|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| Integration Steps - 10g AS with OAM (COREid) |
| Sunday, May 27, 2007 |
|
In today's post I am covering integration of 10g Oracle Application Server with Oracle Access Manager (Oblix COREid)
For overview of Oracle Access Manager & Oracle Application Server integration check my previous post at
http://becomeappsdba.blogspot.com/2007/05/oas-oam-access-manager-oblix-coreid.html
For installation of Oracle Access Manager (Oblix COREid) click here
Here are the integration Steps
---------------------------------------------
1. Install Oracle Application Server 10g
1.1 Install OAS Infrastructure Tier (MR, OID, SSO..)
2. Install Oracle Access Manager component
2.1 Install Identity Server
2.2 Install WebPass
2.3 Install Access Server (including webpass)
3. Configuration step on 10g OAS
3.1 Install WebGate on HTTP Server on 10g AS Middle tier node
3.2 Install webgate on HTTP Server on 10g AS Infra Tier (SSO & OADDAS access)
3.3 Configure OracleAS Single Sign-On for external Authentication
3.4 Configure web browser to allow cookie (as authentication mechanism works on cookie)
4 Integrate 10g OAS with OAM
4.1 Enable Single Sign-On for integration between OAS and OAM (by creationg java class and editing policy.properties)
4.2 Integrating DAS (Delegated administrative services) (If you have configured OAS SSO integration with OAM SSO, oiddas is autmoatically integrated)
4.3 Integrating Portal (No additioanl steps required if OAS-OAM is integrated as mentioned above)
4.4 Enabling SSO on forms (enable OAS-SSO for forms and this will be protected automatically as per OAS - OAM single sign-on integration mentioned above)
4.5 Integrating reports (By defaults reports are Oracle AS single sign-on protected so no additonal steps required )
4.6 Configure OID synchronization with LDAP Server (If Access manager is in different LDAP Server)
4.7 Configure global logout from Oracle AS Single Sign-On and Access Manager (edit policy.properties on OAS SSO server, Add SSO logout URL in Access System console on OAM, provide new global logout page inWebgate Instance configurable via access system console in OAM)
4.8 Finally create policies to protect 10g OAS resources (URL's) in policy manager by access server in OAM (/sso/auth, /oiddas, /pls/orasso, /pls/portal...).
This can be done via OAM Policy Manager in Access Server
Access Server (/access/oblix) -> Policy Manager -> Create Policy Domain
Configuring Oracle Calendar Synchronization directly from your mobile coming soon...Labels: integration, oam |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
 del.icio.us
¦
 Digg This
¦
 My Yahoo
¦
 Reddit
¦
 BlinkList
¦
 Furl It
¦
Email This
¦
Leave Your Comments
|
posted by Atul Kumar @ 2:11 AM
  |
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| OAS - OAM (Access Manager / Oblix COREid) Integration Architecture |
| Friday, May 25, 2007 |
|
|
Integrating Oracle 10g Application Server with Oracle Access Manager -Overview
=========================
i) Oracle Application Server (OAS) can be integrated with Oracle Access
Manager (OAM, earlier called as Oblix COREid) for Authentication and
Authorization. Though Oracle Application Server has its own
Authentication and Single Sign-On feature but integrating OAS with OAM
provide more flexibility and security to Oracle Application Server and help in providing fine grained access control for protecting web and other resources.
ii) You also need OAM-OAS integration if you wish to integrate E-Business
Suite with Oracle Access Manager (Oblix COREid) for authentication and
authorization.
iii) If you wish to integrate (protect/authenticate/authorize) any oracle
product (like portal, Forms, BI, E-Business Suite) with Oracle Access
Manager (Oblix COREid) it should be done via Oracle Application Server.
iv) Integration of OAM with OAS will help you to provide identity management functionality to Web based application which run on Oracle Application server or any other Oracle product like Oracle E-Business Suite Self Service applications (iProc, iRec)
iv) While integrating Oracle Access Manager's Authorization functionality, either Oracle Application Server or Oracle Access Manager Single Sign-On can act as authentication mechanism.
OAS (10g AS) - OAM (Oblix COREid) Integration Architecture
-----------------------------------------------------------------------------
As shown in diagram on top, you will have Oracle Access Manager installed and configured with any LDAP Server (AD, OID, iPlanet) and Oracle HTTP Server will be protected by WebGate (OAM web component).
Here is request flow when Oracle Application Server is protected by Oracle Access Manager (Oblix COREid)
i) User try to access web resource (http/https) on oracle application server which is protected by Oracle Access Manager (Oblix COREid), request is received by WebGate (access manager component on Web Server)
ii) Webgate request for policy from Access Server (another component in Oracle Access Manager) to check if resource (URL) is protected or not
iii) If resource/URL is not protected page is returned to user. If resource/URL is protected, webgate ask user to authenticate
iv) Credentials entered by user is validated against LDAP directory via access system.
v) After successful authentication, Oracle Access Manager Single Sign-On cookie (obSSOCookie) is sent to user browser
vi) After successful authorization (pre-defined at access server policy domains), access server executes actions specified in security policy and set HTTP Header variable that maps to Oracle Application Server 10g User ID
vii) Oracle AS Single Sign-On recognizes HTTP Headers set by Oracle Access Manager (HeaderVar), authenticates user and sets Oracle Single Sign-On Cookie.
If your LDAP store for Access is not same OID where Oracle Application Server users are stored then ensure that user data in two LDAP servers is in sync (up to date)
Implementation of 10g AS integration with Oracle Access Manager(Oblix COREid) coming soon ...
Integration of Oracle Access Manager(COREid) with Siebel coming soon...
Labels: integration, oam |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 10:14 PM
|
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| 1Z0-312 Cloning and Staging Oracle Application Server |
| Monday, May 21, 2007 |
|
|
This post is in continuation of Oracle 10g Application Server administration (OCP) track 1Z0-312. This post covers second topic of certification track i.e. Cloning and Staging Oracle Application Server .
For previous post on this certification track (1Z0-312) check http://becomeappsdba.blogspot.com/search/label/1z0312
Cloning process mentioned here are w.r.t. Oracle Application Server 10g and not at all related to Oracle Applications 11i/R12 (Financials/HRMS)
This topic covers following points as per certification track explained under A, B, C...
A) Clone Oracle Application Server installations
=========================================
i) Cloning is process of creating replica of existing installation to differnt location while preserving its configurations.
ii) You can create a clone using command line cloning scripts or OEM 10g Grid control
iii)
You can clone J2EE and Web Cache middle tier which is not connected to Infrastructure,
Similarly in Portal and Wireless only middle tier can be cloned (You can't clone infrastructure tier) both source and target instances share same infrastructure database (as described in fig)
iv) During cloning source ORACLE_HOME is copied to destination ORACLE_HOME , then a set of scripts is used to update information in key configuration files of oracle application server middle tier (like hostname).
Key points in OAS cloning ?
---------------------------------------
--You can clone middle tier installation of (J2EE & Webcache, Portal & Wireless and BI & Forms)
--You CANNOT clone
-----i)Infrastructure Tier (MR & IM)
-----ii)OAS Integration, BPEL Process Anaytics or BPEL process manager
-----iii) Developer kit and SDK
-----iv) Installation that includes workflow
--Cloned instance must have different name than source instance.
-- You can clone MT (Middle Tier) that is member of OracleAS Cluster or Farm but you must remove instance from OracleAS Cluster and Farm before beginning cloning operation.
-- Cloning process does not configure Load Balancer Router, If you use one, you have to configure it manually including invalidation port
-- If in source webcache instance is member of cache cluster, then target webcahe should be manually added in to cache cluster (or delete other cache cluster member info manually if you don't wish to target cloned instance as cache cluster)
-- If source webcache instance is configured to forward requests to more than one origin server on same host as source web cache instance, then cloning will fail.
Cloning Process in Oracle Application Server
----------------------------------------------------------
i) On source instance run prepare_colne.pl (in $OH/clone/bin) (parses files, create archives using DCM, backs up required files, and run wireless clone assistant if wireless is enabled)
ii) Copy ORACLE_HOME to destination location
iii) ON target instance run clone.pl (invokes OUI which repeats all actions done during source instance installation time)
iv) post clone phase , clone.pl also does following post clone steps to make target cloned instance to a working state. These are
----a) setting new ORACLE_HOME in DCM
----b) update configuration file
----c) calls chgiphost command to change hostname and IP address in cloned instance
----d) If source instance was connected to OID (Portal/BI) then add information about clone in OID
----e) After cloning start services on target instance on unix you have to run root.sh after cloning (from root)
B) Customize the cloning process
=============================
You can customize various aspects of cloning like specify custom port during cloning or preserve custom settings
i) Customizing ports during cloning
As mentioned above, cloning oracle application server in turn calls Oracle Universal Installer (OUI), Though you don't see OUI calls; still OUI calls can be customized by configuration file cs.properties in $ORACLE_HOME/clone/ias/config
For example - To configure custom ports (to target instance) during cloning
clone_command_line = oracle.iappserver.iapptop:szl_PortListSelect="{\"YES\",
\"/location_of_port_list/portlist.ini\"}"
When you update this line in cs.properties while cloning , OUI will pick staticportlist.ini file and assign ports based on above file to target instance.
ii) Updating custom data
You can update custom data (custom files) that is not updated by default during cloning.
You can change/customize following data in target cloned instance
--Change hostname in a file -> Add full path name of file in which hostname needs to be cahnged to
$ORACLE_HOME/chgip/config/hostname.lst
--Update occurance of ORACLE_HOME in a file from old value to new OH value -> Use replace tag in fixup_script.xml.tmpl under
$ORACLE_HOME/clone/ias/config
--Extract value from file1 and use it to replace value in file2 -> Use alter tag in fixup_script.xml.tmpl under
$ORACLE_HOME/clone/ias/config
C) Use cloning to expand an OracleAS Cluster
==================================
The most common example of cloning Oracle Application Server is expanding a Oracle AS cluster. For example you have a cluster of J2EE and Webcache Middle tier with identical configuration and wish to add another J2EE and webcache node with identical configuration and deployemt. Assume source Oracle Application Server is connected to file based repository and member of farm and OracleAS Cluster following are cloning steps to expand this OracleAS Cluster
i) Remove Source isnatnce from Farm and Cluster (Use dcmctl or iasConsole); dcmctl leaveFarm and dcmctl leaveCluster
ii) Run preclone on source Instance ("perl prepare_clone.pl")
iii) Copy oracle_home and associated files from source to target instance
iv) Run clone on target instance "perl clone.pl"
v) Add source isntance to Farm & Cluster ("dcmctl joinFarm" & "dcmctl joinCluster")
vi) Add target instance to Farm & Cluster using same command mentioned above
Few points related to using cloning to expand OracleAS Cluster
--Cloning Oracle AS Clusters, If source cloned instance is member of Cluster/Farm as mentioned in past remove it from cluster add it back to cluster after cloning.
--If source instance (clustered) is connected to file based repository in separate instance (it is not host of file based repository), cloned instance will be member of same farm as source instance
--If source instance (clustered) is connected to file based repository in same instance (it is host of file based repository), cloned instance will be host of new file based repository.
D) Move J2EE applications from a test middle tier to a new production environment.
==========================================
Their are various ways/options (depending on your requirement)
in which you can move J2EE application from Test to Production Instance
i) You already have J2EE and Webcache type test & production inastance--> Use "dcmctl redeployApplication" or iAS console "Deploy EAR File" method.
ii) You already have J2EE and Webcache (without IM) Test Instance but no prod instance --> Use middle tier clone method (mentioned in previous post) or Install J2EE and Webcache type middle tier on production and deploy J2EE application (using dcmctl or iASConsole)
iii) You already have J2EE and WebCache (with IM & MR) Test Instance but no prod instance --> Install Infrasturure tier on prod instance, install J2EE and Webcache type middle tier and deploy J2EE application by method mentioned above in point ii)
E) Move OracleAS Portal metadata from test to production
==========================================
As figure shown here is self explanatory that we have an existing test & prod Oracle AS environment(Portal type) with Portal
Metadata repository on separate database. Now if you wish to move Portal MR from test to production use export/import feature
to move content from test to prod.
Please note here that export/import mentioned here is portal import/export and not database imp/exp (though portal import/export in background with some additional steps uses database exp/imp only)
i) Create transport set and extract content to transport tables (using portal exp/imp feature from GUI)
ii) Move transport set from source to target (using portal exp/imp command line tool)
iii) copy dump file and script file from source to target instance
iv) Run command line script to import data from dump file to transport tables on target instance
v) Import objects from transport tables to portal repository via GUI using Transport Set Manager Portlet
F) Move applications from a test middle tier with Identity Management and a product Metadata Repository to an existing production environment with Identity Management
========================================
As shown in figure, this migration from test to production assume that ; You have an existing production Instance which already had Middle tier, Identity Management and metadata repository.
Remaining steps on how to migrate them coming soon ....
If you have any doubts in above topic or any other topic, leave a comment and I'll get back to you. Labels: 1z0312, Certification |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 8:19 PM
|
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| 1Z0-312 Managing Customized Oracle Application Server Topologies |
| Sunday, May 13, 2007 |
|
|
As promised, I'll cover one topic per post for Oracle Certified Professional Certification track for Oracle Application Server 10g Administrator. Today's post cover first topic which is Managing Customized Oracle Application Server Topologies.
New features for customized deployment topology
-------------------------------------------------------------------
1. Install only IM type and use it with existing MR in different oracle_home or on different machine
2. Install only MR without registering with IM/OID
3. Rack mounted directory server configuration (Multiple IM/OID pointing to same MR)
Role of OPMN in customized topology
----------------------------------------------------
Role of OPMN is extended in OAS 10g
1. It start/stops all components of OAS
2. Scope of OPMN is extended, it can start specified instance or all instance in farm and OAS cluster
3. opmn.xml can be edited as per your need both manually or from iasConsole
Managing ports in customized topology
-------------------------------------------------
1. use static ports initialization file to customize port list , staticports.ini during installation (except database listener port)
2. use chgiphost.sh to change hostname or IP address
3. You can change port numbers later depending on your requirement
Various topology for Oracle Application Server
--------------------------------------------------------------------
Each oracle application server deployment has unique characterstic and vary as per their requirements. Oracle Application server topologies are broadly classified into three categories
1. Development topology
2. Deployment Topology
3. Special topology for HA (High Availability)
4. Enterprise Data center topology
Each of these broad classification has further sub classification based on type of installation, usages.... explained below
1. Development topology used by
---1.1 Java developers (standalone OC4J or J2EE and webcache installation type). This is single computer install with no infrastructure tier install.
You have to install two components
a) J2EE and WebCache
b) Oracle JDeveloper
Key considerations -- These two products should be installed in separate oracle_homes. Order of installation of these two products doesn't matter
---1.2 Portal & wireless developers (Portal and Wireless installation type)
This type of installation needs two components of oracle application server, Infrastructure tier (IM+MR) and Middle Tier.
Key considerations -- These two components of OAS, Infra tier and middle tier should be on separate oracle_home and can be on same machine or different machines.Order of install should be first Infrastructure tier and then middle tier. PDK (Portal Development kit) and Wireless SDK (Software development kit) shipped with Portal and wireless type install type is used for development.
---1.3 Forms & reports developers (BI and forms installation type)in this topology, developers use Forms & Report builder to build application and BI & Forms type installation to test their application (forms,report, BI)This will be installed in three oracle_homes (one for infra tier, second for middle tier of type forms & BI and third for Forms & Report developer)Order of installation is First infra tier, then middle tier and then forms & report developer.
---1.4 Integration architect and modelers topology (OAS install with ProcessConnect and infrastructure tier )This type of topology includes J2EE and webcache type installation with Infrastructure tier and third home for OracleAS ProcessConnect. Order of installation is first infra tier , then J2ee and webcache type middle tier installation using infra tier and finally ProcessConnect. This topology type will have two oracle_homes one for Infra tier and second for j2ee & webcache and processConnect (they will share same oracle_home)
2. deployment topology
---2.1 Hosting topology (in model where OAS is hosted environments)
---2.2 department topology (Where each depptt host their application)
---2.3 Data center topology (multiple deptt. share same data center)
3. Development life cycle (Dev to Test to Stage to Production)similarly application moves from developer topology to departmental topology to enterprise data center topology
4. special topology for HA
---4.1 Cold failover cluster (CFC)Here infrastructure is active only on one node at a time and can be activated on another node if existing Infra tier fails, similarly for middle tier.CFC is Supported with Sun Clusters, HP Service Guard and Veritas. Oracle_homes and OAS configuration files are placed on shared file system. It uses virtual hostname and virtual IPs
---4.2 Active failover cluster (AFC)Only difference between AFC and CFC is that in AFC, infrastructure is active at same time in all infra nodes. ---3.3 IM replication (This uses database replication or LDAP replication technology )
Thumb rule as per oracle documentation
-----------------------------------------------------
1. All development topology to be installed on single machine
2. All deployment topology need at least four machinesLabels: 1z0312, Certification |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 6:31 PM
|
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| Integrate OID with AD Part I |
| Wednesday, May 09, 2007 |
|
|
 OID (Oracle Internet Directory) is LDAP (Lightweight Directory Access Protocol) Server from Oracle where as AD (Active Directory) is LDAP server from Microsoft. Almost all oracle products (E-Business Suite 11i/R12, Portal, Application Server, Forms & Reports ... ) integration with Active Directory is done via OID (OAS component).
For more information on OID click here .
http://becomeappsdba.blogspot.com/2007/02/oid-to-oidactive-directoryiplanet-other.html
Few things to note in Integration of OID with Active Directory
------------------------------------------------------------------------
1. Users can be created in AD and propagated to OID or Vice Versa or can
be created in both and then synched.
2. Password for users ----2.a) can be stored in AD and not OID(You can authenticate against AD) via External Authentication Plug-in (created in OID) ---2.b) Can be stored at both places AD & OID and synhced regularly 3. User synchronization between OID and AD (from OID side, both import & export) is done via DIP (Directory Integration & Provisioning ) component of OID 4. Synchronization of user (to & from) between OID and AD is done by predefined connector (shipped with OIDwhich you can modify/configure as per your need) 5. Synchronization between AD-OID via above mentioned connector can be one way (import only or export only) or two way (both import and export) 6. You can synch all or particular attributes of user entry which you wish to configure (this is done via mapping file- More on mapping files coming soon..)
Configuration Highlights
-------------------------------------- 1. Synchronization of users between OID & AD happens via synchronization profile (including connect detail, direction of synch, attribute and source & target domain) created during installation of OID. 2. Three provisioning profile created by default are  ---ActiveImport : Importing Changes from MS-AD to OID (DirSyn approach for tracking changes in AD) ---ActiveChgImp : Importing Changes from MS-AD to OID (USNChanged approach for tracking changes in AD ) ---ActiveExport : Exporting changes from OID to MS-AD
(More on DirSyn & USNChanged coming soon with practical examples on which one to choose depending on requirement) 3. These provisioning profiles can be customized using dipassitant
(dipassistant -gui) or using LDAP commands (ldapadd or ldapmodify)
4. If you are synchronizing from AD to OID where AD is multi-domain and global catalog is not configured againt Multi domain AD, then you need
one synchronization profile per domain for AD but if global catalogue is
configured you create only one provisioning profile against GC (global
catalog and not garbage collector); If synchronization is from OID to AD
(with multiple domain) you need provisioning profile for each domain
irrespective of global catalog (GC doesn't play a role in synch for
Export from OID to AD)
5. Decide on what information to synchronize and at what location in
directory information tree to synchronize. 
More on Integrating/synchronizing Oracle Internet Directory (OID) to Microsoft Active Directory (AD) with demo setup coming soon ....
Labels: integration, oid |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 10:08 PM
|
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| Installing Oracle Identity Manager (Thor Xellerate) |
| Friday, May 04, 2007 |
|
|
Before installing Identity Manager, make yourself familiar with Oracle Identity Manager Concepts and Architecture
Oracle Identity Manager can only be installed on Web Server (OAS, Webspehere, Weblogic, Jboss) and Remote Manager and Design Console (for windows only) can exist on same or separate machines.
Steps for installing identity manager vary as per your application server and database but underlying concept remains same. Steps mentioned here are specific to, installing Oracle Identity Manager with Oracle Application Server as web server and oracle database as data store.
Generic Steps for Installing Oracle Identity Manager
-----------------------------------------------------------------------------
A) Install Web Server (OAS, Jboss, Webspahere)
B) Install & Configure Database for Identity Manager (Oracle, MS-Sql, sql server)
C) Install JDK (for OAS use JDK shipped with OAS)
A) Installing Web Server :
------------------------------------
1. Download Oracle Application Server software (version 10.1.3.0.2 at time of writing this doc) from downloads.oracle.com
2. Select J2EE and Web Server option during installing OAS 10.1.3.X
3. Change RMI port in opmn.xml file to a specific port (from port range available in opmn.xml for RMI)
4. Set environment variable JAVA_HOME to $ORACLE_HOME/jdk/bin for user installing Identity Manager
B) Install and configure Database :
--------------------------------------------------
Identity Manager require database for storing policy data and metadata. before installing identity manager, you should install Web Server and Database server. In oracle database from list of databases, Oracle Identity Manager support both RAC and simple Oracle Database (without RAC). You can also use an existing oracle database as well.
1. Install oracle database software & create database (Follow oracle database installation Guide, You have option to create database while installing oracle database software via Oracle Universal installer)
2. Prepare your database for installing Oracle Identity Manager
-----2.1 Make sure JVM is configured & Query Rewrite is enabled (done in default database creation with database installer)
-----2.2 Enable XA Transaction Support
-----2.3 Create a tablespace for Oracle Identity Manager
-----2.4 Create database user for Oracle Identity Manager
or
You can do all these above steps using prepare_xl_db.sh (.bat for windows) shipped with Oracle Identity Manager software.
If you don't want to install new oracle database, you can use existing database for configuring identity manager tablespace & schema.
C) Installing Oracle Identity Manager :
-------------------------------------------------------
Steps mentioned here are for installing Identity Manager on Unix
1. Before installing make sure
i) JAVA_HOME is set as mentioned above
ii) You are installing Oracle Identity Manager with same user who installed Application Server.
iii) uninstall commons-logging-1.0.2 from linux machine, if its there. To check if installed "rpm -qa grep commons-logging" To uninstall abobe package "rpm -e full_rpm_name"
iv) Database and application server already installed as mentioned above
2. start installer as sh install_server.sh (Installer will start in console mode & not GUI)
Supply requested information during installation.
It will prompt you for following details
--Password for OIM Administrator account
--Installation Type (Identity Manager or Identity Manager with Audit and Compliance Module)
--Directory where you wish to install Oracle Identity Manager
--Database Type
--Database Hostname, listener port, SID
--Database username/Password for OIM
--Authentication Mode (Default OIM authentication or SSO)
--Application Server Type
--Cluster information (Select if you wish to install OIM in clustered Application Server installation type)
--Username/Password and Instance Name for Application Server
--RMI port & OPMN port (If Application Server is Oracle Application Server)
Few things to note during installation
i) Choose different installation directory for various Identity Manager components (identity manager, remote manager, Design Console for windows)
ii) If you are installing Identity Manager using existing database, it will give you warning message
Start/Stopping Oracle Identity Manager Server
--------------------------------------------------------------
Identity Manager is installed as part of Web Server and will start/stop by starting/stopping webserver.
- Make sure database configured for Identity Manager is Up
- Start Web Server (for Oracle Application Server use, opmnctl startall Similarly for stopping OIM, stop application server (opmnctl stopall) and shutdown database.
Accessing Oracle Identity Manager Administrative/User Console
----------------------------------------------------------------
http://hostname:domainname:port/xlWebApp
where
--hostname.domainname is full name of Server (or virtual name) where Application Server is installed.
--port is web server/apache/http or https port number (7777 is default for oracle application server)Labels: identity_manager, idm |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 6:54 PM
|
|
|
|
We have moved to http://onlineAppsDBA.com kindly check http://onlineAppsDBA.comin future
| Oracle Identity Manager (User Provisioning - Thor) |
| Wednesday, May 02, 2007 |
|
|
 Oracle Identity Manager is world class leading Identity Provisioning server which helps in creation of user, managing them and revoking access.
Oracle purchased Thor Technologies and bundled Identity Provisioning Server & Audit & Compliance module as Oracle Identity Manager.
Oracle Identity Manager is also known as Thor Xellerate Identity Manager or Oracle Xellerate Identity Provisioning.
Few Services in Identity Manager
------------------------------------------------
1) Access Right Management : Granting & Revoking access rights for a
resource (URL, site, services, server, database...)
2) Provisioning : process that grants users, groups appropriate access rights. It involves creation of user(if not already in system), granting or revoking(deprovision) rights to access resource(application, system, database...)
3) Deprovisioning : Opposite of above
4) Attestation : confirming from authorized user that access right or
other privileges are correct or not.
Architecture of Oracle Identity Manager
----------------------------------------------------------
As shown in diagram above, Oracle Identity Manager uses three-tier architecture
A) Presentation Tier
B) Server Tier
C) Data & Enterprise Integration Tier
Presentation Tier consist of Administrative Console, Design Console and Custom Client.
Server Tier consist of Oracle Identity Manager server application with
various other component and act as bridge between Presentation Tier and
Data & Enterprise Integration Tier.
Data & Enterprise Integration Tier contains database server which contains Oracle Identity Manager Data.
Components in Identity Manager
------------------------------------------------
---Oracle Identity Manager Server
---Oracle Identity Manager Remote Manager
---Oracle Identity Manager Design Console (Windows only)
Requirement for Installing Oracle Identity Manager
--------------------------------------------------------------------------
Oracle Identity Manager installation require
--- A Supported Application Server (You can use Oracle Application
Server, JBOSS, Weblogic, Websphere....)
--- A supported JVM (use Sun JDK)
--- A supported Database (Oracle DB, MS-SQL)
More on installing Oracle Identity Manager and configuration coming soon..Labels: identity_manager, idm |
We have moved to kindly check onLineAppsDBA.com in future
|
|
|
|
del.icio.us
¦
Digg This
¦
My Yahoo
¦
Reddit
¦
BlinkList
¦
Furl It
¦
Email This
¦
Leave Your Comments
|
| posted by Atul Kumar @ 9:29 PM
|
|
|
|
|
|
