Adding Password to IAMSuiteAgent Profile Validation Setting OAAM properties for Oracle Access Manager
18.2.4 Adding Password to IAMSuiteAgent Profile
When Oracle Access Manager is installed, a default agent profile called IAMSuiteAgent is created. This profile is used by OAAM when integrating with OAM. When the IAMSutieAgent profile is first created, it has no password. You must set a password before the profile can be used by OAAM for integration. To do this, proceed as follows:1. Log in to the OAM console at:
http:admin.mycompany.comoamconsole2. Click the System Configuration tab.
3. Expand Access Manager Settings - SSO Agents.
4. Click OAM Agents and click Open.
5. In the search window, click Search.
6. Click IAMSuiteAgent in the search results. The Agent Properties are displayed.
7. In the Primary Server list, click + and add any missing Oracle Access Manager servers.8. Enter a password into the Access Client Password Field and click Apply.
18.2.5 Validation
To ensure that this integration has been completed successfully, launch the OAM test tool as described in Section 11.10, Validating Oracle Access Manager. Then proceed as follows: 1. Connect using the following values: ■ Primary OAM Host : OAMHOST1 ■ Port : 5575 ■ Agent ID : IAMSuiteAgent ■ Agent Password : Password you assigned to the IAMSuiteAgent profile ■ Mode : Choose OAM security Mode ■ Global Passphrase : OAM Pass phrase, if simple mode is used. 2. Provide Protected Resource URI ■ Scheme : http ■ Host : IAMSuiteAgent ■ Port : Leave blank ■ Resource : oamTAPAuthenticate Click Validate. 3. Provide User Identity oamadmin and the password for oamadmin. Note: Also check that the security setting matches that of your OAM servers. 18-20 Oracle Fusion Middleware Enterprise Deployment Guide for Oracle Identity Management Click Authenticate. If the authentication is successful, integration has been completed successfully. Perform the same validation on OAMHOST2.18.2.6 Setting OAAM properties for Oracle Access Manager
Follow these steps on IDMHOST1: 1. Copy IAM_ORACLE_HOMEoaamcli to a temporary location. For example: cp -r IAM_ORACLE_HOMEoaamcli u01apporacleoaam2. Edit the file oaam_cli.properties, which is located in the directory:
u01apporacleoaamconfbharosa_properties. Set the following property values in the file: Parameter Value oaam.adminserver.hostname ADMINVHN.mycompany.com oaam.adminserver.port 7001 oaam.adminserver.username weblogic oaam.adminserver.password Password for the weblogic user oaam.db.url The DBC URL for the OAAM Database. Format: jdbc:oracle:thin:DESCRIPTION=LOAD_ BALANCE=onADDRESS=PROTOCOL=TCPHOST=h ost1 PORT=1521ADDRESS=PROTOCOL=TCPHOST= host2 PORT=1521CONNECT_ DATA=SERVICE_NAME=service oaam.uio.oam.tap.keystoreFile The location of the keystore that was created in Section 18.2.3, Registering OAAM as a Third Party Application. For example: IAM_ORACLE_ HOME TAPTapKeyStoremykeystore.jks On Windows, you must escape the path. For example: C:\\oam-oaam\\tap\keystore\mystore.jks oaam.uio.oam.tap.partnername OAAMTAPPartner oaam.uio.oam.host idmhost1.mycompany.com oaam.uio.oam.port The Oracle Access Manager server proxy port. For example: 5575. oaam.uio.oam.webgate_id IAMSuiteAgent oaam.uio.oam.secondary.host idmhost2.mycompany oaam.uio.oam.secondary.host.port The Oracle Access Manager server proxy port on the second Oracle Access Manager server. For example: 5575. oaam.uio.oam.security.mode This depends on the OAM security transport mode in use. The value can be 1 for Open, 2 for Simple, or 3 for Cert. The default, if not specified, is 1 Open. Integrating Components 18-21 Save the file 3. Execute the OAAM CLI tool by issuing the command setupOAMTapIntegration.sh, which is located in the directory: u01apporacleoaam export ORACLE_MW_HOME=u01apporacleproductfmw export JAVA_HOME=MW_HOMEjrockit_version chmod +x u01apporacleoaamsetupOAMTapIntegration.sh u01apporacleoaamsetupOAMTapIntegration.sh u01apporacleoaamconfbharosa_propertiesoaam_cli.properties When the command runs, it prompts you for the following information: ■ OAAM database username: EDG_OAAM. ■ OAAM database password: Password for the OAAM database user. ■ OAM Webgate Credentials to be stored in CSF: Enter WebGate password. ■ OAM TAP Key store file password: The password you assigned when you generated the third-party application in Section 18.2.3, Registering OAAM as a Third Party Application. ■ OAM Private Key certificate Key store file password: The password you assigned to the Private keystore file in Section 18.2, Integrating Oracle Adaptive Access Manager with Oracle Access Manager 11g. ■ OAM Global Pass phrase: If you are using the OAAM Simple security model then this is the OAM global passphrase.18.2.7 Updating Secondary Host Parameter
Parts
» Oracle Fusion Middleware Online Documentation Library
» What is an Enterprise Deployment? Terminology
» Understanding the Directory Tier
» Architecture Notes Understanding the Application Tier
» Architecture Notes Security Provisions
» Using This Guide Oracle Fusion Middleware Online Documentation Library
» Hardware Resource Planning Oracle Fusion Middleware Online Documentation Library
» Load Balancers Network Prerequisites
» Configuring Virtual Server Names and Ports on the Load Balancer
» Virtual IP Addresses Managing Oracle Fusion Middleware Component Connections
» Firewall and Port Configuration
» Directory Structure Terminology and Environment Variables
» Recommended Locations for the Different Directories
» WebLogic Domain Considerations Real Application Clusters
» Creating Database Services for 11.2.x Databases Database Tuning
» RCU Example Executing the Repository Creation Utility
» Introduction Using this Guide Software Installation Summary
» Installation Installing Oracle HTTP Server
» Installing Oracle Fusion Middleware Components Installing Oracle Fusion Middleware Home
» Installing JRockit Installing Oracle Identity Management
» Upgrading the Oracle Homes for Oracle Identity Management from 11.1.1.2 to 11.1.1.5
» Installing the Oracle SOA Suite
» Installing Oracle Identity and Access Management
» Validating the Installation Backing up the Web Tier Configuration
» Enabling ADMINVHN on IDMHOST1 Running the Configuration Wizard on IDMHOST1 to Create a Domain
» Failing over the Administration Server to IDMHOST2
» Failing the Administration Server Back to IDMHOST1
» Configuring the First Oracle Internet Directory Instance
» Configuring an Additional Oracle Internet Directory Instance
» Registering Oracle Internet Directory with the WebLogic Server Domain
» Extending the Oracle WebLogic Domain with Oracle Directory Integration Platform and ODSM
» Installing and Configuring Oracle Directory Integration Platform and ODSM on IDMHOST2
» Provisioning the Managed Servers in the Managed Server Directory
» Validating Oracle Directory Services Manager Validating Oracle Directory Integration Platform
» Backing Up the Application Tier Configuration
» Configuring the First Oracle Virtual Directory Instance
» Configuring an Additional Oracle Virtual Directory
» Registering Oracle Virtual Directory with the Oracle WebLogic Server Domain
» Creating Policy Store Users and the Policy Container
» Reassociating the Policy and Credential Store
» Extending Directory Schema for Oracle Access Manager
» Creating Users and Groups for Oracle Access Manager
» Creating Users and Groups for Oracle Adaptive Access Manager
» Creating Users and Groups for Oracle Identity Manager
» Creating Users and Groups for Oracle WebLogic Server
» Creating Access Control Lists in Non-Oracle Internet Directory Directories
» Extending Domain with Oracle Access Manager
» Removing IDM Domain Agent Propagating the Domain Changes to the Managed Server Domain Directory
» Changing Oracle Access Manager Security Model
» Configuring Oracle Access Manager by Using the IDM Automation Tool
» Adding the oamadmin Account to Access System Administrators Validating Oracle Access Manager
» Setting up Keystore with the SSL Certificate and Private Key file of the Access Client
» Extending Domain for Oracle Adaptive Access Manager
» Prerequisites Loading Oracle Adaptive Access Manager Seed Data
» Backing Up the Application Tier Configuration Backing Up the Application Tier Configuration
» Prerequisites Enabling Virtual IP Addresses on OIMHOST1 and OIMHOST2
» Extending the Domain to Configure Oracle Identity Manager and Oracle SOA Suite on IDMHOST1
» Propagating the Oracle Identity Manager and SOA Managed Servers to OIMHOST1 and OIMHOST2
» Prerequisites Configuring Oracle Identity Manager to Work with the Oracle Web Tier
» Configuring an IT Resource Instance for Email
» Creating and Importing New Rules
» Tuning Oracle Platform Security Backing Up the Application Tier Configuration
» Prerequisites Oracle Fusion Middleware Online Documentation Library
» Configuring Oracle Identity Federation on OIFHOST1
» Configuring Oracle Identity Federation on OIFHOST2
» Provisioning the Managed Servers on the Local Disk
» Validating Oracle Identity Federation Backing Up the Application Tier Configuration
» Generating Self-Signed Certificates Using the utils.CertGen Utility
» Configuring Node Manager to Use the Custom Keystores
» Starting Node Manager Configuring Managed WebLogic Servers to Use the Custom Keystores
» Configuring Server Migration Targets Click the Migration tab.
» Updating Existing LDAP Users with Required Object Classes
» Integrating Oracle Access Manager with Oracle Identity Manager by Using idmConfigTool
» Updating Oracle Virtual Directory Authenticator Manually Creating CSF Keys
» Managing the Password of the xelsysadm User Validating Integration
» Validating Oracle Adaptive Access Manager
» Prerequisites Creating Oracle Directory Authenticator
» On the Configure Web Server screen, click Yes to automatically update the web
» Validating WebGate Validating the Oracle Access Manager Single Sign-On Setup
» Monitoring Oracle Virtual Directory
» Monitoring Oracle Directory Integration Platform
» Scaling Up the Directory Tier
» Click the SSL tab. Click Advanced. Set Hostname Verification to None. Click Save.
» Click Save. Oracle Fusion Middleware Online Documentation Library
» Patching an Oracle Fusion Middleware Source File Patching Identity Management Components
» Troubleshooting Oracle Internet Directory
» Troubleshooting Oracle Virtual Directory
» Troubleshooting Oracle Directory Integration Platform
» Troubleshooting Oracle Directory Services Manager
Show more