Collocated Architecture Overview Troubleshooting Collocated Components Manager High Availability

Configuring High Availability for Identity Management Components 8-107

8.7.1 Collocated Architecture Overview

See the sections below for an architecture overview of each component in the collocated architectures described in this section: ■ Oracle Internet Directory: Section 8.3.1, Oracle Internet Directory Component Architecture ■ Oracle Virtual Directory: Section 8.4.1, Oracle Virtual Directory Component Architecture ■ Oracle Directory Integration Platform: Section 8.5.1, Oracle Directory Integration Platform Component Architecture ■ Oracle Directory Services Manager: Section 8.6.1, Oracle Directory Services Manager Component Architecture Figure 8–10 shows Oracle Internet Directory, Oracle Directory Integration Platform, Oracle Virtual Directory, and Oracle Directory Services Manager collocated on a single host and deployed in a non-high availability architecture. Figure 8–10 Collocated Components Architecture All the components in Figure 8–10 are deployed on the same host, but have separate Oracle homes and Oracle instances. Oracle Internet Directory uses a standalone Oracle database as the security metadata repository. IDMHOST1 Database Firewall DIP ODSM WLS_ODS1 OVD Admin Server OID 8-108 Oracle Fusion Middleware High Availability Guide

8.7.2 Collocated Architecture High Availability Deployment

Figure 8–11 shows Oracle Internet Directory, Oracle Virtual Directory, Oracle Directory Integration Platform, and Oracle Directory Services Manager collocated on IDMHOST1 and IDMHOST2 and deployed in a high availability architecture. Figure 8–11 Collocated Components in a High Availability Architecture

8.7.2.1 Collocated Architecture Prerequisites

See the sections below for the prerequisites of each component in the collocated architectures described in this section: ■ Oracle Internet Directory: Section 8.3.2.3, Oracle Internet Directory Prerequisites ■ Oracle Virtual Directory: Section 8.4.2.2, Oracle Virtual Directory Prerequisites ■ Oracle Directory Integration Platform: Section 8.5.2.3, Oracle Directory Integration Platform Prerequisites ■ Oracle Directory Services Manager: Section 8.6.2.3, Oracle Directory Services Manager Prerequisites ■ Oracle Identity Federation: Section 8.13.2.3, Oracle Identity Federation Prerequisites IDMHOST1 IDMHOST2 Cluster_ODS Cluster RAC Firewall DIP ODSM WLS_ODS1 DIP ODSM WLS_ODS1 OVD OVD Admin Server Admin Server OID OID Multi_DS Connect Time Failover FANOCI Multi_DS Connect Time Failover FANOCI Load Balancer Configuring High Availability for Identity Management Components 8-109

8.7.2.2 Configuring Collocated Components for High Availability

This section provides the steps to install and configure Oracle Internet Directory, Oracle Directory Integration Platform, Oracle Virtual Directory and Oracle Directory Services Manager on IDMHOST1 and IDMHOST2 in a high availability architecture:

1. Install the database. For more information, see

Section 8.2.3, Installing and Configuring the Database Repository.

2. Install RCU. For more information, see

Section 8.2.4, Obtaining the Repository Creation Utility Software.

3. Configure the database. For more information, see

Section 8.2.5, Configuring the Database for Oracle Fusion Middleware 11g Metadata.

4. Run RCU to install the required schemas for Oracle Internet Directory and Oracle

Identity Federation. For more information, see Section 8.3.2.3.2, Using RCU to Create Oracle Internet Directory Schemas in the Repository and Section 8.13.2.3.1, Using RCU to Create Oracle Identity Federation Schemas in the Repository.

5. Install and configure Oracle Internet Directory on the first host. For more

information, see Section 8.3.3.2.1, Configuring Oracle Internet Directory on OIDHOST1 or Section 8.3.3.3.1, Configuring Oracle Internet Directory on OIDHOST1.

6. Install and configure Oracle Internet Directory on the second host. For more

information, see Section 8.3.3.2.3, Configuring Oracle Internet Directory on OIDHOST2 or Section 8.3.3.3.3, Configuring Oracle Internet Directory on OIDHOST2.

7. Install and configure Oracle Virtual Directory on the first host. For more

information, see Section 8.4.3.1.1, Configuring Oracle Virtual Directory on OVDHOST1 or Section 8.4.3.2.1, Configuring Oracle Virtual Directory on OVDHOST1.

8. Install and configure Oracle Virtual Directory on the second host. For more

information, see Section 8.4.3.1.2, Configuring Oracle Virtual Directory on OVDHOST2 or Section 8.4.3.2.3, Configuring Oracle Virtual Directory on OVDHOST2.

9. Install and configure Oracle Directory Integration Platform and Oracle Directory

Services Manager on the first host. For more information, see Section 8.5.3.1, Configuring Oracle Directory Integration Platform and Oracle Directory Services Manager on IDMHOST1. Note: In a collocated environment, the Oracle Identity Management components should be installed in separate Oracle Homes. They can share the same MW_HOME. For each component, ensure that the Oracle Home Location directory path for the first instance is the same as the Oracle Home Location directory path for the second instance. For example, if the Oracle Home Location directory path for the first Oracle Internet Directory instance on OIDHOST1 is u01apporacleproductfmwidm, then the Oracle Home Location directory path for the second Oracle Internet Directory instance on OIDHOST2 must also be u01apporacleproductfmwidm. 8-110 Oracle Fusion Middleware High Availability Guide 10. Install and configure Oracle Directory Integration Platform and Oracle Directory Services Manager on the second host. For more information, see Section 8.5.3.3, Configuring Oracle Directory Integration Platform and Oracle Directory Services Manager on IDMHOST2.

8.7.3 Validating the Collocated Components High Availability

See the following sections for information about validating components in the collocated high availability architectures and for information about how to failover the components and Oracle RAC.

8.7.3.1 Validation Tests

See the sections below for information on validating the following components in the collocated high availability architectures: ■ Oracle Internet Directory: Section 8.3.4, Validating Oracle Internet Directory High Availability ■ Oracle Virtual Directory: Section 8.4.4, Validating Oracle Virtual Directory High Availability ■ Oracle Directory Integration Platform: Section 8.6.4, Validating Oracle Directory Services Manager High Availability ■ Oracle Directory Services Manager: Section 8.6.4, Validating Oracle Directory Services Manager High Availability ■ Oracle Identity Federation: Section 8.13.3.6, Validating Oracle Identity Federation High Availability

8.7.3.2 Failures and Expected Behaviors

See the sections below for information on failures and expected behaviors for the following components in the collocated high availability architectures: ■ Oracle Internet Directory: Section 8.3.5, Oracle Internet Directory Failover and Expected Behavior ■ Oracle Virtual Directory: Section 8.4.5, Oracle Virtual Directory Failover and Expected Behavior ■ Oracle Directory Integration Platform: Section 8.5.4, Oracle Directory Integration Platform Failover and Expected Behavior ■ Oracle Directory Services Manager: Section 8.6.5, Oracle Directory Services Manager Failover and Expected Behavior ■ Oracle Identity Federation: Section 8.13.4, Oracle Identity Federation Failover and Expected Behavior

8.7.4 Troubleshooting Collocated Components Manager High Availability

See the sections below for information on troubleshooting the following components in the collocated high availability architectures: ■ Oracle Internet Directory: Section 8.3.6, Troubleshooting Oracle Internet Directory High Availability ■ Oracle Virtual Directory: Section 8.4.6, Troubleshooting Oracle Virtual Directory High Availability Configuring High Availability for Identity Management Components 8-111 ■ Oracle Directory Integration Platform: Section 8.5.5, Troubleshooting Oracle Directory Integration Platform High Availability ■ Oracle Directory Services Manager: Section 8.6.6, Troubleshooting Oracle Directory Services Manager ■ Oracle Identity Federation: Section 8.13.5, Troubleshooting Oracle Identity Federation High Availability

8.7.5 Additional Considerations for Collocated Components High Availability