Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.

Published byPeregrine George Modified over 8 years ago

Similar presentations

Presentation on theme: "Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American."— Presentation transcript:

1 Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American Real Estate Solutions Date: Wednesday, September 10, 2003 @ 4:30 AM - 5:30 PM Place: Moscone Room 131

2 Paper #36576, Daniel T. Liu, FARES2 Agenda Net Services Basics Connecting Methods OID Basics Step-by-Step Setup of OID for Names Resolutions Migrating to OID Q & A

3 Paper #36576, Daniel T. Liu, FARES3 Net Services Basics

4 Paper #36576, Daniel T. Liu, FARES4 Net Services In a Nutshell What is the database instance ? –Instance name (SID) Where is the database instance ? –Instance address (host, IP address, port) How to communicate ? –Network language (protocol)

5 Paper #36576, Daniel T. Liu, FARES5 Net Services Components Net Services Client Net Services Server Oracle Net –Oracle Net Foundation Layer –Oracle Protocol Support Listener

6 Paper #36576, Daniel T. Liu, FARES6 Client/Server Net Services Client –Enables client connections to databases across a network. A client-side application sends a request to Oracle Net Services to be transported across the network to the server. Net Services Server –Enables the listener, through a protocol, to accept connections from client application on the network.

7 Paper #36576, Daniel T. Liu, FARES7 Oracle Net Oracle Net Foundation Layer –Provides a standard method for a client application to establish and maintain communication with the Oracle database server on top of industry-standard network protocol. Oracle Protocol Support –TCP/IP (with SSL) –Named Pipes –LU 6.2 –VI

8 Paper #36576, Daniel T. Liu, FARES8 Oracle Net

9 Paper #36576, Daniel T. Liu, FARES9 Listener A separate process that resides on the server Receives incoming client connection requests and manages the traffic of these requests to the server Can listen to one or more databases either on the same system or on different system

10 Paper #36576, Daniel T. Liu, FARES10 Listener.ora listener_dallas = (address_list =(address =(protocol = ipc) (key = db1)) (address =(protocol = tcp) (host = dallas.company.com) (port = 1521)) ) sid_list_listener_dallas = (sid_list =(sid_desc =(global_dbname = db1.company.com) (sid_name = db1) (oracle_home = d:\oracle\oracle81) )

11 Paper #36576, Daniel T. Liu, FARES11 Making the Connection Method #1 –Retrieve from user’s memory –Lengthy connect string Method #2 –Look up in your phone book –tnsnames.ora

12 Paper #36576, Daniel T. Liu, FARES12 Making the Connection Method #3 –Call switchboard –Oracle Names Server –Oracle Internet Directory (LDAP)

13 Paper #36576, Daniel T. Liu, FARES13 Method #1: Retrieve From User’s Memory Create a lengthy connect string as follows: connect scott/tiger@ (description= (address = (portocol = tcp) (host=dallas.company.com) (port = 1521) ) (connect_data= (service_name = db1.company.com)) )

14 Paper #36576, Daniel T. Liu, FARES14 Method #2: Retrieve From A Client Machine Local Naming resolves a net service name to a network address using information configure in a local naming configuration file called tnsnames.ora. connect scott/tiger@db1.company.com tnsnames.ora file: db1.company.com (description= (address = (portocol = tcp) (host=dallas.company.com) (port = 1521) ) (connect_data= (service_name = db1.company.com)) )

15 Paper #36576, Daniel T. Liu, FARES15 Method #3: Retrieve From A Central System Central Naming stored the names and address of all database services in a central place on a network. Two popular methods: 1.Oracle Names - Oracle proprietary software to store the service names on a network 2.Directory Naming - clients can use network information stored in a centralized LDAP- compliant directory server to access a database service (Oracle Internet Directory)

16 Paper #36576, Daniel T. Liu, FARES16 Oracle Internet Directory Basics Directory LDAP Oracle Internet Directory (OID) OID Terminology OID Architecture How Net Services Use A Directory Server

17 Paper #36576, Daniel T. Liu, FARES17 Directory Primarily read-focused Designed to handle relatively simple transactions on relatively small units of data Designed to be location-independent Designed to store information in entries

18 Paper #36576, Daniel T. Liu, FARES18 LDAP LDAP stands for Lightweight Directory Access Protocol It provides all users and applications in the enterprise with a single, well-defined, standard interface to a single, extensible directory

19 Paper #36576, Daniel T. Liu, FARES19 LDAP It reduces the need to enter and coordinate redundant information in multiple services scattered across the enterprise Its well-defined protocol and interfaces make it more practical to deploy internet- ready applications that leverage the directory.

20 Paper #36576, Daniel T. Liu, FARES20 Oracle Internet Directory (OID) A general-purpose directory service that enables fast retrieval and centralized management of information Full-featured LDAP Version 3 compliant directory service Major Benefits includes: –Scalability –High Availability –Security

21 Paper #36576, Daniel T. Liu, FARES21 OID Terminology Entries Distinguished Name (DN) Directory Information Tree (DIT) Relative Distinguished Name (RDN) Attributes Object Classes Directory Schema Naming Contexts

22 Paper #36576, Daniel T. Liu, FARES22 Directory Information Tree

23 Paper #36576, Daniel T. Liu, FARES23 OID Architecture Oracle Directory Server Instance OID Monitor OID Control Utility (OIDCTL) Oracle9i Database

24 Paper #36576, Daniel T. Liu, FARES24 OID Architecture

25 Paper #36576, Daniel T. Liu, FARES25 How Net Services Uses A Directory Server

26 Paper #36576, Daniel T. Liu, FARES26 Step-By-Step Setup Of Oracle Internet Directory For Names Resolution Step #1: Planning the Network Step #2: Installing OID Software Step #3: Creating OID Repository Database and OID Schema Step #4: Starting OID Server

27 Paper #36576, Daniel T. Liu, FARES27 Step-By-Step Setup Of Oracle Internet Directory For Names Resolution Step #5: Setting Up Directory Tree (Adding New Entry For Naming Context) Step #6: Setting Up An Oracle Context Step #7: Adding Service Names To OID Step #8: Setting Up The Client Machine

28 Paper #36576, Daniel T. Liu, FARES28 Step #1: Planning The Network 1.Understanding the different version of Oracle Internet Directory Oracle Internet DirectoryDatabase 2.0.68.1.6 2.1.18.1.7 3.0.19.0.1

29 Paper #36576, Daniel T. Liu, FARES29 Step #1: Planning The Network 2.Examine Company’s Existing Oracle network environment –List of all the network domains –Oracle database servers within each domain –Oracle instances and listeners running on each server –Number of Oracle Clients

30 Paper #36576, Daniel T. Liu, FARES30 Step #1: Planning The Network 3.Planning the Directory Tree –Single domain called “company.com” –6 Oracle instances registered

31 Paper #36576, Daniel T. Liu, FARES31 Step #2: Installing OID Software 1.Read the Installation Guide 2.Prepare the environment -PATH -ORACLE_BASE -ORACLE_HOME -NLS_LANG -PORT 389 is not in use by another process 3.Mount the CD and bring up the Universal Installer

32 Paper #36576, Daniel T. Liu, FARES32 Step #2: Installing OID Software 4.Choose installation type: -“Management and Integration” option -Then, “Oracle Internet Directory” option 5.Choose install OID schema on: -An existing database -Or, a new independent database (preferred) 6.In “Summary” window, review information 7.Click “Install”, file copy process begins.

33 Paper #36576, Daniel T. Liu, FARES33 Step #3: Creating OID Repository Database and OID Schema 1.The “Configuration Tools” window appears at the end of installation 2.The Universal Installer will first create and start an OID database instance 3.Then, it creates OID schema and objects. -$ORACLE_HOME/ldap/admin/newldap.sql 4.Choose “Exit” and review log file for any installation errors

34 Paper #36576, Daniel T. Liu, FARES34 Step #4: Starting OID Server 1.After successfully completing the installation, the default OID Monitor Daemon and LDAP Server Instance will already be running against OID database instance 2.To start manually: -oidmon connect= start -Oidctl connect= server=oidldapd instance=1 start

35 Paper #36576, Daniel T. Liu, FARES35

36 Paper #36576, Daniel T. Liu, FARES36

37 Paper #36576, Daniel T. Liu, FARES37

38 Paper #36576, Daniel T. Liu, FARES38

39 Paper #36576, Daniel T. Liu, FARES39

40 Paper #36576, Daniel T. Liu, FARES40

41 Paper #36576, Daniel T. Liu, FARES41

42 Paper #36576, Daniel T. Liu, FARES42

43 Paper #36576, Daniel T. Liu, FARES43

44 Paper #36576, Daniel T. Liu, FARES44

45 Paper #36576, Daniel T. Liu, FARES45

46 Paper #36576, Daniel T. Liu, FARES46 Step #5: Setting Up Directory Tree 1.Invoke the Oracle Directory Manager 2.Type user name and password (orcladmin/welcome) 3.Create new admin user if needed -Grant “Browse, Add, Delete” access rights 4.Create the Naming Context -Add new entry “dc=com” -Add new entry “dc=company” under “dc=com”

47 Paper #36576, Daniel T. Liu, FARES47

48 Paper #36576, Daniel T. Liu, FARES48

49 Paper #36576, Daniel T. Liu, FARES49

50 Paper #36576, Daniel T. Liu, FARES50

51 Paper #36576, Daniel T. Liu, FARES51

52 Paper #36576, Daniel T. Liu, FARES52

53 Paper #36576, Daniel T. Liu, FARES53

54 Paper #36576, Daniel T. Liu, FARES54

55 Paper #36576, Daniel T. Liu, FARES55

56 Paper #36576, Daniel T. Liu, FARES56

57 Paper #36576, Daniel T. Liu, FARES57 Step #6: Setting Up Oracle Context 1.Start the Net Configuration Assistant 2.Choose “Directory Service Access Configuration” option 3.Choose “Create a new Oracle Context” 4.Choose “Oracle Internet Directory” 5.Enter LDAP server location

58 Paper #36576, Daniel T. Liu, FARES58 Step #6: Setting Up Oracle Context 6.Enter an administrative context in which to create the Oracle Context. In our case, it is “dc=company,dc=com” 7.Enter user name and password (cn=orcladmin/welcome) 8.The authenticated user is added to the following groups -OracleDBCreators (OracleDBCreators,cn=OracleContext) -OracleNetAdmins (cn=OracleNetAdmins,cn=OracleContext)

59 Paper #36576, Daniel T. Liu, FARES59

60 Paper #36576, Daniel T. Liu, FARES60

61 Paper #36576, Daniel T. Liu, FARES61

62 Paper #36576, Daniel T. Liu, FARES62

63 Paper #36576, Daniel T. Liu, FARES63

64 Paper #36576, Daniel T. Liu, FARES64

65 Paper #36576, Daniel T. Liu, FARES65

66 Paper #36576, Daniel T. Liu, FARES66

67 Paper #36576, Daniel T. Liu, FARES67 Step #7: Adding Service Names To OID Method #1: 1.Open Net Assistant. Under “Net Configuration” and “Directory” node, click “Service Naming” 2.Enter username and password when the “Directory Server Authentication” window appears 3.Highlight “Service Naming” node. Go to Menu “Edit”, then “Create”, the “Net Service Name Wizard” window appears. 4.Enter Net Services Information: (Host Name, Port, Protocol, etc)

68 Paper #36576, Daniel T. Liu, FARES68

69 Paper #36576, Daniel T. Liu, FARES69

70 Paper #36576, Daniel T. Liu, FARES70

71 Paper #36576, Daniel T. Liu, FARES71 Step #7: Adding Service Names To OID Method #2: 1.Prepare a LDIF file (example.ldif) dn:cn=db1,dc=Oraclecontext,dc=company,dc=com objectclass: top objectclass: db1NetServie cn: db1 db1NetDescString: (description = (address = (protocol = tcp) (host = dallas.company.com) (port = 1521)) (connect_data = (service_name = db1.company.com)))

72 Paper #36576, Daniel T. Liu, FARES72 Step #7: Adding Service Names To OID Method #2: 1.Execute the “ldapadd” command: -ldapadd –D {bind dn} –w {password} –h {ldap_host} –v {verbose mode} –f {ldif entry file) -Ldapadd –D cn=orcladmin –w welcome –h server_name –v –f example.ldif

73 Paper #36576, Daniel T. Liu, FARES73 Step #8: Setting Up The Client Machine 1.Install Oracle Net client software 2.Start the Net Configuration Assistant 3.Click “Naming Method Configuration” option 4.Select “Directory” under Naming Methods. Click “Finish”

74 Paper #36576, Daniel T. Liu, FARES74 Step #8: Setting Up The Client Machine 1.This process create ldap.ora file under: $ORACLE_HOME/network/admin/ 2.Configure Oracle Name Server or tnsnames.ora file as backup Naming Methods: -NAMES.DIRECTORY_PATH=(LDAP,ONAME,TNSNAMES) # LDAP.ORA Network Configuration File:D:\oracle\ora81\network\admin\ldap.ora # Generated by Oracle configuration tools. DEFAULT_ADMIN_CONTEXT = "dc=company,dc=com" DIRECTORY_SERVERS= (dliu:389:636) DIRECTORY_SERVER_TYPE = OID

75 Paper #36576, Daniel T. Liu, FARES75 Migrating From Local Naming 1.Start Oracle Net Assistant. 2.Choose Command > Directory > Import Net Service Names. 3.Enter username and password. 4.“Directory Server Migration Wizard” starts, Click Next.

76 Paper #36576, Daniel T. Liu, FARES76 Migrating From Local Naming 5.The “Select Net Service Names” window appears. From the list, select the network domain. 6.The “Select Destination Context” window appears. Select the Directory Naming Context that contains the Oracle Context from the Directory Naming list.

77 Paper #36576, Daniel T. Liu, FARES77 Migrating From Local Naming 7.Click “Next”. The wizard exports the net service names. 8.Click “Finish” to complete the directory Server Migration wizard. Now OID has all the database connecting information loaded.

78 Paper #36576, Daniel T. Liu, FARES78 Migrating From Oracle Names Server Method #1: Direct Export 1.Go to the Oracle Names Server, dump the service address information to a tnsnames.ora file. -NAMSCTL> dump_tnsnames 2.Transfer the file to the LDAP server. -ftp ldapserver.company.com -Put tnsnames.ora 3.Load the net service information.

79 Paper #36576, Daniel T. Liu, FARES79 Migrating From Oracle Names Server Method #2: In-Direct Export 1.Run DUMP_LDAP from Oracle name Server. -NAMESCTL> dump_ldap company.com –f sample.ldif 2.Go to LDAP server, run the “ldapadd” command.

80 Paper #36576, Daniel T. Liu, FARES80 Migrating By Proxy Oracle Client version is 8.1.5 or earlier. Use Oracle Names LDAP proxy server. See article “Migration by Proxy” in May 2001 of Oracle Magazine for details.

81 Paper #36576, Daniel T. Liu, FARES81 Summary Net Services Basics. Connection Methods: Directory LDAP Oracle Internet Directory (OID) OID Terminology and Architecture.

82 Paper #36576, Daniel T. Liu, FARES82 Summary How Net Services saved in Directory Server. Step-by-Step setup of Directory Naming using Oracle Internet Directory. Migrating from Local Naming. Migrating from Oracle Names Server.

83 Paper #36576, Daniel T. Liu, FARES83 References Oracle9i Net Services. Release 1 (9.0.1); Oracle Internet Directory, Administrator’s Guide. Release 3.0.1; Oracle Internet Directory, Administrator’s Guide. Release 2.1.1; Net8: A Step-by-Step Setup of Oracle Names Server; Oracle Open World 2000;P Oracle Metalink and support papers numbers: Note: 157892.1, Quick Start Guild: Oracle Internet Directory Installation 3.0.1; Note: 112763.1, Example of LDAP setup for Net8 Administration; Note: 120717.1, Net*8 LDAP Naming: Adding TNS Service Names to an OID. Reprinted from Oracle Internals I would also like to acknowledge the assistance of Bob Polak of the Allant Group, Ann Collins, Larry Bailey, Husam Tomeh and Archana Sharma of FARES, and Roger Peterson of Oracle.

84 Paper #36576, Daniel T. Liu, FARES84 Thanks For Coming !! Daniel Liu Contact Information Phone: (714)-701-3346 Email: dliu@firstam.com Email: daniel_t_liu@yahoo.com Company Web Site: http://www.firstam.com

Download ppt "Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American."

Similar presentations

Chapter 20 Oracle Secure Backup.

Chapter 20 Oracle Secure Backup.
ASGC Site Update Yi-Ping Wu Jeng-Hsueh Wu. Two Significant Researches 1.Oracle Security issues and Studies for 3D 2.Streams Replications Study Report.

ASGC Site Update Yi-Ping Wu Jeng-Hsueh Wu. Two Significant Researches 1.Oracle Security issues and Studies for 3D 2.Streams Replications Study Report.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
© Tally Solutions Pvt. Ltd. All Rights Reserved 1 Shoper 9 Tally.ERP 9 Interface January 2010.

© Tally Solutions Pvt. Ltd. All Rights Reserved 1 Shoper 9 Tally.ERP 9 Interface January 2010.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Network+ Guide to Networks, Fourth Edition Chapter 10 Netware-Based Networking.

Network+ Guide to Networks, Fourth Edition Chapter 10 Netware-Based Networking.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.

Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.
PowerCenter 8.6 SE Installation and Operational Guidelines.

PowerCenter 8.6 SE Installation and Operational Guidelines.
Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.

Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Understanding Active Directory

Understanding Active Directory
TrendReader Standard 2 This generation of TrendReader Standard software utilizes the more familiar Windows format (“tree”) views of functions and file.

TrendReader Standard 2 This generation of TrendReader Standard software utilizes the more familiar Windows format (“tree”) views of functions and file.
Overview of Active Directory Domain Services Lesson 1.

Overview of Active Directory Domain Services Lesson 1.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
This presentation will guide you though the initial stages of installation, through to producing your first report Click your mouse to advance the presentation.

This presentation will guide you though the initial stages of installation, through to producing your first report Click your mouse to advance the presentation.
INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Client-Server – Lecture 4 Copyright System Managers LLC 2007 all rights reserved.

INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Client-Server – Lecture 4 Copyright System Managers LLC 2007 all rights reserved.

Similar presentations

Ads by Google