Skip to Main Content
Forums

Oracle Database Discussions

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Integration BBDD Oracle11G with the active directory (LDAP)

849343Jun 17 2020

Hello everyone,

Currently, I have an oracle 11g bbdd inside a windows server 2016 that already has the AD installed. So far, I have created several organizational units within the AD with their respective groups and users within them.

The next step has been to try to integrate the Oracle Database with the AD. The steps that I have followed are the following:

  1. I run the NEtCa.bat tool (% ORACLE_HOME% \ BIN \ netca.bat).
  2. I select the "Directory Usage Configuration" option.
  3. I select the option "Microsoft Active Directory".
  4. I select the option "Select the directory server you want to use, and configure the directory ... (the second from the combo).
  5. I introduce the name of the Hostname: in this case I thought it necessary to enter the full name <hostname>. <domain> Although I have tried to put only the hostname and the domain and it does not work for me either.

Continuing with point 5, I get the following error: TNS-04420: Problem Running LDAP.

Still, I have generated the ldap.ora file with the following line:

     DIRECTORY_SERVER_TYPE = AD

After this, I tried to modify the files with the .sbs extension of the specific entries. I go to the folder c: \ oracle \ ora112 \ ldap \ schema \ ad and change the extension after copying the files:

     adDisplaySpecifiers_other.sbs to adDisplaySpecifiers_other.ldif

     adDisplaySpecifiers_en.sbs to adDisplaySpecifiers_en.ldif

Inside these files I replace the text “% s_AdDomainDN%” with the specific domain (DN) of the active directory: DC = test, DC = pru, DC = com

I run the following commands from a shell as administrator:

     ldapmodify -H <hostname> .test.pru.com -Z -f adDisplaySpecifiers_other.ldif

     ldapmodify -H <hostname> .test.pru.com -Z -f adDisplaySpecifiers_en.ldif

Now the error that returns me is the following: LDAPMODIFY: Cannot connect to the LDAP server.

I have been able to make sure that there is no firewall that prevents the connection or that some ports are capped, in ppio everything is correct.

I have also modified, to continue, the SQLNET.ORA file (% ORACLE_HOME% \ network \ admin) with the following parameters:

     SQLNET.AUTHENTICATION_SERVICES = (NTS)

     NAMES.DIRECTORY_PATH = (TNSNAMES, EZCONNECT, LDAP)

     names.ldap_authenticate_bind = TRUE

Greetings and thank you all very much.

Daniel.
Comments
Post Details
Added on Jun 17 2020
#general-database-discussions
0 comments
329 views