Customizing the Console for Kerberos-Authenticated Enterprise Users

Contents

Previous

Next

---

By default, the console user interface does not display the field where you can enter Kerberos principal names. You must customize the console to display the krbPrincipalName attribute in its Create User window by using the following steps:

1. Log in to the Oracle Internet Directory Self-Service Console, and choose the Configuration tab.

   You can launch the Self-Service Console by entering a URL of the following form into your browser's address field:

   http://<computer_name.domain_name>:7777/oiddas
   
   

   where computer_name is the name of the computer where you have installed Oracle Internet Directory, and domain_name is the fully qualified domain name of that computer.

2. In the Configuration page, select the User Entry subtab, and click Next until the Configure User Attributes page appears.

3. In the Configure User Attributes page, click Add New Attribute. The Add New Attribute page appears.

4. In the Add New Attribute page, select krbprincipalname from the Directory Attribute Name list (or the attribute that you have configured for orclCommonKrbPrincipalAttribute in your identity management realm) and perform the following steps on this page:

   1. Enter Kerberos Principal Name in the UI Label field.

   2. Check Viewable and Searchable.

   3. Select Single Line Text from the UI Type list.

   4. Click Done.

5. Click Next to navigate to the Configure Attribute Categories page. On this page, select the Basic Information UI Label and click Edit. The Order Category page appears.

6. In the Order Category page, perform the following steps:

   1. Select krbprincipalname in the left Category List.

   2. Click Move > to move krbprincipalname to the list on the right.

   3. Click Done.

7. Click Next until you reach the last page, and then click Finish to save your work.

Related Topics