Installing Configuring OUD, ODSM and Oracle DIP

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)

How to Install Oracle Unified directory(OUD), ODSM and DIP

Note: To make installation easy – install VNC and work over vnc (temporarily)

Install OUD directory

Note: Make sure to select enable DIP at OUD install time
First install and configure a basic OUD installation, as described in Installing and configuring OUD Directory
Note: ID sync is being migrated to Oracle Directory Interrogation Platform (ODIP)
Note 2: For DIP Install the full fusion middleware packages, select Do not configure.

Allow conflicting structural objectclasses – compatible with ODSEE

  1. /oud/Oracle/Middleware/asinst_1/OUD/bin/dsconfig set-global-configuration-prop –set single-structural-objectclass-behavior:accept -n -j /tmp/pw.txt
  2. /oud/Oracle/Middleware/asinst_1/OUD/bin/dsconfig set-attribute-syntax-prop –syntax-name Directory\ String –set allow-zero-length-values:true -n -j /tmp/pw.txt
  3. /oud/Oracle/Middleware/asinst_1/OUD/bin/dsconfig set-password-policy-prop –policy-name “Default Password Policy” –set allow-pre-encoded-passwords:true -n -j /tmp/pw.txt

Install weblogic server

Download from Oracle weblogic server 10.3.6
scp wls1036_generic.jar oud@odsm1:/installs
weblogic download
cd /installs
java -d64 -jar ./wls1036_generic.jar
Middleware Home: /oud/Oracle/Middleware
Un-check security box (say stay uninformed), wait till it times out.
After timing out (trying to connect) – select custom install leave all defaults
Un-check the box – Do not configure at the complete screen

Install Oracle ADF

Download ADF (Application Development Framework) from here
ADF download
scp oud@odsm1:/installs
unzip -qq
./runInstaller -jreLoc /usr/java
Skip regster & updates
Set the Oracle Home: Oracle_IDM1
Leave all default options

Oracle DIP Installation

Note: You can skip The IDM installation if you don’t plan to use DIP

Download the full Middleware package from and install
IDM instillation options

scp oud@odsm1:/installs
Note: Make sure to select Do not configure
mkdir /installs/IDM
cd /installs/IDM
unzip -qq ../
cd Disk1
Skip regster
Select Do Not Configure
Leave the default location
Un-check updates
Complete install

Configuring weblogic

Configure environment variables

Note: You can skip The environment variables if you don’t plan to use DIP (add to .bashrc)<p>

Complete the weblogic configure script

Run the below script
Choose New Domain
Note: DIP will only be in the list of selection if it was installed
Change selection to production mode
Change (from weblogic) user to admin
For jdk leave the default
check, Administration Server and Managed Servers, Clusters, and Machines, deployment server
check secure (port 7006, or 7002)
Under, cluster, click next
Under, Unix Machine tab, Click on Add, under name, specify the real hostname. click Next
Under assign machine, assign the Administration Server and the Managed server, click next
OBSOLETE – Check the box next to DIP
Click Create or extend(if extend an existing domain)
Note If configuring DIP, follow the post install process

Start weblogic in this order

Note: Run this only before the first startup
mkdir -p /oud/Oracle/Middleware/user_projects/domains/base_domain/servers/AdminServer/security
cd /oud/Oracle/Middleware/user_projects/domains/base_domain/servers/AdminServer/security
echo “username:weblogic” >
echo “password:password” >>

Before starting weblogic

Make sure the OUD directory is up, if not start it


To start weblogic

Start weblogic node manager first (needed for DIP)

cd /oud/Oracle/Middleware/wlserver_10.3/server/bin
nohup ./ &

start weblogic domain

Note: To increase memory size modify/change from 512 to 2048 on
cd /oud/Oracle/Middleware/user_projects/domains/base_domain/bin
nohup ./ &

Start weblogic DIP process

Note: Follow this post install process before running this
To start wls_ods1, manged node

  • Note: To AutoStart DIP Managed server

mkdir -p /oud/Oracle/Middleware/user_projects/domains/base_domain/servers/wls_ods1/security
echo “username:weblogic” >
echo “password:password” >>

cd /oud/Oracle/Middleware/user_projects/domains/base_domain/bin
nohup ./ wls_ods1 &

DIP post install

Once the instances are up and running this
cd /oud/Oracle/Middleware/Oracle_IDM1/bin
Enter WLS Admin Server Host Name :
Enter WLS Admin Server Port : 7001
Enter username to contact WebLogic Server : admin
[Enter password to contact WebLogic Server : ]
Enter backend LDAP Server HostName :
Enter backend LDAP Server Port : 1389
Enter username to contact LDAP server : cn=directory manager
[Enter password to contact LDAP Server : ]
Enter backend LDAP Server Admin Port : ‘4444
Enter SUFFIX to store DIP metadata : dc=domain,dc=com

Note: Update with latest release

cd /oud/Oracle/Middleware/Oracle_IDM1/bin

./dipConfigurator setup \
-wlshost \
-wlsport 7001 \
-wlsuser admin \
-ldaphost \
-ldapport 1389 \
-isldapssl false \
-ldapuser “cn=directory manager” \
-ldapadminport 4444 \
-isclustered false

Note: restart the weblogic app server before starting instance wls_ods1

Create in DIP a copy of our OU structure

Adding privileges for DIP user to new OU structure

Configuring certificates for DIP/weblogic

To configure SSL From DIP to OUD

How to –

First export the SSL certificate from OUD store

keytool -export -alias dip1 -file /tmp/dip1-ca-root.csr -rfc -keystore /oud/certs/dip1.jks -storetype JKS
Then import to new keystore as CA trusted

keytool -importcert -trustcacerts -alias oud-cert -file /tmp/dip1-ca-root.csr -keystore /oud/certs/dip1-dip2oud.jks
keytool -importcert -trustcacerts -alias ldap1 -file /tmp/ldap1-ca-root.csr -keystore /oud/certs/dip1-dip2oud.jks
Trust this certificate? [no]: yes
Then set for DIP the keystore location

./manageDIPServerConfig set -h localhost -p 7005 -D admin -attr keystorelocation -val /oud/certs/dip1-dip2oud.jks
Then configure weblogic to work with this


Change DIP to use SSL mode 2

./manageDIPServerConfig set -attribute sslmode -val 2 -h localhost -p 7005 -D “admin”
change DIP SSL port

./manageDIPServerConfig set -attribute backendhostport -val localhost:1636 -h localhost -p 7005 -D “admin”

Reference for DIP SSL

Accessing ODSM and DIP

To access the Oracle Directory Service Manager console

To access the DIP console

System Auto startup Scripts

To de-install Oracle ADF

To uninstall Oracle ADF
/oud/Oracle/Middleware/oracle_common/oui/bin/runInstaller -deinstall -jreLoc /usr/java

BUG workaround fixes

Fix for odsm / ADF bug issue
ODSM/DIP bug reference


OUD install and configuration
DIP admin documentation
Oracle Unified Directory Configuration Reference

Leave a Reply

Notify of