About Enterprise User Security Directory Entries |
 Contents |
 Previous |
 Next |
The following Oracle Internet Directory entries are used to store and manage Enterprise User Security information. Refer to Figure: Enterprise User Security Directory Information Tree in the topic, "How the Directory Organizes Enterprise User Security Information: DNs and DITs," which shows the Enterprise User Security directory information tree (DIT).
| Directory Entry | Description |
|---|---|
| Enterprise Users | These entries store enterprise user information. Each enterprise user has a unique identity across the enterprise. Enterprise user entries can reside at any location within an identity management realm, except within the realm's Oracle Context. |
| Enterprise Roles | These entries store information about database access privileges. Enterprise roles are containers for database global roles. Enterprise role entries can only reside within a realm's Oracle Context. |
| Enterprise Domains | An enterprise domain is a group of databases and their associated enterprise roles in the directory. These entries store enterprise domain information. They do not contain the actual database directory entries. Instead, enterprise domain entries can contain enterprise roles, user-schema mappings, and the enterprise domain administrator's group for that domain. They can only reside within a realm's Oracle Context. |
| Database Servers | A database server entry contains information about one database server. This entry is automatically created by Database Configuration Assistant when you use this tool to register a database in the directory. This entry can contain user-schema mappings, the OracleDBAdmins group, and any Oracle Net networking objects assicated to the database server. These entries can only reside within a realm's Oracle Context. |
| User-Schema Mappings | A user-schema mapping entry contains information that maps enterprise user DNs to schemas in databases. If the user-schema mapping is stored in the enterprise domain directory entry, then the mapping applies to all databases in that domain. If the mapping entry is stored in the database server entry, then it only applies to that database. These entries can only reside within a realm's Oracle Context. |
| Groups | An identity management realm contains administrative groups that manage Enterprise User Security directory objects. The Enterprise User Security administrative group entries are stored under the Group subtree. These entries can only reside within a realm's Oracle Context. See the topic, "Overview of Enterprise User Security Administrative Groups" for a description of these groups. |