. The default is 5. The first retry takes place 1 minute after the first failure. The second retry happens 2 minutes after the second failure, and subsequently the retry takes place n minutes after the n-th failure. |
Debug Level |
Specify the logging level for debugging as described in Oracle Internet Directory Administrator's Guide |
Table A-4 Fields on the Execution Tab for Synchronization in the Oracle Directory Integration and Provisioning Server Administration Tool
Field | Description |
---|---|
Agent Execution Command |
Specify the agent executable name and the arguments used by the directory integration and provisioning server to execute the agent. This field is optional. There is no default. A typical execution command is of the form, odicmd user=%orclodipcondirAccessAccount pass=%orclodipcondiraccesspassword Where
are the command-line arguments. The value to be passed for the user is derived from the attribute A typical example is given in the Oracle Human Resources agent. |
Connected Directory Account |
Specify the account to be used by the connector/agent for accessing the connected directory. For example, if the connected directory is a database, then the account might be This field is optional. There is no default. |
Connected Directory Account Password |
Specify the password the connector/agent is to use when accessing the connected directory. This field is optional. There is no default. |
Additional Config Info |
This field displays additional information that the directory integration and provisioning server passes to an agent. You cannot modify this field through the Oracle Directory Integration and Provisioning Server Administration tool. The only way to modify it is to use Directory Integration and Provisioning Assistant. |
Connected Directory URL |
Connect details required to connect to the connected directory. This parameter refers to the host name and port number as To connect by using SSL, enter Make sure the certificate to connect to the directory is stored in the wallet, the location of which is specified in the file Note: To connect to SunONE Directory Server by using SSL, the server certificate needs to be loaded into the wallet. See Also: The chapter on Oracle Wallet Manager in Oracle Advanced Security Administrator's Guide |
Interface Type |
The format used by the import or export file. Options are |
Table A-5 Fields on the Mapping Tab Page for Synchronization in the Oracle Directory Integration and Provisioning Server Administration Tool
Field | Description |
---|---|
Mapping Rules |
This field displays the mapping rules for converting data between a connected directory and Oracle Internet Directory. There is no default. Note: You cannot edit the mapping rules file by using the Oracle Directory Integration and Provisioning Server Administration tool. You edit the mapping rules in a file manually and then upload it to the profile by using the Oracle Directory Integration and Provisioning. |
Connected Directory Matching Filter |
Specify the attribute that uniquely identifies an entry in the connected directory. |
OID Matching Filter |
Specify the attribute that uniquely identifies records in Oracle Internet Directory. This attribute is used as a key to synchronize Oracle Internet Directory and the connected directory. This field is optional. |
Table A-6 Fields on the Status Tab Page for Synchronization in the Oracle Directory Integration and Provisioning Server Administration Tool
Field | Description |
---|---|
OID Last Applied Change Number (Import operations only) |
For export operations, specify the identifier of the last change from Oracle Internet Directory that has been applied to the connected directory. The default is |
Last Execution Time |
The most recent absolute time that the agent was executed. The default is the time at which the connector is created. Modifying this field will be misleading. |
Last Successful Execution Time |
The most recent absolute time that the agent succeeded. The default is the time at which the connector is created. Modifying this field will be misleading. |
Synchronization Status |
Synchronization success/failure. |
Synchronization Errors |
The last error message. You cannot modify this field. There is no default. |
Last Applied Change Number (Export operations only) |
The number of the change log entry that was most recently applied successfully to the connected directory. The field can be consciously modified by the end user whenever appropriate. The profile should be in the disabled mode. If the number is increased, then any change log entries numbered between the original value and the new value will not be applied. |