Install Active Directory Application Mode (ADAM) for Oracle Access Manager (OAM) LDAP store

This post covers steps to install Microsoft Active Directory Application Mode (ADAM). I am going to use this ADAM (Active Directory Application Mode) instance as directory store for Oracle Access Manager’s  (OAM) Policy and Configuration data.

AD – Active Directory
ADAM – Active Directory Application Mode
ADP – Application Directory Partition
OAM – Oracle Access Manager

Other supported directory store for Oracle Access Manager are –
i) Microsoft Active Directory
ii) Oracle Internet Directory
iii)IBM Tivoli
iv) Sun Directory Server
..

.

What is ADAM ?
ADAM which stands for Active Directory Application Mode is directory server from Microsoft. ADAM is light weight version of Active Directory (AD) and uses same storage management, replication and administration model as Active Directory but is independent of AD concepts like Domain, Domain Controller, Forests.

     In windows Server 2008 ADAM is renamed as Active Directory Lightweight Directory Services (AD-LDS). ADAM comes with Windows Server 2003 SP2 or higher. You can still install ADAM on windows server 2000/2003 SP1 or Windows XP using ADAM executable

.

ADAM Installation/Configuration Steps

1. Download ADAM application from here  (If you have windows 2003 SP2 or higher then use Add/Remove Windows Components)
2. Create an ADAM instance
2.1 Create A Unique instance
2.2 Enter Instance Name & Port for ADAM (make a note of this instance as you would need that during OAM installation)
2.3 Create Application Directory Partition (ADP) – make a note of this ADP
2.4 Select file location for ADAM
2.5 Import LDF file (MS-User.LDF & MS-InetOrgPerson.LDF)
.

.

Reference

.

Next step for Oracle Access Manager Installation/Configuration with ADAM –

  • Install Identity Server
  • Load OAM (Oracle Access Manager) schema using ADAM_oblix_schema_add.ldif & ADAM_user_schema_add.ldif  (You must create OAM Schema in ADAM before Access & Identity configuration as it is not possible to create schema in ADAM during OAM installation)
  • Install WebPass
  • Install Access Server 
  • …..
  • …..
  • …..

About the Author Atul Kumar

Oracle ACE, Author, Speaker and Founder of K21 Technologies & K21 Academy : Specialising in Design, Implement, and Trainings.

follow me on:

Leave a Comment:

9 comments
j3ff says August 20, 2010

Hello, Atul.

Im interesting this post, and im have question.

from documentation:
http://download.oracle.com/docs/cd/E12530_01/oam.1014/b32412/adam.htm#CIHGIJAG

ldifde -k -b
“”””””
-c”” -i -f ADAM_oblix_schema_add -s
-t

when im execute this command, catch error:

Connecting to “myhost18”
Logging in as “Administrator” in domain “myhost18” using SSPI
Importing directory from file “C:\Oracle\identity\oblix\data.ldap\common\ADAM_ob
lix_schema_add.ldif”
Loading entries.
Add error on line 12: Operations Error
The server side error is “No superior reference has been configured for the directory service. The directory service is therefore unable to issue referrals to objects outside this forest.”
0 entries modified successfully.
An error has occurred in the program
No log files were written. In order to generate a log file, please specify the log file path via the -j option.

Reply
Stringer says August 24, 2010

Atul,

I installed ADAM without any problems. When I try to update the schema with the .ldif files I get an error. First line is my command, then the result. I am using the ldifde utility from the ADAM directory, not system32.

c:>ldifde -i -f d:\adam_oblix_schema_add.ldif -c GUID 91AED0B5-9851-9D14-EE15C00C52C3 -s osso

Results in:

Add error on line 12: Invalid DN syntax
The server side error is 0x208f the object name has bad syntax
The extended server error is 0000208F: Name Err: DSID-031001BF
Problem 2006 (BAD_NAME), data 8349, best match of:
‘cn=schema,cn=configuration,CN=

Any help would be greatly appreciated.

Thank you,

John

Reply
Stringer says August 24, 2010

The last part got cut off, it should read:
cn=schema,cn=configuration,CN=91AED0B5-9851-9D14-EE15C00C52C3

Reply
j3ff says August 25, 2010

Hello, Stringer.

I have suggestions.

one. u can manualy edit adam_oblix_schema_add.ldif, change “square brace GUID square brace” to (IMPORTANT!!!) don’t forget specify CURLY BRACE

two. in ur command specify adam sid 91AED0B5-9851-9D14-EE15C00C52C3 in CURLY BRACE

:)) have a nice day

Reply
Stringer says August 25, 2010

j3ff,

565 entries modified successfully ! Thanks for your help.

Stringer

Reply
ragu says August 25, 2011

Hi Atul,
Need your help on this. i am trying to install OAM 10g using ADAM as store.I have successfully manually updated the ADAM_oblix_schema_add.ldif
ADAMAuxSchema_add.ldif but when i try load ADAM_user_schema_add.ldif it giving me the following error,
//////////////////////////////////////////////////
C:\Program Files\NetPoint\identity\oblix\data.ldap\common>ldifde -i -f ADAM_user
_schema_add.ldif -c GUID A7C83008-01D6-4AC0-8BD8-BEDBF707D747 -s localhost -t 38
9
Connecting to “localhost”
Logging in as current user using SSPI
Importing directory from file “ADAM_user_schema_add.ldif”
Loading entries.
Add error on line 13: Already Exists
The server side error is “An attempt was made to add an object to the directory
with a name that is already in use.”
0 entries modified successfully.
An error has occurred in the program
///////////////////////////////////////////////
please help me to proceed.

Regards,
Ragu

Reply
sagarthe1 says November 21, 2011

Hello Atul,

I want to use AD LDS with OVD so that we don’t have to point OVD to domain controller.

Will you please let me know if it can be done ? and if yes how should I go about it ?

Thanks,
PS

Reply
prathap says December 5, 2011

thak u man.it’s really nice post thanks a lot…

Reply
durga says July 31, 2014

Hi atul,
After installing the identity manager with ADAM i am unable to load OAM schema using the following ADAM_oblix_schema_add.ldif & ADAM_user_schema_add.ldif in windows server 2008

Reply
Add Your Reply

Not found