Oracle Internet Directory

Our Track Record with Oracle Internet Directory:

We have helped our clients get the most out of Oracle Internet Directory (OID) as part of their identity and access management (IAM) strategy. With the product's scalability, features and flexibility, we've helped companies implement Oracle Access Manager (OAM) using OID as its configuration and user data store. We've helped our cusomters leverage OID's unique architecture to create highly available directory services supportive of their identity and access management objectives.

Customers have been able to use high-end hardware load balancers for providing a highly available directory service for their OAM infrastructure without having to worry about issues around dirty reads and the relatively complicated setup of multi-master directory server infrastructure. This is of course made possible by the unique architecture of OID whereby the LDAP service is just a service/process sitting on top of a common data store (an Oracle DB). Multiple LDAP instances can all use the same data store but serve separate requests which are load balanced by dedicated hardware.

Customers have benefited greatly from OID's plug-in architecture which can be used to allow an external authentication source such as Microsoft's Active Directory to authenticate users within OID. OID has many features which allow it to seamlessly integrate with third-party directories. Together with the concept of external authentication outlined above, the Directory Integration Platform (DIP) can be used to synchronize users from a third-party directory into OID using built-in connectors.

A big plus for legacy (or new) applications requiring LDAP groups for access control, is the way OID implements dynamic groups. The dynamic group is defined like any other dynamic group with an LDAP filter, but to an LDAP client, that group object appears as a normal (static) group, on which the client can even perform a membership query.

Who We've Been Helping with Oracle Internet Directory:

  • Health insurance provider, Alberta
  • Lottery corporation, Manitoba

Services Provided:

  • Installation
  • High availability configuration
  • Configuration of external authenticating of OID users against Active Directory (AD)
  • Creation of Access Control policies and delegation of administration tasks
  • Configuration of custom password policies and plugins
  • Directory Integration Platform (DIP) profile configuration

Product Links:

http://www.oracle.com/technology/products/oid/index.html