12/13/2018 Document 1390533.

1
Copyright (c) 2018, Oracle. All rights reserved. Oracle Confidential.

How to Create Default Resource Access Descriptors (RADS) for Forms 11g (Doc ID 1390533.1)

In this Document

Goal
Solution
References

APPLIES TO:

Oracle Forms - Version 11.1.1.2.0 to 11.1.2.2.0 [Release 11g]

Information in this document applies to any platform.
Forms 11g Release 1, Forms 11g Release 2, OID 11g

GOAL

Resource Access Descriptors (RADs) are used by Forms and Reports when Single Sign-On (SSO) is configured for the products. The
RAD name matches a specific configuration section in the formsweb.cfg. The RAD contains specific DB connect information such as
username, password and DB connect string and is normally associated with a specific OID user. If Oracle Delegated Administration
Services (DAS) is available, Default RADs can easily be created in 11g OID by using the steps in Note 262686.1.

However, at the time of this note's writing, only 10gR2 DAS is available and is not configured by default when 11g OID is installed.
Please see the Fusion Middleware Installation Guide for Oracle Identity Management, 11g Release 1 and Note 1364497.1 .

If DAS is not available, this note describes how to create a Default RAD using LDAP commands.

Note: The Default RAD provides Forms SSO/OID users access to the database listed in the Default
RAD without having to create a RAD for each SSO/OID user. If a Default RAD is not used, a RAD
needs to be created for each individual SSO/OID user.

SOLUTION

Please Note the Following:

• The ldap utilities commands (ldapsearch, ldapadd etc.) shown below have line wrapping. Please make sure that
these commands are entered on a single-line. However, The ldif scripts should have the carriage returns as shown
in this document. Both an ldap command example and an ldif example file are attached to this document.

• The orclguid and orclownerguid discussed in this document are typically 32 digit hexadecimal strings. For
readability purpose they are shown with dots without fully expanding the digits.

Set the Environment

Open a shell on the FMW 11g FMW mid tier host, set the ORACLE_HOME environment variable, and include $ORACLE_HOME/bin in
the path.

Windows:
set ORACLE_HOME=<path to FMW 11g oracle home>
set PATH=%ORACLE_HOME%\bin;%PATH%

Unix(sh, ksh):
export ORACLE_HOME=<path to FMW 11g oracle home>
export PATH=$ORACLE_HOME/bin:{$PATH}

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=3wzbngrih_4&id=1390533.1 1/3
12/13/2018 Document 1390533.1
Unix(tsh, csh):
setenv ORACLE_HOME <path to FMW 11g oracle home>
setenv PATH $ORACLE_HOME/bin:{$PATH}

Determine the orclownerguid for the Default RAD Entry

Run the following ldapsearch to get the value for orclownerguid for the default RAD entry.

ldapsearch -h <oid hostname> -p <oid port> -D <oid super user> -w <oid super user password> -b
"cn=Extended Properties,cn=OracleContext" -s one "objectclass=*" dn orclownerguid

Example
ldapsearch -h my.host.com -p 389 -D cn=orcladmin -w mypassword -b "cn=Extended
Properties,cn=OracleContext" -s one "objectclass=*" dn orclownerguid

It will return the following entries.

orclownerguid=9E8A..............BA2, cn=Extended Properties,cn=OracleContext

orclownerguid=9E8A..............BA2

Create the Resource Access Descriptor (RAD)

In this step Resource Access Descriptor (RAD) entries are added under the orclownerguid container.

a. Create an ldif script (say add_default_rad.ldif) as shown below

dn: orclresourcename=<Forms application section name>+orclresourcetypename=OracleDB, cn=Resource Access

Descriptor , orclownerGUID=<orclownerguid value from previous step>, cn=Extended Properties ,
cn=oraclecontext, dc=us, dc=oracle, dc=com
orclresourcetypename: OracleDB
orclflexattribute1: <database alias from tnsnames.ora>
orcluseridattribute: <database user>
orclownerguid: < orclownerguid value from the previous step>
orclusermodifiable: true
orclpasswordattribute: <database password>
orclresourcename: <Forms application section name>
objectclass: top
objectclass: orclresourcedescriptor

Example (one rad entry)

dn: orclresourcename=default_rad_app1+orclresourcetypename=OracleDB, cn=Resource Access Descriptor ,
orclownerGUID= 9E8A..............BA2, cn=Extended Properties , cn=oraclecontext, dc=us, dc=oracle,
dc=com
orclresourcetypename: OracleDB
orclflexattribute1: mydbName
orcluseridattribute: scott
orclownerguid: 9E8A..............BA2
orclusermodifiable: true
orclpasswordattribute: tiger
orclresourcename: default_rad_app1
objectclass: top
objectclass: orclresourcedescriptor

b. Run the ldif script using the ldapadd utility.

ldapadd -h <oid hostname> -p <oid port> -D <oid super user> -w <oid super user password> -f
add_default_rad.ldif

Example
ldapadd -h my.host.com -p 389 -D cn=orcladmin -w mypassword –f add_default_rad.ldif

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=3wzbngrih_4&id=1390533.1 2/3
12/13/2018 Document 1390533.1

Note: If you are running 11gR2 Forms integrated with OAM 11.1.1.5/mod_osso and using Default RADs then you need to
perform the steps in Note 1390192.1 due to unpublished bug 13092996.

Note: Per internal Bug 12754892 sample scripts for Reports were removed from the 11gR2 installation and are now
downloadable from here.

REFERENCES

NOTE:1364497.1 - New Direction for Oracle Fusion Middleware 11g with Single Sign-On 10g
NOTE:1390192.1 - OSSO-SUBSCRIBER-DN Header Returns DC=EXAMPLE,DC=COM
NOTE:1475601.1 - How to Create an OID User and Associate a RAD with the User Using LDAP Commands
Didn't find what you are looking for?

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=3wzbngrih_4&id=1390533.1 3/3