Corporation Server User Manual
Groups Required to Configure or Deinstall Components
5-4 Oracle Application Server Installation Guide
Figure 5–6 shows these groups for the Oracle Delegated Administration Services
component.
5.3 Groups Required to Configure or Deinstall Components
Table 5–4 shows the groups that a user needs to belong to in order to configure or
deinstall Oracle Application Server components.
The user who installs and configures the components becomes the owner of the
components.
Table 5–4 Oracle Internet Directory Groups Required to Configure Components
To Configure This Component User Must Be a Member of ALL Listed Groups:
Infrastructure Components
OracleAS Metadata Repository To register OracleAS Metadata Repository against Oracle Internet
Directory, you must log in to Oracle Internet Directory as a user who
belongs to the iAS Admins group.
Oracle Internet Directory In OracleAS Cluster (Identity Management) environments,
to install subsequent Oracle Internet Directory instances after
the first one, you must be the
Oracle Internet Directory
superuser (cn=orcladmin).
Oracle Delegated Administration
Services
■ Trusted Application Admins
■ iAS Admins
■ Mid-Tier Admins group for the metadata repository used by
OracleAS Single Sign-On
If you are unsure which metadata repository is used by
OracleAS Single Sign-On, see "To Determine the Metadata
Repository Used by OracleAS Single Sign-On" on page 5-6.
■ Component Owners for the Oracle Delegated Administration
Services component
Note: This is required only if you are installing multiple
instances of
Oracle Delegated Administration Services.
When you are installing the second and subsequent instances,
then you need to belong to the Component Owners group. You
do not need to be a member when you install the first
Oracle
Delegated Administration Services instance.
See Section 5.8.1, "Using Oracle Directory Manager to Add Users
to Groups" for steps on how to add users to groups.
OracleAS Single Sign-On You must install OracleAS Single Sign-On as the superuser
(cn=orcladmin).
Oracle Directory Integration
Platform
■ iAS Admins
■ Trusted Application Admins
■ Admin for Oracle Directory Integration Platform, which
is identified by "cn=dipadmingrp,cn=odi,cn=oracle
internet directory"
■ Mid-Tier Admins group for the metadata repository used by
OracleAS Single Sign-On.
If you are unsure which metadata repository is used by
OracleAS Single Sign-On, see "To Determine the Metadata
Repository Used by OracleAS Single Sign-On" on page 5-6.