Integrating Oracle Access Manager, Oracle Adaptive Access Manager, and Oracle Identity Manager 7-3 user and based on his registration status, OAAM presents the password page with his personalized image and caption. 4. The OAAM Server runs the pre-authentication rules and lets the user enter his password. 5. Since OAAM Server has the user’s username and he has entered his password, the OAAM Server makes a NAP API call to the OAM Server for authentication. 6. Once the OAM server returns the status, which indicates whether the user has entered his username and password correctly, the OAAM Server determines whether the authentication was successful or not. 7. If the authentication was successful, the OAAM Server redirects the user to the OAM WebGate. 8. The OAM WebGate server redirects the user to his original URL. 9. The OAM WebGate allows the user to access the protected URL. Reset Password Flow 1. OAAM Server communicates with the OIM server when the OAAM Server needs to call the OIM server for the password policy text that is shown when user is trying to change his password. 2. Based on the policy, OAAM Server enables the user to enter a password that meets the policy text requirements. Because the OAAM Server manages the flows, it is the one that presents the user with the pages where the user can enter his new password and old password. The text is maintained by the OAM server, but it is the OAAM server that makes the calls to get that password policy text so that it is displayed when the user tries to change his password. 3. After he finishes the task, the OAAM Server makes an API call to propagate the changes to the OAM Server. The OAM Server can persist those changes to the user directory or where the credentials are maintained. The OAM Server and OIM Server communicate with the same user directory where all the user data is maintained.

7.3 Prerequisites for the Integration

The following must be in place for the integration: ■ All necessary components must be properly installed and configured: – Oracle Internet Directory 11g installed For information on installing Oracle Internet Directory, refer to Oracle Fusion Middleware Installation Guide for Oracle Identity Management. – Oracle Virtual Directory 11g installed For information on installing Oracle Virtual Directory, refer to Oracle Fusion Middleware Installation Guide for Oracle Identity Management. – Repository Creation Utility 11g installed For information on installing and using RCU, refer to Oracle Fusion Middleware Installation Guide for Oracle Identity Management. 7-4 Oracle Fusion Middleware Integration Guide for Oracle Access Manager – Oracle WebLogic Servers for Oracle Access Manager, Oracle Adaptive Access Manager, Oracle Identity Manager, and Oracle HTTP Server installed For information on installing the WebLogic Server, refer to Oracle Fusion Middleware Installation Guide for Oracle WebLogic Server. – Oracle SOA Suite installed and patched to at least PS2 For information on installing the Oracle SOA Suite, refer to Oracle Fusion Middleware Installation Guide for Oracle SOA Suite and Oracle Business Process Management Suite. – Oracle HTTP Server installed For information on installing Oracle HTTP Server, refer to Oracle Fusion Middleware Installation Guide for Oracle Web Tier. ■ Oracle Access Manager 10g or 11g agent WebGate for Oracle HTTP Server 11g must be installed on the Oracle HTTP Server 11g instance. For information on installing the Oracle HTTP Server WebGate, refer to Oracle Fusion Middleware Installation Guide for Oracle Identity Management. The steps below are based on the assumption that Oracle Access Manager and Oracle Identity Manager are integrated using the out-of-the box integration.

7.4 Overview of Integration Tasks

The following tasks are required to perform this integration: ■ Install Oracle Access Manager, Oracle Adaptive Access Manager, and Oracle Identity Manager