How to configure user authentication via OID in EM12c
How to configure Enterprise Manager 12c to authenticate users via Oracle Internet Directoty LDAP server
Use emctl to configure external authentication on em12c host
oracle@linux5 ~$ emctl start oms
Navigate To the Weblogin Administration Console Web Page. The link is included in the Weblogic section of EM12c itself (probably port 7171).
Login as weblogic ans navigate to Domain/Security Realms. Select the default realm (probably “myrealm”. There is a tab “Users and Groups”, where all OID users should be visible.
create external identified EM user
oracle@linux5 ~$ emcli create_user -name=jans -type=EXTERNAL_USER
There seems to be no way of using EM GUI for this .
The new user is now visible in EM’s Administrators tab.
Unfortunately, the email addresses is not being used from LDAP.
Adjust search attribute
Per default, “cn” is the search attribute. But in enterprise Manager, usernames cannot have banks in them. So, if you have a person named “testi Tester” in your OID, and try to create this user via “emcli create_user”, it won’t succeed:
If you identify your users uniquely by the “uid” attribute, you have to change this in Weblogic Server.
Navigate to Home/Security Realms/realm/Provider/EM_OID_Provider in Weblogic Admin GUI.
Then adjust search attribute and filters for the user base there.