4-14 Oracle Fusion Middleware Integration Guide for Oracle Access Manager ■ Integrating Oracle Identity Federation with Oracle Access Manager 11g in SP mode as described in Section 4.3 , using the OSSO SP Engine ■ Enabling logout in the OSSO SP engine: the logout integration with Oracle Access Manager 11g will be performed using the OSSO SP engine, instead of the authentication engine. The steps to configure a WebGate 11g agent are as follows: 1. Locate the Oracle Identity Federation instance in Fusion Middleware Control. 2. Navigate to Administration, then Authentication Engines. 3. Enable the Oracle Access Manager authentication engine. 4. Enter OAM_REMOTE_USER as the User Unique ID Header. 5. In the Default Authentication Engine drop-down list, select Oracle Access Manager. 6. Disable logout, since the logout integration with Oracle Access Manager 11g will be performed with the OSSO SP Engine.

7. Click Apply.

4.5 Test the Configuration

The final configuration task is to test whether the integration is correctly configured. The steps differ between authentication mode and SP mode.

4.5.1 Test SP Mode Configuration

Take these steps to test for correct configuration in SP mode:

1. Try accessing the protected resource.

2. When set up correctly, you should be redirected to an Oracle Identity Federation

login page. Verify that user credentials are required on this page.

3. Enter valid credentials on the login page.

4. Check that you are redirected to the protected page.

5. Verify that the following cookies are created:

OAM_ID ORA_OSFS_SESSION OHS Cookie

4.5.2 Test Authentication Mode Configuration

Take these steps to test for correct configuration in authentication mode: 1. Start single sign-on SSO from the SP test page. 2. Verify that you are redirected to the Oracle Access Manager login page at the IdP. On this page user credentials are requested. 3. Enter the relevant credentials and process the page. Note: The user should exist in both the Oracle Identity Federation Data Store and in the Oracle Access Manager store. Integrating Oracle Identity Federation 4-15 4. Verify that you are redirected to the SP test result page. 4-16 Oracle Fusion Middleware Integration Guide for Oracle Access Manager 5 Integrating Oracle Access Manager and Oracle Identity Manager 5-1 5 Integrating Oracle Access Manager and Oracle Identity Manager This chapter explains how to integrate Oracle Access Manager with Oracle Identity Manager. The instructions in this chapter use Oracle Internet Directory as an example directory server only. Refer to the system requirements and certification documentation on Oracle Technology Network for more information about supported configurations. For more information, see Section 1.4, System Requirements and Certification. If using a different directory server in your environment, you will need to modify the steps accordingly. You can refer to the configuration scenarios described in Oracle Fusion Middleware Enterprise Deployment Guide for Oracle Identity Management for more information. This chapter contains these sections: ■ About the Integration