1. Deploying and Managing Oracle Unified Directory on Kubernetes
  2. Installing Oracle Unified Directory on Kubernetes
  3. Creating Oracle Unified Directory Instances
  4. Creating OUD Instances
  5. Deploying OUD Using --set Argument

7.4.2 Deploying OUD Using --set Argument

To deploy Oracle Unified Directory (OUD) using the --set argument:
  1. Navigate to the $WORKDIR/kubernetes/helm14c directory:
    cd $WORKDIR/kubernetes/helm14c
  2. Run the following command to create OUD instances:
    helm install --namespace <namespace> \
--set oudConfig.rootUserPassword=<password> \
--set persistence.filesystem.hostPath.path=<persistent_volume>/oud_user_projects \
--set image.repository=<image_location>,image.tag=<image_tag> \
--set oudConfig.sampleData="200" \
--set oudConfig.resources.limits.cpu="1",oudConfig.resources.limits.memory="8Gi",oudConfig.resources.requests.cpu="500m",oudConfig.resources.requests.memory="4Gi" \
--set cronJob.kubectlImage.repository=bitnami/kubectl,cronJob.kubectlImage.tag=<version> \
--set cronJob.imagePullSecrets[0].name="dockercred" \
--set imagePullSecrets[0].name="orclcred" \
<release_name> oud-ds-rs
    For example:
    helm install --namespace oudns \
--set oudConfig.rootUserPassword=<password> \
--set persistence.filesystem.hostPath.path=/nfs_volumes/oudpv/oud_user_projects \
--set image.repository=container-registry.oracle.com/middleware/oud_cpu,image.tag=14.1.2.1.0-jdk17-ol8-<YYMMDD> \
--set oudConfig.sampleData="200" \
--set oudConfig.resources.limits.cpu="1",oudConfig.resources.limits.memory="8Gi",oudConfig.resources.requests.cpu="500m",oudConfig.resources.requests.memory="4Gi" \
--set cronJob.kubectlImage.repository=bitnami/kubectl,cronJob.kubectlImage.tag=1.30.3 \
--set cronJob.imagePullSecrets[0].name="dockercred" \
--set imagePullSecrets[0].name="orclcred" \
oud-ds-rs oud-ds-rs
    The following caveats exist:
    • Replace <password> with the relevant password.
    • sampleData: "200" will load 200 sample users into the default baseDN dc=example,dc=com. If you do not want sample data, remove this entry. If sampleData is set to 1,000,000 users or greater, then you must set the following arguments to prevent inconsistencies in dsreplication:
      --set deploymentConfig.startupTime=720,deploymentConfig.period=120,deploymentConfig.timeout=60
    • The <version> in kubectlImage: tag: should be set to the same version as your Kubernetes version (kubectl version). For example if your Kubernetes version is 1.30.3 set to 1.30.3.
    • If you are not using Oracle Container Registry or your own container registry for your OUD container image, then you can remove the following:
      --set imagePullSecrets[0].name="orclcred"
    • If using NFS for your persistent volume then use:
      --set persistence.networkstorage.nfs.path=<persistent_volume>/oud_user_projects,persistence.networkstorage.nfs.server=<NFS IP address> 
--set persistence.storageClassCreate="true",persistence.storageClass="oud-sc",persistence.provisioner="kubernetes.io/is-default-class"
    • If using Block Device storage for your persistent volume then use:
      --set persistence.type="blockstorage",persistence.accessMode="ReadWriteOnce" 
--set persistence.storageClassCreate="true",persistence.storageClass="oud-sc",persistence.provisioner="oracle.com/oci"
    • For resources, limits, and requests, the example CPU and memory values shown are for development environments only. For Enterprise Deployments, please review the performance recommendations and sizing requirements in Enterprise Deployment Guide for Oracle Identity and Access Management in a Kubernetes Cluster.

      Note:

      Limits and requests for CPU resources are measured in CPU units. One CPU in Kubernetes is equivalent to 1 vCPU/Core for cloud providers, and 1 hyperthread on bare-metal Intel processors. An “m” suffix in a CPU attribute indicates ‘milli-CPU’, so 500m is 50% of a CPU. Memory can be expressed in various units, where one Mi is one IEC unit mega-byte (1024^2), and one Gi is one IEC unit giga-byte (1024^3). For more information, see Resource Management for Pods and Containers, Assign Memory Resources to Containers and Pods, and Assign CPU Resources to Containers and Pods

      Note:

      The parameters above are also utilized by the Kubernetes Horizontal Pod Autoscaler (HPA). For more details on HPA, see Kubernetes Horizontal Pod Autoscaler.
    • If you plan on integrating OUD with other Oracle components then you must specify the following:
      --set oudConfig.integration=<Integration option>
      It is recommended to choose the option covering your minimal requirements. Allowed values include: `no-integration` (no integration), `basic` (Directory Integration Platform), `generic` (Directory Integration Platform, Database Net Services and E-Business Suite integration), `eus` (Directory Integration Platform, Database Net Services, E-Business Suite and Enterprise User Security integration). The default value is `no-integration`

      Note:

      This will enable the integration type only. To integrate OUD with the Oracle component referenced, refer to the relevant product component documentation.
    • If you want to enable Assured Replication, see Enabling Assured Replication (Optional).
  3. Check the OUD deployment as per Verifying the OUD Deployment and Verifying the OUD Replication.