Server Chaining in OID

1. Server chaining feature in OID is introduced in version 10.1.4.0.1

2. You use server chaining feature to map user/group/entries sitting in third party LDAP directory (AD, iPlanet) and access them through OID. This way you can avoid synchronization of entry (identity data) between OID and third party LDAP Server.

3. Currently (as of version 10.1.4.0.1) only Microsoft Active Directory & Sun iPlanet are supported for OID server chaining (as shown in figure above)
 
4. Currently only bind, compare(only for userpasswd attribute), modify and search ldap operation are supported

5. You can configure server chaining either from command line (ldap commands) or using OIDADMIN (gui tool to administer OID)
 
6. If attribute name in OID is same as attribute name in third party ldap server (iPlanet, AD) then mapping is not required (some attributes are mapped by default - orclguid, krbprincipalname)

7. Operation attributes, objects classes and OID specific attributes (starting with orcl) cannot be mapped using server chaining framework


Related Doc
OID Server Chaining guide from Oracle

Previous in series Next in series

Related Posts for OID


  1. Oracle Internet Directory OID
  2. Oracle Internet Directory - Basics II
  3. Integrate OID with AD Part I
  4. OID to OID/Active Directory/iPlanet other LDAP Server Integration
  5. Multi Master OID Replication
  6. OID Architecture
  7. Oracle Internet Directory , OID Troubleshooting
  8. Server Chaining in OID
  9. OID Quesries/ Scripts FAQ
  10. OIDADMIN Client
  11. Oracle Identity Management (OID) 11g installation Issues on Linux
  12. OID 11g - Oracle Directory Services Manager (ODSM)

Popularity: 12% [?]

Share This