Creating OAAM Users Configuring Database Credentials in the Credential Store Framework

2-8 Oracle Fusion Middleware Administrators Guide for Oracle Adaptive Access Manager 8. Assign any of the groups with the OAAM prefix to the user, user1.

9. Click Save.

2.6 Importing the OAAM Snapshot

A full snapshot of policies, dependent components and configurations is shipped with Oracle Adaptive Access Manager. The oaam_base_snapshot.zip file is located in the MW_HOMEIDM_ORACLE_HOMEoaaminit directory. 1. Log in to the Oracle Adaptive Access Manager Administration Console OAAM Admin using the following URL: http:host:portoaam_admin 2. Load the snapshot file into the system by following these instructions:

a. Open System Snapshot under Environment in the Navigation tree.

b. Click the Load from File button.

A Load and Restore Snapshot dialog appears.

c. Deselect Back up current system now and click Continue.

A dialog appears with the message that you have not chosen to back up the current system, and do you want to continue? d. When the dialog appears with the message that you have not chosen to back up the current system, and do you want to continue, click Continue. The Load and Restore Snapshot page appears for you to choose a snapshot to load.

e. Browse for oaam_base_snapshot.zip and click the Load button to load the

snapshot into the system database.

f. Click OK and then Restore.

The snapshot contains the following items that must be imported into OAAM: ■ Challenge questions for English United States During registration, which could be enrollment, opening a new account, or another events such as a reset, the user selects different questions from a list of questions and enters answers to them. These questions, called challenge questions, are used to authenticate users. Questions for the languages you want to support must be in the system before users can be asked to register. These questions may also be required to log in to OAAM Server. ■ Entity definitions The actors that are tracked during authentication are called authentication entities and include user, city, device, and so on. These base entities are required to enable conditions that are used for patterns. ■ Out-of-the-box patterns Patterns are used by Oracle Adaptive Access Manager to either define one bucket or dynamically create buckets. Oracle Adaptive Access Manager collects data and populates these buckets with members based on pattern parameters, and rules perform risk evaluations on dynamically changing membership and distributions of the buckets. Setting Up the Oracle Adaptive Access Manager Environment for the First Time 2-9 ■ Out-of-the-box configurable actions Configurable actions are actions that are triggered based on the result action or risk scoring or both after a checkpoint execution. The configurable actions are built using action templates. ■ Out-of-the-box policies Policies are designed to help evaluate and handle business activities or potentially risky activities that are encountered in day-to-day operation. ■ Any groups Collections of items used in rules, user groups, and action and alert groups are shipped with OAAM. If you need to customize any properties, you should import the snapshot into your new test system, make the changes, export the snapshot, and import it into your new system. Alternatively you can import the snapshot on the new system and make the property changes directly, thereby eliminating the test system completely. For upgrading policies, components, and configurations, perform a backup, and then import the separate file. The following are available: ■ Base policies are shipped in the oaam_policies.zip file, which is located in the MW_HOMEIDM_ORACLE_HOMEoaaminit directory ■ Configurable action templates are shipped in the OOTB_Configurable_ Actions.zip file, which is located in the MW_HOMEIDM_ORACLE_ HOMEoaaminit directory. ■ Base-authentication required entities are shipped in the Auth_ EntityDefinition.zip file, which is located in the MW_HOMEIDM_ ORACLE_HOMEoaaminit directory. ■ Default patterns are shipped in the OOB_Patterns.zip file, which is located in the MW_HOMEIDM_ORACLE_HOMEoaaminit directory

2.7 Importing IP Location Data

IP location data is used by the risk policies framework to determine the risk of fraud associated with a given IP address location. To be able to determine location of the login or transaction, this data must be uploaded. For information, see Section 29.4, Importing IP Location Data. Note: If you are upgrading from Oracle Adaptive Access Manager 10.1.4.5 to Oracle Adaptive Access Manager 11g, you see that the names and descriptions of the out-of-the-box action templates are slightly different, since the action templates in Oracle Adaptive Access Manager 11g are globalized and hence the difference. Note: For customers who are upgrading from 11.1.1.3.0 to 11.1.1.5.0: Do not import the snapshot. This procedure is only for first time initial setup. Importing a snapshot overwrites the existing environment and replaces it with a new one. For upgrades, import separate zip files for the entities, definitions, or policies.