7-4 Administrators Guide for Oracle Imaging and Process Management c. Select the users or groups to be added. You can make multiple selections by holding down the Control or Shift key on your keyboard when making a selection. d. When you have selected all the users or groups you wish to add to the connection, click Add. The Add Security Member Page is closed and the new users or groups are listed on the Workflow Connection Security Page .

10. Enable the security permissions desired for each user or group and click Next. The

Workflow Connection Review Settings Page is displayed.

11. Ensure that settings are correct. If they are not, click Back to return to the page you

need to modify, or click the link in the navigation train to return directly to the desired page. When satisfied with the settings, return to the Workflow Connection Review Settings Page and click Submit. The Connection Summary page is displayed that includes the audit history of changes made to the connection.

12. Review the details of the connection. Click Modify to go back to the

Workflow Connection Basic Information Page to make any changes, if necessary. When satisfied with the connection, return to the Workflow Connection Review Settings Page and click Submit.

7.2.1 Configuring SSL for the Workflow Server

For the Oracle IPM SSL configuration to work with a workflow, the SSL listening port must be enabled on the workflow server. This can be done at the time the workflow server is first installed, through the configuration wizard, or after installation, through the Oracle WebLogic Server Administration Console. For more information on configuring SSL, see Oracle Fusion Middleware Administration Guide: Chapter 6, SSL Configuration in Oracle Fusion Middleware. In order to create a connection to an SSL enabled workflow server, the HTTPS protocol and listen port must be specified in the Workflow Connections HTTP Front End Address on the Workflow Connection Settings Page when the connection is created. For example, https:yourhost.com:8002. Communication to the server will work properly if both the workflow managed server and the Oracle IPM managed server are configured to use the default DemoTrust certificates. All Oracle WebLogic Server instances use the same DemoTrust self-signed certificates and, therefore, are configured to trust the others by default. Note that this should only be used to test the system in a demonstration or test environment. For security, DemoTrust certificates should never be used in production.

7.2.2 Configuring a Workflow Connection CSF Credential

A credential store framework CSF credential is a usernamepassword pair that is keyed by an alias and stored inside a named map in the CSF. Because of its integration with Oracle Web Services Manager OWSM, Oracle IPM leverages the standard OWSM CSF map named oracle.wsm.security. Note: These files should be used for test and demonstration purposes only. In a production environment, you should obtain proper and valid certificates and follow appropriate procedures for importing and configuring those certificates to establish identity and trust. When properly signed certificates are used and configured properly, SSL will work properly without special configuration. Managing Connections 7-5 A credential can be created through Enterprise Manger EM or through WebLogic Scripting Tool WLST. Creating a Credential Using EM To create a credential using EM, do the following: 1. Log in to Enterprise Manager.

2. Click WebLogic Domain.

3. Click Security and then Credentials.

4. Select the oracle.wsm.security map. If it does not exist, do the following:

a. Select Create Map.