changing bin information for OID after LDAP sync is configured. in order to change default user from orcladmin to user you created( after following documentation to configure LDAPsync tha advice to create user and groups and aci).
http://docs.oracle.com/cd/E27559_01/integration.1112/e27123/oid_oim.htm
make sure to take backup of file that is being changed
<MW_HOME>/user_projects/domains/oimdev/config/fmwconfig/ovd/oim/adapters.os_xml
you can use WLST utility to do that.
in order to get adapter information you need to use wlst.sh utility that is under oracle_common/common/bin/ if you are using utility under weblogic you will get following error while running
wls:/iamdev/serverConfig> listAdapters(contextName=’oim’)
wls:/iamdev/serverConfig> listAdapters(contextName='oim')
Traceback (innermost last):
File "<console>", line 1, in ?
NameError: listAdapters
$wlst.sh
wls:/offline>
connect('weblogic','password','t3://orasystemsusa.com:7001')
Connecting to 't3://orasystemsusa.com:7001' with
userid weblogic ...
Successfully connected to Admin Server 'AdminServer' that
belongs to domain 'oimdev'.
Warning: An insecure protocol was used to connect to the
server. To ensure on-the-wire security, the SSL port or
Admin port should be used instead.
wls:/iamdev/serverConfig> listAdapters(contextName='oim')
Location changed to domainRuntime tree. This is a read-only
tree with DomainMBea n
as the root.
For more help, use help(domainRuntime)
Adapter Name : LDAP1
Adapter Type : LDAP
Adapter Name : CHANGELOG_LDAP1
Adapter Type : LDAP
wls:/iamdev/domainRuntime>
getAdapterDetails(adapterName='LDAP1',contextName='oim')
DETAILS OF ADAPTER :
LDAP1
Adapter Type
: LDAP
Name
: LDAP1
Virtual NameSpace
: dc=company,dc=com
Remote NameSpace
: dc=company,dc=com
LDAP Host
: [orasystemsusa.com :
389]
Bind DN
: cn=orcladmin
Secure
: false
Pass Credentials
: Always
Max size of Connection Pool : 10
Plugin
: DMSMetrics
Plugin
: UserManagement
wls:/iamdev/domainRuntime>
modifyLDAPAdapter(adapterName='LDAP1',attribute='BindDN',value='cn=oimadminuser,cn=systemids,dc=company,dc=com',contextName='oim')
wls:/iamdev/domainRuntime>
modifyLDAPAdapter(adapterName='LDAP1',attribute='BindPassword',value='password',contextName='oim')
wls:/iamdev/domainRuntime>
modifyLDAPAdapter(adapterName='CHANGELOG_LDAP1',attribute='BindDN',value='cn=oimadminuser,cn=systemids,dc=company,dc=com',contextName='oim')
wls:/iamdev/domainRuntime> modifyLDAPAdapter(adapterName='CHANGELOG_LDAP1',attribute='BindPassword',value='password',contextName='oim')
one other attribute you have to change
go to <MW_HOME>/user_projects/domains/oimdev/config/fmwconfig/ovd/oim
vi adapters.os_xml
replace modifiersname to new dn user information
<ns2:initParams>
<ns2:param name="directoryType" value="oid"/>
<ns2:param name="virtualDITAdapterName" value="LDAP1"/>
<ns2:param name="modifierDNFilter" value="!(modifiersname=cn=oimadminuser,cn=systemids,dc=company,dc=com)"/>
<ns2:param name="mapAttribute" value="targetGUID=orclguid"/>
<ns2:param name="sizeLimit" value="1000"/>
<ns2:param name="mapUserState" value="true"/>
</ns2:initParams>
No comments:
Post a Comment