Updating Oracle HTTP Server Configuration Restarting Oracle HTTP Server Changing Host Assertion in WebLogic
12.4.2.2 Starting Oracle Adaptive Access Manager on OAAMHOST2
Start Oracle Adaptive Access Manager on OAAMHOST2 by following the start procedures in Section 20.1, Starting and Stopping Oracle Identity Management Components for: ■ Node Manager ■ WebLogic Managed Servers WLS_OAAM1 and WLS_OAAM_ADMIN112.4.3 Validating OAAMHOST2
Validate the implementation by connecting to the OAAM Administration Server at http:OAAMHOST2.mycompany.com:14200oaam_admin. The implementation is valid if OAAM Administration console login page is displayed and you can login using the oaamadmin account you created in Section 10.4.3, Creating Users and Groups for Oracle Adaptive Access Manager. Validate the implementation by connecting to the OAAM Server at: http:OAAMHOST2.mycompany.com:14300oaam_server The implementation is valid if the OAAM Server login page is displayed.12.5 Configuring OAAM to Work with the Oracle HTTP Server
This section describes how to configure Oracle Adaptive Access Manager to work with the Oracle HTTP Server. This section contains the following topics: ■ Section 12.5.1, Updating Oracle HTTP Server Configuration ■ Section 12.5.2, Restarting Oracle HTTP Server ■ Section 12.5.3, Changing Host Assertion in WebLogic ■ Section 12.5.4, Validating Oracle Adaptive Access Manager12.5.1 Updating Oracle HTTP Server Configuration
On each WEBHOST, create a file in ORACLE_ INSTANCE configOHSohs1moduleconf called oaam.conf with the following lines: Location oaam_server SetHandler weblogic-handler WebLogicCluster oaamhost1.mycompany.com:14300,oaamhost2.mycompany.com:14300 WLProxySSL ON WLProxySSLPassThrough ON Location 12-10 Oracle Fusion Middleware Enterprise Deployment Guide for Oracle Identity Management The OAAM Administration console must only be available through the admin.mycompany.com site. You achieve this by editing the file ORACLE_ INSTANCE configOHScomponentmoduleconfadmin.conf. You created admin.conf in Section 6.9, Configuring Oracle HTTP Server for the WebLogic Administration Server . Edit the virtual host definition in admin.conf. After editing the file should look like this: NameVirtualHost :80 VirtualHost :80 ServerName admin.mycompany.com:80 ServerAdmin youyour.address RewriteEngine On RewriteOptions inherit Admin Server and EM Location console SetHandler weblogic-handler WebLogicHost ADMINVHN WeblogicPort 7001 Location Location consolehelp SetHandler weblogic-handler WebLogicHost ADMINVHN WeblogicPort 7001 Location Location em SetHandler weblogic-handler WebLogicHost ADMINVHN WeblogicPort 7001 Location Location oaam_admin SetHandler weblogic-handler WebLogicCluster oaamhost1.mycompany.com:14200,oaamhost2.mycompany.com:14200 Location VirtualHost12.5.2 Restarting Oracle HTTP Server
Restart the Oracle HTTP Server on WEBHOST1 and WEBHOST2, as described in Section 20.1, Starting and Stopping Oracle Identity Management Components.12.5.3 Changing Host Assertion in WebLogic
Because the Oracle HTTP Server acts as a proxy for WebLogic, by default certain CGI environment variables are not passed through to WebLogic. These include the host and port. You must tell WebLogic that it is using a virtual site name and port so that it can generate internal URLs appropriately. To do this, log in to the WebLogic administration console at http:admin.mycompany.comconsole. Proceed as follows: Extending the Domain with Oracle Adaptive Access Manager 12-111. Select Clusters from the home page or, alternatively, select Environment -
Clusters from the Domain structure menu.2. Click Lock and Edit in the Change Center Window to enable editing.
3. Click the Cluster Name cluster_oaam.
4. Select HTTP and enter the following values:
■ Frontend Host : sso.mycompany.com ■ Frontend HTTP Port: 80 ■ Frontend HTTPS Port: 443 This ensures that any HTTPS URLs created from within WebLogic are directed to port 443 on the load balancer.5. Click Save.
6. Select Clusters from the home page or, alternatively, select Environment -
Clusters from the Domain structure menu.7. Click the Cluster Name cluster_oaam_admin.
8. Select HTTP and enter the following values: ■ Frontend Host: admin.mycompany.com ■ Frontend HTTP Port: 80 9. Click Save. 10. Click Activate Changes in the Change Center window to enable editing. Restart Managed servers WLS_OAAM1, WLS_OAAM2, WLS_OAAM_ADMIN1 and WLS_ OAAM_ADMIN2 as described in Section 20.1, Starting and Stopping Oracle Identity Management Components.12.5.4 Validating Oracle Adaptive Access Manager
Parts
» Oracle Fusion Middleware Online Documentation Library
» What is an Enterprise Deployment? Terminology
» Understanding the Directory Tier
» Architecture Notes Understanding the Application Tier
» Architecture Notes Security Provisions
» Using This Guide Oracle Fusion Middleware Online Documentation Library
» Hardware Resource Planning Oracle Fusion Middleware Online Documentation Library
» Load Balancers Network Prerequisites
» Configuring Virtual Server Names and Ports on the Load Balancer
» Virtual IP Addresses Managing Oracle Fusion Middleware Component Connections
» Firewall and Port Configuration
» Directory Structure Terminology and Environment Variables
» Recommended Locations for the Different Directories
» WebLogic Domain Considerations Real Application Clusters
» Creating Database Services for 11.2.x Databases Database Tuning
» RCU Example Executing the Repository Creation Utility
» Introduction Using this Guide Software Installation Summary
» Installation Installing Oracle HTTP Server
» Installing Oracle Fusion Middleware Components Installing Oracle Fusion Middleware Home
» Installing JRockit Installing Oracle Identity Management
» Upgrading the Oracle Homes for Oracle Identity Management from 11.1.1.2 to 11.1.1.5
» Installing the Oracle SOA Suite
» Installing Oracle Identity and Access Management
» Validating the Installation Backing up the Web Tier Configuration
» Enabling ADMINVHN on IDMHOST1 Running the Configuration Wizard on IDMHOST1 to Create a Domain
» Failing over the Administration Server to IDMHOST2
» Failing the Administration Server Back to IDMHOST1
» Configuring the First Oracle Internet Directory Instance
» Configuring an Additional Oracle Internet Directory Instance
» Registering Oracle Internet Directory with the WebLogic Server Domain
» Extending the Oracle WebLogic Domain with Oracle Directory Integration Platform and ODSM
» Installing and Configuring Oracle Directory Integration Platform and ODSM on IDMHOST2
» Provisioning the Managed Servers in the Managed Server Directory
» Validating Oracle Directory Services Manager Validating Oracle Directory Integration Platform
» Backing Up the Application Tier Configuration
» Configuring the First Oracle Virtual Directory Instance
» Configuring an Additional Oracle Virtual Directory
» Registering Oracle Virtual Directory with the Oracle WebLogic Server Domain
» Creating Policy Store Users and the Policy Container
» Reassociating the Policy and Credential Store
» Extending Directory Schema for Oracle Access Manager
» Creating Users and Groups for Oracle Access Manager
» Creating Users and Groups for Oracle Adaptive Access Manager
» Creating Users and Groups for Oracle Identity Manager
» Creating Users and Groups for Oracle WebLogic Server
» Creating Access Control Lists in Non-Oracle Internet Directory Directories
» Extending Domain with Oracle Access Manager
» Removing IDM Domain Agent Propagating the Domain Changes to the Managed Server Domain Directory
» Changing Oracle Access Manager Security Model
» Configuring Oracle Access Manager by Using the IDM Automation Tool
» Adding the oamadmin Account to Access System Administrators Validating Oracle Access Manager
» Setting up Keystore with the SSL Certificate and Private Key file of the Access Client
» Extending Domain for Oracle Adaptive Access Manager
» Prerequisites Loading Oracle Adaptive Access Manager Seed Data
» Backing Up the Application Tier Configuration Backing Up the Application Tier Configuration
» Prerequisites Enabling Virtual IP Addresses on OIMHOST1 and OIMHOST2
» Extending the Domain to Configure Oracle Identity Manager and Oracle SOA Suite on IDMHOST1
» Propagating the Oracle Identity Manager and SOA Managed Servers to OIMHOST1 and OIMHOST2
» Prerequisites Configuring Oracle Identity Manager to Work with the Oracle Web Tier
» Configuring an IT Resource Instance for Email
» Creating and Importing New Rules
» Tuning Oracle Platform Security Backing Up the Application Tier Configuration
» Prerequisites Oracle Fusion Middleware Online Documentation Library
» Configuring Oracle Identity Federation on OIFHOST1
» Configuring Oracle Identity Federation on OIFHOST2
» Provisioning the Managed Servers on the Local Disk
» Validating Oracle Identity Federation Backing Up the Application Tier Configuration
» Generating Self-Signed Certificates Using the utils.CertGen Utility
» Configuring Node Manager to Use the Custom Keystores
» Starting Node Manager Configuring Managed WebLogic Servers to Use the Custom Keystores
» Configuring Server Migration Targets Click the Migration tab.
» Updating Existing LDAP Users with Required Object Classes
» Integrating Oracle Access Manager with Oracle Identity Manager by Using idmConfigTool
» Updating Oracle Virtual Directory Authenticator Manually Creating CSF Keys
» Managing the Password of the xelsysadm User Validating Integration
» Validating Oracle Adaptive Access Manager
» Prerequisites Creating Oracle Directory Authenticator
» On the Configure Web Server screen, click Yes to automatically update the web
» Validating WebGate Validating the Oracle Access Manager Single Sign-On Setup
» Monitoring Oracle Virtual Directory
» Monitoring Oracle Directory Integration Platform
» Scaling Up the Directory Tier
» Click the SSL tab. Click Advanced. Set Hostname Verification to None. Click Save.
» Click Save. Oracle Fusion Middleware Online Documentation Library
» Patching an Oracle Fusion Middleware Source File Patching Identity Management Components
» Troubleshooting Oracle Internet Directory
» Troubleshooting Oracle Virtual Directory
» Troubleshooting Oracle Directory Integration Platform
» Troubleshooting Oracle Directory Services Manager
Show more