• Find us:
    +1-669-900-5138   |   +44-203-372-5553
  • Free Newsletter

    Get Latest Updates

  • Make Training Enquiry


    Company

  • Categories

  • Archive

  • OID 11g – Oracle Directory Services Manager (ODSM)

    Posted by "" in "fusion, idm, oid" on 2009-09-30

    This post covers overview of Oracle Directory Service Manager (ODSM) , new tool to manager Oracle Internet Directory (OID) and Oracle Virtual Directory (OVD)

    JNDI – Java Naming and Directory Interface
    LDAP – Lightweight Directory Access Protocol
    ODM  – Oracle Directory Manager (10g OID)
    ODSM- Oracle Directory Services Manager (11g OID)
    OID  – Oracle Internet Directory
    OVD  – Oracle Virtual Directory
    WLST- WebLogic Scripting Tool

    .
    Oracle Directroy Service Manager  (ODSM) - is Java application (introduced in 11g OID/OVD) to manage OID and OVD. 
    a)  ODSM is java application which runs on WebLogic Server (Managed Server – wls_ods1
    b) Oracle Directory Manager (tool to manage OID in 10g) is now deprecated in 11g OID.
    c) ODSM uses JNDI to connect to OID & OVD
    d) You can install and configure ODSM with OID/OVD during installation or later

    .
    How to find ODSM URL ?

    Option 1 – $Fusion_Middleware_Home/ Oracle_Identity_Management_domain/ servers/ wls_ods/ data/ nodemanager/ wls_ods1.url

    Option 2 – Identify Managed Server (wls_ods1) port and use URL http://host:port/odsm

    How to access ODSM ?1. Start Managed Server wls_ods1 
    startManagedWebLogic.sh wls_ods1

    2. Access ODSM from URL – http://host:port/odsm  where default managed server (wls_ods1) port is 7005 (cn=orcladmin)

    .

    .
    References

    Related Posts for OID


    1. Oracle Internet Directory OID
    2. Oracle Internet Directory – Basics II
    3. OID to OID/Active Directory/iPlanet other LDAP Server Integration
    4. Multi Master OID Replication
    5. OID Architecture
    6. Oracle Internet Directory , OID Troubleshooting
    7. Server Chaining in OID
    8. OID Quesries/ Scripts FAQ
    9. OIDADMIN Client
    10. Oracle Identity Management (OID) 11g installation Issues on Linux
    11. OID 11g – Oracle Directory Services Manager (ODSM)
    12. DIP : Synchronization, Provisioing, Connectors, DSS in Oracle Directory Services (ODS) 11g
    13. OID Replication – Suppliers, Consumers, DRG, ASR/LDAP based replication
    14. ASR setup has failed – Error occurred while dropping database link : ORA-02084 : database name is missing a component while Configuring Multi Master OID replication using “remtool -asrsetup”
    15. OID 11g Down : Unable to Start OID 11g using OPMN (ODS schema locked ORA-28002)
    16. OID/Directory Services 11g – Schema, Object Class, Attributes
    17. OID 11g Distributed Install : DIP/ODSM (Java Component) & OID (LDAP/REPLD) on different machine
    18. OID Server Mode R, RW, RM: LDAP: error code 53 – Server currently in read only mode
    19. How to change OID 11g database schema (ODS) password
    20. How to add custom attribute, Object Classe in OID from command line or GUI
    21. Oracle Internet Directory (OID) and Real Application Cluster (RAC) database : Things you must know
    22. How to Update User Password in OID (single account or bulk) – command line or GUI
    23. Error starting OID 11g during configuration stage of OID installation on Windows Server “ProvisionException: Failed to start the component”
    24. How to delete Entries in OID 11g in Bulk – Delete Failed : Ldap Error Code 66 Not allowed on Non-Leaf
    25. How to find latest changelog number (or changes) in OID ?
    26. Context Initialization Error on running ldapsearch commands on OID Server
    27. How to find OID version and patches applied on OID Home ?
    28. How to change OID 11g LDAP/LDAPS listen port
    29. How to find/audit Failed Login Attempts in OID 11g
    30. Step by Step configuration of OID Multi Master Replication – LDAP based in OID 11g
    31. OID 11g LDAP based Multi Master replication : Configuration Entries you must know
    32. Configure SSL for Oracle Internet Directory (OID)
    33. How to backup Oracle Internet Directory (OID) 11g – Data : Full / Partial
    34. SSL / Wallets in OID/OHS : How to manage certificates in Wallet using command line ?? ORAPKI
    35. How to debug OID : LDAP Error code 50 – Insufficient Access Rights
    36. What Hashing Algorithm OID uses to store user Password : SSHA or MD5

    34 Responses to “OID 11g – Oracle Directory Services Manager (ODSM)”

    1. ccp says:

      Atul Kumar I want touch you,can you tell me your mail id? or msn? Thanks!

    2. siva says:

      Atul,

      wls_ods1 is up and running. But the URL http://host:port/odsm is not working. What could be the possibility of this?

      Your help is appreciated

      Thanks

    3. […] can use a) Oracle Directory Services Manager (More on ODSM here) or b) command line tool (ldapXXXX) to add/modify/delete Object […]

    4. […] (command line tool) or ODSM/OIDMON (graphical user interface) in OID 11g/10g resp. More on ODSM here Q.How to use command line (ldapmodify) to change OID server mode A. 1. Create change_mode.ldif […]

    5. […] ODSM more here,  is a Graphical Tool to create/view/manage Attributes/Object Classes (Select tab Schema & […]

    6. […] OVD (If you have installed OVD with default settings then use SSL port 8899 for OVD). More on ODSM here 2.2.2 Select Adapter tab in ODSM 2.2.3 Click Create Adapter button 2.2.4 In new Adapter Wizard […]

    7. Rajendra Prasad says:

      Hi Atul,

      We are implementing OID 11g (11.1.1.3) for the identity store.We have created users using ODSM tool.

      When we are trying to login to ODSM using the newly created users,it is throwning error Invalid credentials..

      Please suggest a solution..

      Thanks
      Rajendra

    8. Atul Kumar says:

      @ Rajendra Prasad,
      Login to odsm (as of today) is supported only via cn=orcladmin .

      If you wish to test your users which you created use ldapbind like

      ldapbind -h oid_host -p oid_port -d “cn=your_user,cn=users,dc=[domain or oid_realm]” -w [your_user_password]

      ldapbind -h oid_host -p oid_ssl_port -d “cn=your_user,cn=users,dc=[domain or oid_realm]” -w [your_user_password] -U 1

      where default oid_port in oid 11g is 3060 and oid_ssl_port is 3131

    9. Rajendra Prasad says:

      Hi Atul,

      Thanks for your quick response.

      I have tested using ldapbind command they are working.

      Regards
      Rajendra

    10. […] value to 1 for entry cn=oid1, cn=osdldapd, cn=subconfigsubentry). This can be done via ODSM or using FMW Enterprise Manager Control or LDIF file as explained here. More on anonymous bind in […]

    11. Raghu says:

      Hi Atul,

      We have current OID version 9.2.0.7 and we want it to be upgraded to 11g. Is this possible?

      Also i need to know the impact of not running OID 11g in weblogic.

      Are there any other middlewares other than weblogic lik tomcat which can be used and is it better compared to weblogic.

      What are the advantages & disadvantages of using weblogic for OID 11g.

      Regards,
      Raghu

    12. Atul Kumar says:

      @ Raghu,
      To upgrade OID to 11gR1, you should be on atleast 10.1.2 or 10.1.4.0.1 else first upgrade OID to one these version .

      http://download.oracle.com/docs/cd/E21764_01/upgrade.1111/e10129/starting_points.htm#BABHFGFG

      WebLogic in OID used only for DIP or to manage OID using GUI.

      If you are not using DIP (EBS Integration, 10g/11g Portal or sync with AD or other directory) or can manage OID from command line (LDAP commands) then WebLogic is not required.

    13. Raghu says:

      Thanks Atul for your information.

    14. ABODAAS says:

      Hi Atul i want to install the OIDDAS component sepeartely to manage the OID 11g,now i mange it by odsm but i want OIDDAS its doable or not
      thank in advance, aslo is there any web app can manage OID ????

    15. vicosobase says:

      Hi Atul,

      I purchase the e-book “Oracle E-Business Suite (R12) Integration with OID/OAM for Single Sign-On but I do not know how to download or where to download. I was expecting I will be sent an email with download instructions.

      Please, send me the link to download the book. I paid with Pay Pal.

      Thanks.

    16. Atul Kumar says:

      @ vicosobase,
      Please drop mail to email address mentioned in eBook with payment ID with things you would like to see in document. You will get updated copy with required content in 3 days.

    17. Sanjeev says:

      Hi Atul,

      i have a requirement in OID. we have created a seperate realm unlink “users” , so under the new relam i have created a new user , this user i have privileged (OracleDASCreateUser,OracleDASDeleteUser,OracleDASEdit,OracleDASUserPriv)him to create other users as we have some restrictions on not sharing orcladmin password to all, so we have done like this., Now if i login with odsm with that User it will say invalid credentials ( it would allow only with orcladmin), so how do a user will create another user in OID 11g ??

    18. Atul Kumar says:

      @ Sanjeev,

      In OID 11.1.1.3 (or 11.1.1.4 as well not sure) and lower, only cn=orcladmin can login to ODSM.

      What version of OID/ODSM you are using . Did you try with OID/ODSM 11.1.1.5 or 11.1.1.6 ?

    19. Sanjeev says:

      Hi Atul,

      Thanx for reply

      We are currently using IDM 11.1.1.5 at our environment.

      Thanx
      Sanjeev

    20. Atul Kumar says:

      @ Sanjeev,
      Could you please confirm that your requirement is to create user in new realm in OID and login using that realm ?

      If Yes , what is DN of user which you created in different realm ?

      What username you are using in ODSM ?

      Did you check logs for wls_ods1 managed server.

    21. Nehas says:

      Uesr Interface of (ODSM)in OID 11.1.1.1 that lets you to interact with Oracle Internet Directoy is allowed only to superuser in OID, my question is that can the access to User Interface of ODSM be allowed to all the users, if yes, please let me us know the mechanism. or has it been allowed in 11.1.1.2 and 11.1.1.5 (not sure whether released or not).

    22. […] When you connect to OVD using ODSM , you use Admin Gateway Port as shown below – I changed OVD admin gateway port from 8899 to […]

    23. IgnitedMind says:

      Hi Atul,

      I have done Fresh Installed Entire Security Stack 11.1.1.6.0. I am able to access weblogic & managed server is also up & running & but still unable to access ODSM.

      After successfully connection to ODSM, i would like to create some tree & than I will be doing OIM configuration with ldap sync.

      What can be the possibility ?

      Help Appreciated.

      • Atul Kumar says:

        @IgnitedMind,
        Is ODSM managed server up and running ? Is there a process listening on ODSM managed server port (netstat -an | grep ) ?

        Check ODSM managed server log file for issues

    24. Pradeep says:

      I am following the install guide for installing OID and integrating with R12.

      I have registered the Instance with OID and registered EBS with OID and set the SSO profile options.

      When I create a user in the ODSM the same is not being synchronized with EBS. The other way is working fine. Any new user added EBS is showing up in ODSM.

      Can you tell me what I am missing ?

    25. Atul Kumar says:

      @ Predeep,
      If you have our eBook http://onlineappsdba.com/index.php/book/ then there is step to enable debug via profile option and check messages in FND_LOG_MESSAGES table.

      Few things I can think of two check
      a) What options were used to integrate EBS with OID (was two way sync used)
      b) Is DIP (managed server on OID) up and running, do you see any error in this managed server ?

    26. […] example I created user atul), group OESAdmins, and add user (Atul) as member of group OESAdmin. Use ODSM or command line tool ldapadd to create user and […]

    27. […] If you encounter “Insufficient Access Rights” in OID then enable Debug in OID (Set orcldebugflag to 8192 and orcldebugop to 8 to OID instance) using ODSM […]

    28. fbilliotel says:

      Hi Atul,

      wls_ods1 is up and running.
      But the URL http://host:7005/odsm is not working (404 error).
      I remember that when i first installed OID, URL was ok (since i rebooted server).

      [hostname ~]$ netstat -an | grep 7005
      tcp 1 0 nnn.nnn.nnn.nnn:17955 nnn.nnn.nnn.nnn:7005 CLOSE_WAIT
      tcp 0 0 nnn.nnn.nnn.nnn:46632 nnn.nnn.nnn.nnn:7005 CLOSE_WAIT
      tcp 0 0 ::ffff:nnn.nnn.nnn.nnn:7005 :::* LISTEN
      tcp 0 0 fe80::216:3eff:fe3e:22:7005 :::* LISTEN
      tcp 0 0 ::1:7005 :::* LISTEN
      tcp 0 0 ::ffff:127.0.0.1:7005 :::* LISTEN
      tcp 0 0 ::ffff:nnn.nnn.nnn.nnn:7005 ::ffff:nnn.nnn.nnn.nn:64533 ESTABLISHED
      tcp 0 0 ::ffff:nnn.nnn.nnn.nn:64533 ::ffff:nnn.nnn.nnn.nnn:7005 ESTABLISHED

      I do not know how to resolve this…

      Many Thanks.
      Regards.
      Fabrice

    29. fbilliotel says:

      Hi Atul,

      I forgot to run:
      startManagedWebLogic.sh “my_managed_server” “http://:7002″
      I can now access to http://localhost:7005/odsm
      Thank You.
      Fabrice

    30. […] ODSM (more on ODSM here) requires Weblogic Server and WebLogic Domain.  Select create a new […]

    Leave a Reply



  • K21 Technologies is among the most experienced Oracle Gold Partner for Identity Access Management service providers. We work with application development companies and in-house technology division to help achieve significant returns on their IT security investment. Our clientele includes some of the globally renowned corporate, which speaks of our expertise in our field.

    We have the most talented and experienced team that can swiftly deploy security solutions even in complex IT ecosystem. Our clients highly appreciate our timely implementation, interactive training, on-demand support and community resources.
  • CONTACTS

    K21 Technologies
    8 Magnolia Place, Harrow,
    London, HA2 6DS

    UK: +44(0)7476444481
    USA: +1-888-414-1821

  • 2014, K21 Technologies. All rights reserved DMCA.com
  • TOP
    TOP