Total Pageviews

Tuesday, September 2, 2014

modfying defalut user information during configuring OIM to OID LDAPsync


changing bin information for OID after LDAP sync is configured. in order to change default user from orcladmin to user you created( after following documentation to configure LDAPsync tha advice to create user and groups and aci).
http://docs.oracle.com/cd/E27559_01/integration.1112/e27123/oid_oim.htm


make sure to take backup of file that is being changed
<MW_HOME>/user_projects/domains/oimdev/config/fmwconfig/ovd/oim/adapters.os_xml

you can use WLST utility to do that.

in order to get adapter information you need to use wlst.sh utility that is under oracle_common/common/bin/  if you are using utility under weblogic you will get following error while running
wls:/iamdev/serverConfig> listAdapters(contextName=’oim’)

wls:/iamdev/serverConfig> listAdapters(contextName='oim')
Traceback (innermost last):
  File "<console>", line 1, in ?
NameError: listAdapters

$wlst.sh


wls:/offline> connect('weblogic','password','t3://orasystemsusa.com:7001')

Connecting to 't3://orasystemsusa.com:7001' with userid weblogic ...

Successfully connected to Admin Server 'AdminServer' that belongs to domain 'oimdev'.

 

Warning: An insecure protocol was used to connect to the

server. To ensure on-the-wire security, the SSL port or

Admin port should be used instead.

 

wls:/iamdev/serverConfig> listAdapters(contextName='oim')

Location changed to domainRuntime tree. This is a read-only tree with DomainMBea                    n as the root.

For more help, use help(domainRuntime)

 

Adapter Name : LDAP1

Adapter Type : LDAP

 

 

Adapter Name : CHANGELOG_LDAP1

Adapter Type : LDAP

 

 

wls:/iamdev/domainRuntime> getAdapterDetails(adapterName='LDAP1',contextName='oim')

DETAILS OF ADAPTER :  LDAP1

Adapter Type                : LDAP

Name                        : LDAP1

Virtual NameSpace           : dc=company,dc=com

Remote NameSpace            : dc=company,dc=com

LDAP Host                   : [orasystemsusa.com :   389]

Bind DN                     : cn=orcladmin

Secure                      : false

Pass Credentials            : Always

Max size of Connection Pool : 10

Plugin                      : DMSMetrics

Plugin                      : UserManagement

 

wls:/iamdev/domainRuntime> modifyLDAPAdapter(adapterName='LDAP1',attribute='BindDN',value='cn=oimadminuser,cn=systemids,dc=company,dc=com',contextName='oim')

wls:/iamdev/domainRuntime> modifyLDAPAdapter(adapterName='LDAP1',attribute='BindPassword',value='password',contextName='oim')

wls:/iamdev/domainRuntime> modifyLDAPAdapter(adapterName='CHANGELOG_LDAP1',attribute='BindDN',value='cn=oimadminuser,cn=systemids,dc=company,dc=com',contextName='oim')

wls:/iamdev/domainRuntime>  modifyLDAPAdapter(adapterName='CHANGELOG_LDAP1',attribute='BindPassword',value='password',contextName='oim')



one other attribute you have to change
 go to <MW_HOME>/user_projects/domains/oimdev/config/fmwconfig/ovd/oim
vi adapters.os_xml

replace modifiersname   to new dn user information

<ns2:initParams>
                        <ns2:param name="directoryType" value="oid"/>
                        <ns2:param name="virtualDITAdapterName" value="LDAP1"/>
                        <ns2:param name="modifierDNFilter" value="!(modifiersname=cn=oimadminuser,cn=systemids,dc=company,dc=com)"/>
                        <ns2:param name="mapAttribute" value="targetGUID=orclguid"/>
                        <ns2:param name="sizeLimit" value="1000"/>
                        <ns2:param name="mapUserState" value="true"/>
                    </ns2:initParams>

 

No comments:

Post a Comment