Using a Credential Map in UCM 11g
By Kevin Smith on Mar 29, 2011
Credential Maps are still alive and well in 11g. I end up using them in almost all of my UCM deployments that use some kind of external directory server. Credential maps solve the problem of creating groups in your external directory server that match the names used in UCM for roles and accounts.
In 11g there is one slight wrinkle. The UI for editing the JpsUserProvider does not allow you to specify a credential map. Instead you must manually edit the provider.hda file for the JpsUserProvider on the file system.
The file to edit is
You add the following entry in the local properties section, substituting the name of your credential map.
After doing this you need to restart UCM to pick up the changes.
An important point is that before adding the entry to the provider.hda file and restarting UCM make sure you create the Credential Map in UCM. If the Credential Map you use in your provider.hda file does not exist in UCM no users will be able to log in, not even admin users.