If you are working as a FMW Administrator and have Oracle Internet Directory (OID) in your IT estate then knowing this will def come handy when you are faced with any OID issues.
The past changes for a user account or any data since its creation are not stored anywhere unless you have enabled the audit option in OID. So if there is some data corruption or you want to find out what changes were performed in OID for a user account for any incident – audit logs can help you get that information.
To enable the OID Audit please follow the next steps:
1) Access the Enterprise Manager of the weblogic http://<hostname>/em with the credentials <user> <password>
2) Access the section Identity and Access, select OID1 instance then right click on the Security menu item -> then Audit Policy
3) In the section Audit Policy section for OID do the following:
– Audit Level : Custom
– Users to Always Audit : example user.
– Select all the categories : User Sessions, Authorization, Data Access, Account Management, LDAP Entry Access .
– In the Account Management section check all the Events :
Change Password, Create Account, Delete Account,
Disable Account, Enable Account , Modify Account, Lock Account ; Success or Failure
4) To view the audit logs they can be seen in this folder path <MW_HOME>/<ORACLE_INSTANCE>/auditlogs/<componentType>/<componentName>
If you encounter any issues or need any help with OID or Identity Management, feel free to contact me on Sumit@OraWorld.co.uk
If you want to know when I have shared new blog posts, you can Subscribe to Blog.