Skip Headers
Oracle® Adaptive Access Manager Installation and Configuration Guide
Release 10g (10.1.4.5)

Part Number E12050-03
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
View PDF

2 Preparing for the Installation

The prerequisites and dependencies for the installation and configuration of Adaptive Risk Manager Online and Offline are summarized in this chapter.

This chapter contains the following topics:

2.1 Getting Started

This section contains information about the package contents of Oracle Adaptive Access Manager and the requirements to run it.

2.1.1 Package Contents

Oracle Adaptive Access Manager is packaged in a ZIP file named oaam_bin.zip.

This file contains a set of ZIP files, which are described in the table below.

Extract oaam_bin.zip to begin the Oracle Adaptive Access Manager installation.

Filename Description
Auth_EntityDefinition.zip Contains the entity definitions. To use Auto-learning, you must first import the required entities into the system.
oaam_base_models.zip Contains the base business and security rules to be used in all deployments though they are specifically built for Universal Install Option flows.
oaam_bireports_oradb.zip Contains globalization information, templates and other files needed to generate Oracle BIP reports.
oaam_cli.zip Contains the command line interface utility for import and export of models/rules/questions and so on. Not for use with geolocation data.
oaam_db_patch_10.1.4.5.zip Used for upgrade
oaam_kba_questions_<locale>.zip and oaam_kba_questions_<locale>_<country>.zip Contains challenge questions. The locale-specific zip file must be imported for successful registration and log in for Adaptive Strong Authenticator.
oaam_keystore_util.zip Contains the encryption scripts.
oaam_legacy_rule_templates.zip Contains rule templates that were shipped out in previous releases. This package is used for upgrades.
oaam_location_etl.zip Contains the geolocation data loader utility.
oaam_native_inproc.zip Used for JAVA static linked integration deployments
oaam_native_soap.zip Applications using embedded server calls using SOAP/Web services. Used for native JAVA integration deployments only.
  Note: The sample application sources should not be installed in production. They are used only as a reference.
oaam_oam_plugins.zip Authentication plug-in for Oracle Access Manager. Apply this patch after installation of Adaptive Risk Manager and Adaptive Strong Authenticator.
oaam_rhel4_apache_uio.zip Contains the proxy module and supporting libraries for Apache httpd for RHEL4
oaam_rm_online.zip Adaptive Risk Manager Online WAR file.
oaam_rm_offline.zip Adaptive Risk Manager Offline WAR file.
oaam_rule_conditions.zip Contains a library of pre-configured conditions
oaam_sa_inproc.zip The Adaptive Strong Authenticator WAR file for static installations. (For installations not using Adaptive Risk Manager as SOAP Server.)
oaam_sa_soap.zip The files used for native integrations, i.e. non-static. (For installations not using Adaptive Risk Manager as SOAP Server.)
oaam_win_apache_uio.zip Contains the proxy modules and libraries for Apache httpd for Microsoft Windows
oaam_win__isa_uio.zip Contains proxy DLL for the Microsoft ISA.
oracle_rm_database_setup.zip Oracle database scripts for new installation of 10.1.4.5.
sample_bg_images.zip Contains sample library of personalization images to be used as a placeholder. Customers who have purchased Oracle Adaptive Access Manager may contact Oracle Support for a full library of background images.
sqlserver2005_database_setup.zip Contains SQL database scripts for new installation of 10.1.4.5.

2.1.2 Supported Configurations

This section contains information about the requirements to run Oracle Adaptive Access Manager.

RAM

2.0 GB or higher

Database Versions

  • Oracle 10g or later

  • Microsoft SQL Server 2005 SP1, SP2

Application Servers

  • WebLogic Server 9.x, 10.x (Sun JDK 1.5.x or higher)

  • WebSphere 5.1 and 6.1 (IBM JDK 1.4.2 SR 06, SR09)

  • Tomcat 5.5x or higher

Software

  • JDK 1.4 or later

  • JDBC driver

Operating Systems

  • Redhat 8.0, 9.0. AS 2.1, ES 3.0, ES 4.0

  • Windows 2003

  • Solaris 10

  • HP-UX

  • AIX 4.3.3, 5.2, 5.3

Oracle Adaptive Access Manager Proxy

If using the Oracle Adaptive Access Manager Proxy: Microsoft Internet Security and Acceleration (ISA) Server 2006 Standard Edition or Apache Web server 2.2.8

2.2 Prerequisites and Dependencies

The prerequisites and dependencies for the installation and configuration of Adaptive Risk Manager Online and Offline and Adaptive Strong Authenticator are summarized in the tables below.

2.2.1 Adaptive Risk Manager Online and Offline

The prerequisites and dependencies for the installation and configuration of Adaptive Risk Manager Online and Offline are summarized in the table below.

Prerequisites and Dependencies Details
Java Java Runtime Environment, version 1.4 or higher, needs to be installed.

Environment variables JAVA_HOME and PATH must be set appropriately.

Adaptive Risk Manager Online Database The Adaptive Risk Manager Online Server needs access to the database server that contains the Adaptive Risk Manager Online schema and it needs to be populated with some initial data.

Follow the instructions in Chapter 3, "Creating an Oracle Database Schema" or Chapter 4, "Creating a SQL Server Schema," for creating the Adaptive Risk Manager Online schema and populating it with the default values.

Note: Any failover, clustering, and replication technology for the database is supported in Adaptive Risk Manager Online.

If you are using the Microsoft SQL server database, to load data to the database, sqljdbc.jar should be copied to a third-party directory.

Adaptive Risk Manager Offline Database Adaptive Risk Manager Offline has its own database that has an identical schema to that of the Adaptive Risk Manager Online version. Customer login and/or transaction data must be loaded into the Adaptive Risk Manager Offline database, and Adaptive Risk Manager Offline uses this database to perform risk analysis.

For the Adaptive Risk Manager Offline database, follow the instructions in Chapter 3, "Creating an Oracle Database Schema" or Chapter 4, "Creating a SQL Server Schema" for creating the database schema and populating it with the default values.

File Write Permission The Adaptive Risk Manager Online and Offline Server writes activity logs to rolling log files. The verbosity of the logs can optionally be configured using a standard log4j.xml configuration. For more information on setting up logging, refer to Chapter 16, "Setting Up Logging."
Shared Images Directory (for Adaptive Risk Manager Online) If personalized authentication devices are used, it is recommended that all Adaptive Risk Manager Online Application Servers have access to the directories containing the images and that they be on a shared drive

If this is not feasible, duplicate the image files on each server.

Note that the base paths must be identical on all machines that will render the images, including the client applications.

For more information on setting up background images, refer to Chapter 14, "Setting Up Background Images."

Port Configuration Ensure that the port used by the Adaptive Risk Manager Online or Offline Application Server is accessible to the client machine (the application integrating with Adaptive Risk Manager, not the end-user client machine). You are allowed to configure the port number.
JVM Settings for Adaptive Risk Manager Online The Minimum Memory setting is 1024 MB.For high volume deployments, perform load testing to come up with ideal settings.
IP Intelligence License for Adaptive Risk Manager Online Adaptive Access Manager integrates with numerous IP Intelligence products due to our open API's. Common IP Intelligence products include:
  • Quova

  • IP2Location

  • MaxMind

TCP/IP Parameters for Adaptive Risk Manager Online For windows based deployments, the following TCP/IP parameters are highly recommended:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\
TcpTimedWaitDelay= 1e 
MaxUserPort = ffff

2.2.2 Adaptive Strong Authenticator

The prerequisites and dependencies for the installation and configuration of Adaptive Strong Authenticator are summarized in the table below.

Prerequisites and Dependencies Descriptions
Shared Images Directory If personalized authentication devices are used, it is recommended that you provide the application servers and the Adaptive Risk Manager Online server with access to the directories containing the images on a shared drive.

The sample_bg_images.zip contains sample images for TextPad. Unzip the images to the Webapp root folder and then point the bharosa.image.dirlist property in bharosa_client.properties and in bharosa_server.properties to this folder.

In Adaptive Strong Authenticator, the property file is bharosa_client.properties.

In Adaptive Risk Manager, the property file is bharosa_server.properties.

The files are located in the <webapps_install_directory>/<webapps_name>/WEB-INF/classes directory.

Port Configuration The Adaptive Strong Authenticator server must be able to access the Adaptive Risk Manager server via HTTP/HTTPS.