OID Quesries/ Scripts FAQ

Oracle Internet Directory (OID) is LDAP compliant directory server from Oracle. OID is part of Identity Management stack of Fusion Middleware (Infrastructure tier of Oracle Application Server) 

Here is list of commonly asked questions/scripts for OID

Q: How to find orasso (Single Sign-On) schema password.
A: orasso password is randomly generated and stored in OID. To find password run below query

$ORACLE_HOME/bin/ldapsearch -h $OIDHOST -p $OIDPORT-D “cn=orcladmin” -w “$OrcladminPASSWORD” -b “cn=IAS Infrastructure Databases,cn=IAS,cn=Products,cn=OracleContext” -s sub “orclResourceName=$DBUSERNAME” orclpasswordattribute


$ORACLE_HOME/bin/ldapsearch -h focusthread.com -p 389-D “cn=orcladmin” -w “welcome1” -b “cn=IAS Infrastructure Databases,cn=IAS,cn=Products,cn=OracleContext” -s sub “orclResourceName=orasso” orclpasswordattribute

Q: How to find port on which OID server is listening ?
on Infrastructure Tier $ORACLE_HOME/ldap/admin/ldap.ora  look for line
DIRECTORY_SERVERS= (focusthread.com:389:636)   –> This means OID is listening on port 389 NonSSL & 636 on SSL Port


In file $ORACLE_HOME/install/portlist.ini look for line
Oracle Internet Directory port = 389
Oracle Internet Directory (SSL) port = 636

Q: To find password policy in OID
$ORACLE_HOME/bin/ldapsearch -h $OIDHOST -p $OIDPORT -D cn=orcladmin -w $ORCLADMIN_PASSWD -b “cn=default,cn=pwdPolicies,cn=Common,cn=Products,cn=OracleContext” -s base “objectclass=*”


$ORACLE_HOME/bin/ldapsearch -h focusthread.com-p 389 -D cn=orcladmin -w welcome1 -b “cn=default,cn=pwdPolicies,cn=Common,cn=Products,cn=OracleContext,dc=com”
-s base “objectclass=*” >> pwdPolicy.ldif

This will create file pwdPolicy.ldif in currently directory listing password policies

Q: How to query what all E-Business Suite Instance are registered in OID ? (useful for OID-Apps 11i/R12 Integration)

$ORACLE_HOME/bin/ldapsearch -h $OIDHOST -p $OIDPORT-D “cn=orcladmin” -w “$OIDPW” -b “cn=EBusiness,cn=Products,cn=OracleContext,dc=default_realm” -s sub “objectclass=*”

$ORACLE_HOME/bin/ldapsearch -h focusthread -p 389-D “cn=orcladmin” -w “welcome1” -b “cn=EBusiness,cn=Products,cn=OracleContext,dc=co,dc=uk” -v -s sub “objectclass=*”

Q: Query for subscription list in OID ? (useful for OID-Apps 11i/R12 Integration)
A. $ORACLE_HOME/ldap/odi/bin/provsubtool.orc operation=LIST \
     ldap_host=host ldap_port=port \
     app_dn=”ApplicationDN” realm_dn=”SubscriberDN” \
     app_pwd=AppDN password

Q: How to find provisioning profiles (useful for OID-Apps 11i/R12 Integration)
A.ldapsearch -h host -p port-D cn=orcladmin -w password \
-b “cn=Provisioning Profiles, cn=Changelog Subscriber, cn=Oracle Internet Directory” \
-s sub “objectclass=*” “*” 
Q: How to search for various user attributes ?
A.ldapsearch -v -h “${Host}” -p ${Port} -D “cn=orcladmin” -w “${OIDManagerPasswd}” -b “” -s sub “uid=${AppsUser}*”  uid orclguid orclactivestartdate orclactiveenddate orclisenabled

Q: How to find default OID realm
$ORACLE_HOME/bin/ldapsearch -h $OIDHOST -p $OIDPORT-D “cn=orcladmin” -w $ORCLADMIN_password-b “cn=common, cn=products, cn=oracleContext” -s base “objectclass=*” orcldefaultSubscriber

$ORACLE_HOME/bin/ldapsearch -h focusthread.com -p 389 -D “cn=orcladmin” -w welcome1 -b “cn=common, cn=products, cn=oracleContext” -s base “objectclass=*” orcldefaultSubscriber

If you have any Query regarding OID , update it in comment section for answers

About the Author Atul Kumar

Oracle ACE, Author, Speaker and Founder of K21 Technologies & K21 Academy : Specialising in Design, Implement, and Trainings.

follow me on:

Leave a Comment:

Add Your Reply

Not found