Integrating Oracle Access Manager and Oracle Adaptive Access Manager 6-3 runtime functionalities are available through the libraries. Knowledge-based Authentication KBA is the only challenge mechanism available in this integration. This section explains how to integrate Oracle Access Manager OAM 11g and Oracle Adaptive Access Manager OAAM 11g as a Basic integration. The following topics explain how this type of integration is implemented: ■ Processing Flow for Native Integration ■ Prerequisites ■ Native Integration Steps

6.2.1 Processing Flow for Native Integration

The flow is as follows:

1. The Oracle Access Manager server receives a request for a page protected by an

Oracle Access Manager WebGate.

2. Oracle Access Manager calls the Oracle Adaptive Access Manager APIs to execute

the pre-authentication rules. Based on the result allowblockdeny, Oracle Access Manager displays the appropriate pages to collect credentials. Oracle Access Manager performs all the processing, never passing control to Oracle Adaptive Access Manager.

3. Oracle Access Manager collects the user credentials.

4. Oracle Access Manager verifies the credentials against the identity store.

5. To run post-authentication rules, Oracle Access Manager calls the Oracle Adaptive

Access Manager APIs again. Based on the result register user, register questions, register user [optional], challenge, allow, or block, Oracle Access Manager renders the appropriate set of pages. For example, if the result of the rule check is a challenge, Oracle Access Manager renders a challenge question page with the security question displayed.

6.2.2 Prerequisites

Take the following steps to prepare for the integration procedure: 1. Install the Oracle Database. 2. Create and load the Oracle Access Manager and Oracle Adaptive Access Manager schemas in the database. See the Oracle Fusion Middleware Repository Creation Utility Users Guide for instructions on running the Repository Creation Utility to create the Oracle Access Manager and Oracle Adaptive Access Manager schemas in the database repository. 3. Install WebLogic Servers See the Oracle Fusion Middleware Installation Guide for Oracle WebLogic Server for complete information on installing the Oracle WebLogic Server. 4. Install Oracle Access Manager and Oracle Adaptive Access Manager. See Also: Section 2.8.2, Deployment Options for Strong Authentication . 6-4 Oracle Fusion Middleware Integration Guide for Oracle Access Manager See the Oracle Fusion Middleware Installation Guide for Oracle Identity Management for instructions on installing Oracle Access Manager and Oracle Adaptive Access Manager. 5. Patch the software to the latest version. 6. Run the Oracle Identity Management 11g Configuration Wizard to configure Oracle Adaptive Access Manager in a new WebLogic administration domain or in an existing one. Refer to Configuring Oracle Adaptive Access Manager in the Oracle Fusion Middleware Installation Guide for Oracle Identity Management for instructions on configuring Oracle Adaptive Access Manager. 7. Start the Administration Server for the WebLogic domain. For UNIX systems: DOMAIN_HOMEbinstartWebLogic.sh For Windows systems: DOMAIN_HOME\bin\startWebLogic.cmd

6.2.3 Native Integration Steps