Can EUS in OUD use PTA to active directory?

  1. Configuration (OUD+EUS+PTA) is for customers who did not want to install the dll on their AD server ( I mean EUS DLL Option )
  2. The PTA workflow element offers a feature allowing to locally store the password hash when a successful bind is executed, thus allowing EUS to work. The big drawback is that the local password copy is created only if the user performs a ldap bind through OUD (meaning that if a user modifies his password in AD , he must also do a ldapbind through OUD in order to refresh the local copy of the password).
  3. AD uses MS proprietary hash, and besides, it does not allow LDAP clients to read password field. EUS, on the other side, does not perform LDAP bind, but instead reads user’s hashed password, and than compares the hash it produced itself out of clear-text password provided by DB user.
Ref : http://docs.oracle.com/cd/E52734_01/oud/OUDAG/proxy_functionality.htm#BGBDADJE

OUD/LDAP Knowledge Base

  1. Enforcing AD user Account Lockout Policy through OUD Proxy for EUS
  2. Managing User Accounts
  3. Disable or Lock An Account In OUD
  4. To Disable an Account
  5. How to lock every account in a LDAP subtree with OUD
  6. Enterprise Manager Cloud Control 12c for Oracle Unified Directory
  7. Understanding Root Users and the Privilege Subsystem
  8. Oracle Unified Directory Command-Line Interface
  9. Disabling Anonymous Access
  10. Proxy Authorization ACIs
  11. OUD Admin Guide
  12. Move or Rename an Entry
  13. Guidelines for enabling MODDN
  14. OUD Demos