1. 若是DB 11g的APEX需要先授权访问LDAP Server, 10g DB不需要。
sqlplus /nolog
connect sys as sysdba
运行下面的script.:
DECLARE
l_acl VARCHAR2(100) := 'ldapacl.xml';
l_desc VARCHAR2(100) := 'LDAP Authentication for ldap.mydomain.com';
l_principal VARCHAR2(30) := 'APEX_040100'; -- upper case,若版本为4.2为APEX_040200
l_host VARCHAR2(100) := 'sg-adserver'; -- LDAP server的hostname
BEGIN
-- Create the new ACL.
-- Also, provide one starter privilege, granting the schema the privilege to connect.
dbms_network_acl_admin.create_acl(l_acl, l_desc, l_principal, TRUE, 'connect');
-- Now grant privilege to resolve DNS names.
dbms_network_acl_admin.add_privilege(l_acl, l_principal, TRUE, 'resolve');
-- Specify which hosts this ACL applies to.
dbms_network_acl_admin.assign_acl(l_acl, l_host);
COMMIT;
END;
2.在需要使用LDAP的APEX application中,进入Shared Components -> Authentication Schemes
点Create. 选Based on a pre-configured scheme from the gallery,再Next.
scheme type: LDAP directory
host: 为LDAP server的host name
port: 389 (为LDAP server port)
use ssl: no ssl
distinguished name string: 比如Microsoft LDAP的DN为test,则录入test\%LDAP_USER%
user exact distinguished name: Yes
点创建,然后即可尝试run application.
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/8118583/viewspace-749267/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/8118583/viewspace-749267/