Install Oracle Internet Directory (OID) in Standalone mode

Oracle Internet Directory (OID) is an LDAP server which uses an Oracle database as a datastore. Client machines can use the OID for all TNS lookups. With OID. Once all client machines are configured correctly any modifications to the TNS lookups can be done from a central location reducing the amount of client machine administration.

This guide is about installing and using Oracle Internet Directory in Standalone mode, no need for Oracle Fusion Middleware Infrastructure.

Step-by-step guide

Download Oracle Internet Directory (Part of identity management) from

Install OID, follow instructions:

Starting the Installation Program:
Configure the Domain:
Start the Servers for Standalone Oracle Internet Directory:
Perform Initial Oracle Internet Directory Setup:


Start the Repository Creation Utility:
fix permissions (Doc ID 947285.1):
vi ldifFile

dn: cn=oid1,cn=osdldapd,cn=subconfigsubentry
changetype: modify
replace: orclAnonymousBindsFlag
orclAnonymousBindsFlag: 1

ldapmodify -D cn=orcladmin -q -p 3060 -h oid -f ldifFile
Modify the file sqlnet.ora in $ORACLE_HOME/network/admin directory need to have the following line:
Create the file ldap.ora in the $ORACLE_HOME/network/admin directory location.
This file has information of the server where the LDAP directory resides along with the port numbers for normal and secure connections
DEFAULT_ADMIN_CONTEXT = "dc=us,dc=oracle,dc=com"
DIRECTORY_SERVERS = (oid.mydomain.local:3060:3131)
NAMES.DEFAULT_DOMAIN = mydomain.local
Add tns entry in OID (TESTTNS will be the tns alias):
vi add_entry.ldif

dn: cn=TESTTNS,cn=OracleContext,dc=us,dc=oracle,dc=com
objectclass: top
objectclass: orclNetService
Load the ldif file:
ldapadd -h oid -p 3060 -c -D "cn=orcladmin" -f add_entry.ldif -w mypassword
We will now check a connection to the alias TESTTNS ensuring that the SQL*Net connection details are now obtained from the OID LDAP directory and not using information stored in the local tnsnames.ora file.

Note: the output of the tnsping command shows that the LDAP directory was accessed to resolve the alias

tnsping TESTTNS

TNS Ping Utility for Linux: Version - Production on 02-JUL-2018 14:41:49

Copyright (c) 1997, 2016, Oracle. All rights reserved.

Used parameter files:

Used LDAP adapter to resolve the alias
Attempting to contact (DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=oid.mydomain.local)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=oid)))
OK (0 msec)


Popular posts from this blog

Fixing & Registering ORACLE_HOMES in Central Inventory

Oracle 18c - New Features for Active Data Guard

List RMAN backups size