Single Sign-On Integration Deployment Options

1-8 Oracle Fusion Middleware Administrators Guide for Oracle Adaptive Access Manager

1.4.2 Universal Installation Option Reverse Proxy

Oracle Adaptive Access Manager can be deployed using an Apache module to intercept login requests and provide advanced login security. The flows available are the same as for the advanced single sign-on integration option. The main benefit of the Oracle Universal Installation Option UIO deployment is that it requires little or no integration with protected applications and SSO is not required.

1.4.3 Native Application Integration

Oracle Adaptive Access Manager can be natively integrated with an application to provide extreme high performance and highly customizable security. A native integration embeds OAAM in-process inside the protected applications. The application invokes the Oracle Adaptive Access Manager APIs directly to access risk and challenge flows.

1.4.4 Web Services Application Integration

Customers who have advanced requirements similar to native integration but who prefer to use SOAP web services instead of Java API integration directly can choose this option. 2 Setting Up the Oracle Adaptive Access Manager Environment for the First Time 2-1 2 Setting Up the Oracle Adaptive Access Manager Environment for the First Time All tasks in this book presume that you have Oracle Adaptive Access Manager 11g installed with initial configuration completed as described in the Oracle Fusion Middleware Installation Guide for Oracle Identity Management. This chapter presents details on setting up the Oracle Adaptive Access Manager environment for first time users. For information on how to upgrade an existing Oracle Adaptive Access Manager 10g 10.1.4.5 to Oracle Adaptive Access Manager 11g Release 1 11.1.1.5.0, refer to the Oracle Fusion Middleware Upgrade Guide for Oracle Identity Management.

2.1 Installation and Configuration

The Oracle Fusion Middleware Installation Guide for Oracle Identity Management 11g Release 1 11.1.1 provides all installation and initial configuration details. Oracle Adaptive Access Manager is installed into an environment where you may install other Oracle Identity Management 11g components. The following Oracle Adaptive Access Manager-related components are deployed in a new WebLogic administration domain using the Oracle Fusion Middleware Configuration Wizard: ■ WebLogic Administration Server ■ Managed Server for Oracle Adaptive Access Manager ■ Oracle Adaptive Access Manager Console deployed on the Administration Server For information on how to install and configure Oracle Adaptive Access Manager, see the Oracle Fusion Middleware Installation Guide for Oracle Identity Management.

2.2 Setting Up the Oracle Adaptive Access Manager Base Environment

After installing and configuring Oracle Adaptive Access Manager, you must complete the following tasks to set up the initial base Oracle Adaptive Access Manager environment. Procedures are provided in the following sections: ■ Setting Up CLI Environment ■ Setting Up Encryption and Database Credentials for Oracle Adaptive Access Manager ■ Creating OAAM Users