I am referring to this link, Oracle Unified Directory - Network Group and trying to setup "allowed-bind-id" field, however it asks for setting up identity mapper. Is there are any document someone could point on setting up this feature? I am not sure on how to configure matching identity mapper for a Network Group.
allowed-bind-id is useful in case LDAP clients binds using an indentifier string that is *not* a LDAP DN, e,g, foo@bar.
Are you really in this case ? If you want to configure a network group matching some DNs, you should use the allowed-bind-dn property instead. This option does not require any identity mapper and accepts regular expressions.
A connection is assigned to a network group w/o any lookup to the directory, so network group selection must be based on info available in the incoming request (e.g dn). As of now, it is not possible to define a criteria based on the content of the user entry for instance. This might be supported in the future.