Skip Headers
Oracle® Fusion Middleware Installation Guide for Oracle Identity and Access Management
11g Release 2 (11.1.2)

Part Number E27301-04
Go to Documentation Home
Home
Go to Table of Contents
Contents
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
PDF · Mobi · ePub

10 Configuring Oracle Access Management Mobile and Social

This chapter explains how to configure Oracle Access Management Mobile and Social. It includes the following topics:

10.1 Overview

For an introduction to the Oracle Access Management Mobile and Social, see the "Understanding Mobile and Social" chapter in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.

10.2 Important Note Before You Begin

Before you start installing and configuring Oracle Identity and Access Management products in any of the scenarios discussed in this guide, note that IAM_Home is used to refer to the Oracle Home directory that includes Oracle Identity Manager, Oracle Access Management, Oracle Adaptive Access Manager, Oracle Entitlements Server, Oracle Identity Navigator, Oracle Privileged Account Manager, and Oracle Access Management Mobile and Social. You can specify any name for this Oracle Home directory.

10.3 Installation and Configuration Roadmap for Oracle Access Management Mobile and Social

Table 10-1 lists the tasks for installing and configuring Oracle Access Management Mobile and Social.

Table 10-1 Installation and Configuration Flow for Oracle Access Management Mobile and Social

No. Task Description

1

Review installation concepts in the Installation Planning Guide.

Read the Oracle Fusion Middleware Installation Planning Guide, which describes the process for various users to install or upgrade to Oracle Fusion Middleware 11g (11.1.2) depending on the user's existing environment.

2

Review the system requirements and certification documents to ensure that your environment meets the minimum installation requirements for the components you are installing.

For more information, see Section 2.1, "Reviewing System Requirements and Certification".

3

Obtain the Oracle Fusion Middleware Software.

For more information, see Section 3.2.1, "Obtaining the Oracle Fusion Middleware Software"

4

Review the Database requirements.

For more information, see Section 3.2.2, "Database Requirements".

5

Run Oracle Fusion Middleware Repository Creation Utility (RCU) to create and load the appropriate schemas for Oracle Identity and Access Management products.

For more information, see Section 3.2.3, "Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU)".

Note: If you are configuring Oracle Access Management Mobile and Social standalone, skip this step.

6

Review WebLogic Server and Middleware Home requirements.

For more information, see Section 3.2.4, "WebLogic Server and Middleware Home Requirements".

7

Start the Oracle Identity and Access Management Installer.

For more information, see Section 3.2.6, "Starting the Oracle Identity and Access Management Installer".

8

Install the Oracle Identity and Access Management 11g software.

Oracle Access Management Mobile and Social is included in the Oracle Identity and Access Management Suite. You can use the Oracle Identity and Access Management 11g Installer to install Oracle Identity and Access Management Suite.

For more information, see Section 3.2.7, "Installing Oracle Identity and Access Management (11.1.2)".

9

Run the Oracle Fusion Middleware Configuration Wizard to configure your Oracle Identity and Access Management products in a new or existing WebLogic domain.

This chapter describes the following configuration scenarios:

10

Configure the Database Security Store.

For more information, see Section 3.2.9, "Configuring Database Security Store for an Oracle Identity and Access Management Domain".

Note: If you are configuring Oracle Access Management Mobile and Social standalone, skip this step.

11

Start the servers.

You must start the Administration Server and all Managed Servers. For more information, see Appendix C, "Starting the Stack".

12

Complete the post-installation tasks.

Complete the following post-installation tasks:


10.4 Oracle Access Management Mobile and Social Configuration Scenarios

The following lists the scenarios in which you can configure Oracle Access Management Mobile and Social:

10.4.1 Oracle Access Management Mobile and Social with Oracle Access Manager 11gR2

This topic describes how to configure Oracle Access Management Mobile and Social with Oracle Access Manager 11gR2. It includes the following sections:

10.4.1.1 Overview

Oracle Access Management Mobile and Social is packaged with Oracle Access Management. Oracle Access Management has many components, such as Oracle Access Manager, Oracle Access Management Security Token Service, Oracle Access Management Identity Federation, and Oracle Access Management Mobile and Social. In this scenario, only Oracle Access Manager is enabled as the authentication provider, by default. You can enable other services like Oracle Access Management Mobile and Social using the Oracle Access Management Administration Console, after the installation is complete.

10.4.1.2 Appropriate Deployment Environment

Perform the configuration in this topic if you want to use Oracle Access Manager 11gR2 as a service.

In this configuration, you can select other Oracle Identity and Access Management products like Oracle Adaptive Access Manager when you configure Oracle Access Management Mobile and Social.

10.4.1.3 Components Deployed

Performing the configuration in this section deploys the following Oracle Access Management components:

  • Oracle Access Manager

  • Oracle Access Management Security Token Service

  • Oracle Access Management Identity Federation

  • Oracle Access Management Mobile and Social

10.4.1.4 Dependencies

The configuration in this section depends on the following:

10.4.1.5 Procedure

Perform the following steps to configure Oracle Access Management Mobile and Social and Oracle Access Manager in a new WebLogic administration domain:

  1. Start the Oracle Fusion Middleware Configuration Wizard by running the <IAM_Home>/common/bin/config.sh script (on UNIX), or <IAM_Home>\common\bin\config.cmd (on Windows).

    The Welcome screen of the Oracle Fusion Middleware Configuration Wizard appears.

    Note:

    IAM_Home is used as an example here. You must run this script from your Oracle Identity and Access Management Home directory that contains Oracle Identity Manager, Oracle Access Management, Oracle Adaptive Access Manager, Oracle Entitlements Server, Oracle Privileged Account Manager, Oracle Access Management Mobile and Social, and Oracle Identity Navigator.

  2. On the Welcome screen, select Create a new WebLogic domain, and click Next. The Select Domain Source screen appears.

  3. On the Select Domain Source screen, ensure that the Generate a domain configured automatically to support the following products: option is selected. Select Oracle Access Management - 11.1.2.0.0 [IAM_Home].

    Note:

    When you select the Oracle Access Management - 11.1.2.0.0 [IAM_Home] option, the following options are also selected, by default:

    • Oracle Platform Security Service 11.1.1.0 [IAM_Home]

    • Oracle JRF 11.1.1.0 [oracle_common]

    You may optionally select Oracle Adaptive Access Manager Admin Server - 11.1.2.0.0 [IAM_Home] if you want to add Oracle Adaptive Access Manager to the same WebLogic Administration domain containing Oracle Access Management Mobile and Social.

    Oracle highly recommends that you select Oracle Adaptive Access Manager for using device registration feature.

    Note:

    If you select the Oracle Adaptive Access Manager Admin Server - 11.1.2.0.0 [IAM_Home] option, the following options are also selected, by default:

    • Oracle Enterprise Manager 11.1.1.0 [oracle_common]

    • Oracle Identity Navigator - 11.1.2.0.0 [IAM_Home]

    Click Next. The Specify Domain Name and Location screen appears.

  4. Enter a name and a location for the domain to be created, and click Next. The Configure Administrator User Name and Password screen appears.

  5. Configure a user name and a password for the administrator. The default user name is weblogic. Click Next.

  6. Choose a JDK and Production Mode in the Configure Server Start Mode and JDK screen of the Oracle Fusion Middleware Configuration Wizard. Click Next. The Configure JDBC Component Schema screen is displayed.

  7. On the Configure JDBC Component Schema screen, select a component schema, such as the OAM Infrastructure Schema or the OPSS Schema, that you want to modify.

    You can set values for Schema Owner, Schema Password, Database and Service, Host Name, and Port. Click Next. The Test JDBC Component Schema screen appears. After the test succeeds, click Next. The Select Optional Configuration screen appears.

  8. On the Select Optional Configuration screen, you can configure Administration Server and Managed Servers, Clusters, and Machines, Deployments and Services, and RDBMS Security Store options. Click Next.

  9. Optional: Configure the following Administration Server parameters:

    • Name

    • Listen address

    • Listen port

    • SSL listen port

    • SSL enabled or disabled

  10. Optional: Configure Managed Servers, as required.

  11. Optional: Configure Clusters, as required.

    For more information about configuring clusters for Oracle Identity and Access Management products, see the "Configuring High Availability for Identity Management Components" topic in the guide Oracle Fusion Middleware High Availability Guide.

  12. Optional: Assign Managed Servers to clusters, as required.

  13. Optional: Configure Machines, as needed. This step is useful when you want to run the Administration Server on one machine and Managed Servers on another physical machine.

    Tip:

    Before configuring a machine, use the ping command to verify whether the machine or host name is accessible.

  14. Optional: Assign the Administration Server to a machine.

  15. Optional: Select Deployments, such as applications and libraries, and Services to target them to a particular cluster or server.

  16. Optional: Configure RDBMS Security Store, as required.

  17. On the Configuration Summary screen, you can view summaries of your configuration for deployments, application, and service. Review the domain configuration, and click Create to start creating the domain.

    A new WebLogic domain to support Oracle Access Management Mobile and Social with Oracle Access Manager is created in the <MW_HOME>\user_projects\domains directory (on Windows). On UNIX, the domain is created in the <MW_HOME>/user_projects/domains directory.

    Note:

    After configuring Oracle Access Management Mobile and Social with Oracle Access Management in a new WebLogic administration domain, you must configure the Database Security Store. For more information, see Section 3.2.9, "Configuring Database Security Store for an Oracle Identity and Access Management Domain".

  18. Start the Oracle WebLogic Administration Server, as described in Appendix C, "Starting the Stack".

  19. Start all Managed Servers, as described in Appendix C, "Starting the Stack".

Note:

After you configure Oracle Access Management Mobile and Social with Oracle Access Management, only Oracle Access Manager is enabled as the authentication provider, by default. To enable other Oracle Access Management components, such as OSTS, OIF, and Oracle Access Management Mobile and Social, refer to "Enabling or Disabling Available Services" in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.

10.4.2 Oracle Access Management Mobile and Social Standalone in a New WebLogic Domain

This topic describes how to configure Oracle Access Management Mobile and Social standalone in a new WebLogic administration domain. It includes the following sections:

10.4.2.1 Overview

Oracle Access Management Mobile and Social is packaged with Oracle Access Management. In this option, only Oracle Access Management Mobile and Social is enabled as a service, by default. All the other Oracle Access Management components are disabled.

10.4.2.2 Appropriate Deployment Environment

Perform the configuration in this topic if you want to use only Oracle Access Management Mobile and Social. This is a lightweight deployment option where you do not need to configure a Database. This configuration is suitable if you want to integrate Oracle Access Management Mobile and Social with identity products from other vendors.

This configuration is also suitable for using Oracle Access Management Mobile and Social with older releases of Oracle Access Manager such as Oracle Access Manager 10g or Oracle Access Manager 11gR1.

10.4.2.3 Components Deployed

Performing the configuration in this section deploys the following Oracle Access Management components:

  • Oracle Access Manager

  • Oracle Access Management Security Token Service

  • Oracle Access Management Identity Federation

  • Oracle Access Management Mobile and Social

10.4.2.4 Dependencies

The configuration in this section depends on the following:

  • Oracle WebLogic Server 11g Release 1 (10.3.6) or Oracle WebLogic Server 11g Release 1 (10.3.5).

  • Installation of the Oracle Identity and Access Management 11g software.

10.4.2.5 Procedure

Perform the following steps to configure Oracle Access Management Mobile and Social standalone in a new WebLogic administration domain:

  1. Start the Oracle Fusion Middleware Configuration Wizard by running the <IAM_Home>/common/bin/config.sh script (on UNIX), or <IAM_Home>\common\bin\config.cmd (on Windows).

    The Welcome screen of the Oracle Fusion Middleware Configuration Wizard appears.

    Note:

    IAM_Home is used as an example here. You must run this script from your Oracle Identity and Access Management Home directory that contains Oracle Identity Manager, Oracle Access Management, Oracle Adaptive Access Manager, Oracle Entitlements Server, Oracle Privileged Account Manager, Oracle Access Management Mobile and Social, and Oracle Identity Navigator.

  2. On the Welcome screen, select Create a new WebLogic domain, and click Next. The Select Domain Source screen appears.

  3. On the Select Domain Source screen, ensure that the Generate a domain configured automatically to support the following products: option is selected. Select Oracle Access Management Mobile and Social only - 11.1.2.0.0 [IAM_Home].

    Note:

    When you select the Oracle Access Management Mobile and Social only - 11.1.2.0.0 [IAM_Home] option, the Oracle JRF 11.1.1.0 [oracle_common] option is also selected, by default.

    Click Next. The Specify Domain Name and Location screen appears.

  4. Enter a name and a location for the domain to be created, and click Next. The Configure Administrator User Name and Password screen appears.

  5. Configure a user name and a password for the administrator. The default user name is weblogic. Click Next.

  6. Choose a JDK and Production Mode in the Configure Server Start Mode and JDK screen of the Oracle Fusion Middleware Configuration Wizard. Click Next.

    The Select Optional Configuration screen appears.

  7. On the Select Optional Configuration screen, you can configure Administration Server and Managed Servers, Clusters, and Machines, Deployments and Services, and RDBMS Security Store options. Click Next.

  8. Optional: Configure the following Administration Server parameters:

    • Name

    • Listen address

    • Listen port

    • SSL listen port

    • SSL enabled or disabled

  9. Optional: Configure Managed Servers, as required.

  10. Optional: Configure Clusters, as required.

    For more information about configuring clusters for Oracle Identity and Access Management products, see the "Configuring High Availability for Identity Management Components" topic in the guide Oracle Fusion Middleware High Availability Guide.

  11. Optional: Assign Managed Servers to clusters, as required.

  12. Optional: Configure Machines, as needed. This step is useful when you want to run the Administration Server on one machine and Managed Servers on another physical machine.

    Tip:

    Before configuring a machine, use the ping command to verify whether the machine or host name is accessible.

  13. Optional: Assign the Administration Server to a machine.

  14. Optional: Select Deployments, such as applications and libraries, and Services to target them to a particular cluster or server.

  15. Optional: Configure RDBMS Security Store, as required.

  16. On the Configuration Summary screen, you can view summaries of your configuration for deployments, application, and service. Review the domain configuration, and click Create to start creating the domain.

    A new WebLogic domain to support Oracle Access Management Mobile and Social is created in the <MW_HOME>\user_projects\domains directory (on Windows). On UNIX, the domain is created in the <MW_HOME>/user_projects/domains directory.

  17. After installing and configuring Oracle Access Management Mobile and Social, you must start the Oracle WebLogic Administration Server, as described in Appendix C, "Starting the Stack".

  18. You must start all Managed Servers, as described in Appendix C, "Starting the Stack".

Note:

When you configure Oracle Access Management Mobile and Social standalone, Oracle Access Management Mobile and Social provides pre-configured Service Providers. To create a new (custom) Service Provider, refer to "Editing or Creating Service Providers" in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.

10.5 Verifying Oracle Access Management Mobile and Social

After completing the installation process, you can verify the installation and configuration of Oracle Access Management Mobile and Social as follows:

  1. Ensure that the Administration Server and the Managed Server are up and running.

  2. Log in to the Administration Console for Oracle Access Management using the URL: http://<adminserver-host>:<adminserver-port>/oamconsole

    When you access this Administration Console running on the Administration Server, you are prompted to enter a user name and password. Note that you must have Administrator's role and privileges.

  3. From the Oracle Access Management console, go to System Configuration tab>Common Configuration section>Available Services node.

    If you have configured Oracle Access Management Mobile and Social with Oracle Access Management, you must enable the Status of Mobile and Social and ensure that the Status of Mobile and Social has a green check mark.

    If you have configured Oracle Access Management Mobile and Social standalone, ensure that the Status of Mobile and Social has a green check mark.

10.6 Getting Started with Oracle Access Management Mobile and Social After Installation

After installing Oracle Access Management Mobile and Social, refer to the "Mobile and Social System Configuration and Administration" chapter in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.