Server Chaining in OID

1. Server chaining feature in OID is introduced in version 10.1.4.0.1

2. You use server chaining feature to map user/group/entries sitting in third party LDAP directory (AD, iPlanet) and access them through OID. This way you can avoid synchronization of entry (identity data) between OID and third party LDAP Server.

3. Currently (as of version 10.1.4.0.1) only Microsoft Active Directory & Sun iPlanet are supported for OID server chaining (as shown in figure above)
 
4. Currently only bind, compare(only for userpasswd attribute), modify and search ldap operation are supported

5. You can configure server chaining either from command line (ldap commands) or using OIDADMIN (gui tool to administer OID)
 
6. If attribute name in OID is same as attribute name in third party ldap server (iPlanet, AD) then mapping is not required (some attributes are mapped by default – orclguid, krbprincipalname)

7. Operation attributes, objects classes and OID specific attributes (starting with orcl) cannot be mapped using server chaining framework


Related Doc
OID Server Chaining guide from Oracle

Related Posts for OID


  1. Oracle Internet Directory OID
  2. Oracle Internet Directory – Basics II
  3. OID to OID/Active Directory/iPlanet other LDAP Server Integration
  4. Multi Master OID Replication
  5. OID Architecture
  6. Oracle Internet Directory , OID Troubleshooting
  7. Server Chaining in OID
  8. OID Quesries/ Scripts FAQ
  9. OIDADMIN Client
  10. Oracle Identity Management (OID) 11g installation Issues on Linux
  11. OID 11g – Oracle Directory Services Manager (ODSM)
  12. DIP : Synchronization, Provisioing, Connectors, DSS in Oracle Directory Services (ODS) 11g
  13. OID Replication – Suppliers, Consumers, DRG, ASR/LDAP based replication
  14. ASR setup has failed – Error occurred while dropping database link : ORA-02084 : database name is missing a component while Configuring Multi Master OID replication using “remtool -asrsetup”
  15. OID 11g Down : Unable to Start OID 11g using OPMN (ODS schema locked ORA-28002)
  16. OID/Directory Services 11g – Schema, Object Class, Attributes
  17. OID 11g Distributed Install : DIP/ODSM (Java Component) & OID (LDAP/REPLD) on different machine
  18. OID Server Mode R, RW, RM: LDAP: error code 53 – Server currently in read only mode
  19. How to change OID 11g database schema (ODS) password
  20. How to add custom attribute, Object Classe in OID from command line or GUI
  21. Oracle Internet Directory (OID) and Real Application Cluster (RAC) database : Things you must know
  22. How to Update User Password in OID (single account or bulk) – command line or GUI
  23. Error starting OID 11g during configuration stage of OID installation on Windows Server “ProvisionException: Failed to start the component”
  24. How to delete Entries in OID 11g in Bulk – Delete Failed : Ldap Error Code 66 Not allowed on Non-Leaf
  25. How to find latest changelog number (or changes) in OID ?
  26. Context Initialization Error on running ldapsearch commands on OID Server
  27. How to find OID version and patches applied on OID Home ?
  28. How to change OID 11g LDAP/LDAPS listen port
  29. How to find/audit Failed Login Attempts in OID 11g
  30. Step by Step configuration of OID Multi Master Replication – LDAP based in OID 11g
  31. OID 11g LDAP based Multi Master replication : Configuration Entries you must know
  32. Configure SSL for Oracle Internet Directory (OID)
  33. How to backup Oracle Internet Directory (OID) 11g – Data : Full / Partial
  34. SSL / Wallets in OID/OHS : How to manage certificates in Wallet using command line ?? ORAPKI
  35. How to debug OID : LDAP Error code 50 – Insufficient Access Rights
  36. What Hashing Algorithm OID uses to store user Password : SSHA or MD5