Skip Headers
Oracle® Fusion Middleware Administrator's Guide for Oracle Access Manager with Oracle Security Token Service
11g Release 1 (11.1.1)

Part Number E15478-10
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
PDF · Mobi · ePub

3 Getting Started with Common Administration and Navigation

This chapter describes the initial steps needed to log in and navigate around the Oracle Access Manager Console. This chapter includes the following topics:

WARNING:

Starting the AdminServer the first time can take an unusually long time: 12-15 minutes, for example. This process must not be interrupted or terminated. If the startWebLogic.cmd (Windows; startWebLogic.sh) is stopped for any reason (whether accidently or a system crash or a reboot, for example), policy data might be corrupted. This would require removal and recreation of the domain and rerunning the RCU to create the OAM schema.

3.1 Prerequisites

All tasks in this book presume that you have Oracle Access Manager 11g deployed as described in the Oracle Fusion Middleware Installation Guide for Oracle Identity Management.

Note:

You can access the Oracle Access Manager Console when the WebLogic Administration Server is running. If the Oracle Access Manager Console is protected by a Webgate, the OAM Server must be running.

Before you begin tasks in this chapter:

3.2 Introduction to Administrators

A single default LDAP group, the WebLogic Server "Administrators" group, is set in the Default User Identity Store (Embeded LDAP). During initial deployment, using the Oracle Fusion Middleware Configuration Wizard, the administrator userID and password are set. These credentials grant access to:

Table 3-1 describes the administrator Role that is recognized by Oracle Access Manager and WebLogic, and the default LDAP group to which the Role is mapped in the common Default System User Identity Store.

Table 3-1 Role Mapping from an LDAP Group to Administrator

Administrator Role Description and LDAP Group

Administrator's Role

The LDAP group defined within the primary user identity store that grants users full system and policy configuration privileges.

Default Group = Administrators

Note: Specifying a different LDAP group prohibits WebLogic administrators from logging in to Oracle Security Token Service or from using administrative command-line tools.


Initially, administrative users must log in to the Oracle Access Manager Console using the WebLogic Administrator credentials set during initial configuration. However, your enterprise might require independent sets of administrators: one set of users responsible for Oracle Access Manager with Oracle Security Token Service administration and a different set for WebLogic administration. For more information, see "Managing the Administrators Role".

Note:

Concurrent configuration updates are not supported. Only one administrator should be allowed to modify the system configuration at any given time. Administrators performing updates concurrently will result in an inconsistent state within the system configuration of the Oracle Access Manager Console.

3.3 Logging In to and Signing Out of Oracle Access Manager Console

The Oracle Access Manager Console provides administrative access to Oracle Access Manager with Oracle Security Token Service. This section describes how to log in to and sign out of the Oracle Access Manager Console.

Note:

If you have Oracle Identity Navigator installed to access multiple consoles from one URL, see the Oracle Fusion Middleware Administrator's Guide for Oracle Identity Navigator.

This section provides the following topics:

3.3.1 Logging In to the Oracle Access Manager Console

The Oracle Access Manager Console log in page is shown in Figure 3-1.

Figure 3-1 Oracle Access Manager 11g Log In Page

Oracle Access Manager 11g Login Page
Description of "Figure 3-1 Oracle Access Manager 11g Log In Page"

Note:

Ensure that you use the correct administrative credential for log in. Initially, the LDAP group for the Administrator is the same as the LDAP group defined for the WebLogic Server Administration Console ("Administrators") and the common Default System User Identity Store store is the WebLogic Embedded LDAP.

To log in to Oracle Access Manager Console

  1. In a browser window, enter the URL to the Oracle Access Manager Console using the appropriate protocol (HTTP or HTTPS). For example:

    https://hostname:port/oamconsole/
    

    In the sample URL shown here:

    • HTTPS represents the Hypertext Transfer Protocol (HTTP) with the Secure Socket Layer (SSL) enabled to encrypt and decrypt user page requests and the pages returned by the Web server

    • hostname refers to fully-qualified domain name of the computer hosting the Oracle Access Manager Console

    • port refers to the designated bind port for the Oracle Access Manager Console (this is the same as the bind port for the WebLogic Server Administration Console)

    • /oamconsole/refers to the Oracle Access Manager Console Log In page

  2. On the Log In page, enter the Oracle Access Manager Console Administrator credentials. For example:

    Username: Admin_login_id

    Password: Admin_password

  3. Click the Log In button or press the Enter key.

  4. Proceed as follows:

3.3.2 Signing Out of Oracle Access Manager Console

The Sign Out link appears in the upper-right corner of the Oracle Access Manager Console, as shown in Figure 3-2. You select the Sign Out link to conclude your session. Oracle recommends that you also close the browser window after signing out.

Figure 3-2 Sign Out Link, Upper-right Corner

Sign Out Link
Description of "Figure 3-2 Sign Out Link, Upper-right Corner"

To sign out of Oracle Access Manager Console

  1. Click the Sign Out link in the upper-right corner of the console.

  2. Close your browser window.

3.4 Introduction to the Oracle Access Manager Console and Controls

The Oracle Access Manager Console is a Web-based program that provides function-level tabs and controls, as well as page-level tabs and controls. This section introduces the Oracle Access Manager Console.

The Oracle Access Manager Console provides the system and policy configuration management functions required by administrators. You can enter the URL to the Oracle Access Manager Console in a browser window:

https://hostname:port/oamconsole

In the sample URL, hostname refers to computer that hosts the Oracle Access Manager Console; port refers to the HTTP port number on which the console host listens; /oamconsole refers to the Log In page.

Note:

Concurrent configuration updates are not supported. Only one administrator should be allowed to modify the system configuration at any given time. Administrators performing updates concurrently will result in an inconsistent state within the system configuration of the Oracle Access Manager Console Console.

This section provides a quick introduction to orient you to the Oracle Access Manager Console.

3.4.1 Console Layout and Controls

Figure 3-3 provides a look at the Oracle Access Manager Console as it appears immediately after log in.

Figure 3-3 Oracle Access Manager Console Welcome Page

Welcome Page
Description of "Figure 3-3 Oracle Access Manager Console Welcome Page"

The Oracle Access Manager Console provides named function tabs on the left above the search controls and a menu and tool bar above the navigation tree. Open pages appear on the right. Currently the Welcome page is open.

Following topics provide more information:

3.4.1.1 Welcome Page and Shortcuts

Initially, the Welcome page is open and active on the right side of the console. Sections on the Welcome page include a brief description of a specific function and one or more "shortcuts" (links that you can select) to initiate certain tasks immediately as explained in Table 3-2.

Table 3-2 Welcome Page and Shortcuts

Welcome Page Shortcut Section Description
Configuration Shortcuts
See the following topics for more information on each of the choices on the Configuration Shortcuts panel:
SSO Agents Shortcust

Click New .. to launch a fresh Create Agent page. See "About the System Configuration Tab" for more information.

Policies Shortcuts

Click New Application Domain to launch a fresh Application Domains page. See "About the Policy Configuration Tab" for more information.

Trust Partners Shortcuts

Click New ... to launch a fresh page where you can enter appropriate details. See Part V, "Oracle Security Token Service"for more information.


3.4.1.2 Function-Level Tabs and Controls

Table 3-3 introduces the function-level tabs in the Oracle Access Manager Console.

Table 3-3 Function Tabs and Descriptions

Function Tab Name Description

Policy Configuration

Welcome Page, Other Section

Provides access to definitions for Shared Components and Application Domains. This tab is active and the related navigation tree is visible for browsing on the left side of the screen when you enter the console.

See "About the Policy Configuration Tab" for more information.

System Configuration

Note: This is not the active tab when you enter the console.

Welcome Page, Other Section

Provides access to system-level definitions as shown here.

System Configuration, Collapsed View

See "About the System Configuration Tab" for more information.


The following topics provide more information about specific controls:

3.4.1.2.1 Navigation Tree

A navigation tree for the active configuration tab is provided on the left side of the console. Named nodes identify groups under which you can choose individual instances on which to take action.

The nodes in the navigation tree for the Policy Configuration and System Configuration tabs are shown in Figure 3-4. Notice the menu and tool bars above each navigation tree.

Figure 3-4 Sample Navigation Trees with Menu and Tool Bars

Sample Navigation Trees with Menu and Tool Bars
Description of "Figure 3-4 Sample Navigation Trees with Menu and Tool Bars"

3.4.1.2.2 Menu and Tool Bar

Menus provide commands that you can use to take action on the selected item in the navigation tree. Many menu commands are also provided as command buttons in a tool bar for quick access. A menu and tool bar appear above each navigation tree in the console.

A different collection of menus and command buttons is available, depending upon the tab or subtab you are viewing. Additionally, certain configuration pages within the console include tables that provide a menu and tool bar. Figure 3-5.

Figure 3-5 Menu and Tool Bar Above Common Configuration Navigation Tree

Menu and Tool Bar
Description of "Figure 3-5 Menu and Tool Bar Above Common Configuration Navigation Tree"

Command buttons appear in full color when the related function is available for use. When a function cannot be used, the command button (or menu item) appears grey. For instance, you can open a node and edit or delete a selected registration or definition. Table 3-4 provides a description of each command button in the tool bar. Some buttons are only available

Table 3-4 Command Buttons in the Tool Bar

Button Definition Description
Create Button

Create

Opens a fresh page under the selected node in the navigation tree, which you can fill in to add a new configuration of the selected type. The new page opens as the active page on the right side of the navigation tree.

This is available when you can add a new configuration, for instance, under Server Instances, or a specific Agent type, or a user identity store, or a non-HTTP Resource Type or Host Identifier or Application Domain.

Alternatively, use the Create command on the Actions menu as described in Table 3-6.

Open Command Button in Tool Bar

Open

Opens the selected instance in the navigation tree.

Edit Button

Edit

Opens the instance you have selected in the navigation tree, to view or modify. The configuration page opens as the active page on the right side of the navigation tree.

Alternatively, double click the instance name to display a page for editing.

Delete Button

Delete

Removes the selected configuration. A deleted configuration is removed from the navigation tree and is no longer accessible to the system. For instance, if you delete an Agent configuration, the Agent is no longer registered and cannot be used.

Alternatively, use the Delete command on the Actions menu as described in Table 3-6.

Create Button

Refresh

Revives the navigation tree, in the same way a Web browser refreshes a Web page.

Copy Button

Duplicate

Creates a copy of the selected configuration in the navigation tree, named "copy of original." The copy opens as the active page for immediate editing. Many fields are filled in.

Exception: Fields that make up the unique identifier of the object (for example, Name of the policy or the URL pattern of a resource) are not automatically filled in.

Note: You edit and save the duplicate as usual. The number of characters a supported URL is based on browser version. Ensure that your applications do not use URLs that exceed the length that Oracle Access Manager and the browser can handle.

Detach Button

Detach

Separates the selected item (a results table on a configuration page, for instance) and displays it alone as a full page.

Note: If you are viewing a detached table, you can click this button to re-attach it to the corresponding page and restore the standard page view.


Most commands available as buttons in the tool bar are also available on a menu.

3.4.1.2.3 View Menu

Figure 3-6 illustrates the View menu, which is available for use with both the Policy Configuration and System Configuration tabs.

Unavailable items (those that cannot be used on the selection in the navigation tree) appear in grey. View menu command descriptions are provided in Table 3-5.

Table 3-5 View Menu Command Descriptions

Command Description

Expand

Immediately reveal items within the selected node in the navigation tree. This does not open or activate a configuration page.

Alternatively, click the icon beside the node in the navigation tree.

Collapse

Immediately conceal everything within the selected node in the navigation tree. This does not close an open page.

Alternatively, click the icon beside the node in the navigation tree.

Expand All Below

Immediately reveal everything within the selected node. For example, click Application Domains and then click Expand All Below to see all application domains.

Collapse All Below

Immediately close the selected node and conceal its content. This does not close an open page.

Expand All

Immediately reveal all nodes and instances in the navigation tree. This has no impact on open pages.

Collapse All

Immediately conceal all nodes and instances in the navigation tree. This has no impact on open pages.

Scroll to First Ctrl+Home

Locates and displays the first item in the navigation tree or results table.

Scroll to Last Ctrl+End

Locates and displays the last item in the navigation tree or results table.


3.4.1.2.4 Actions Menu

This menu is available only when the System Configuration tab is active. Figure 3-6 illustrates the Actions menu, which provides appropriate commands for the selected instance in the navigation tree. For example, if you have an identity store instance selected in the navigation tree one of the commands on the Actions menu enables you to open the Common Properties page for viewing or editing.

Certain commands on this menu mirror functions that are available by using command buttons in the tool bar. Unavailable items (those that cannot be used on the selection in the navigation tree) appear in grey. Actions menu command descriptions are provided in Table 3-6.

Table 3-6 System Configuration, Actions Menu, Command Descriptions

Command Description

Open

Opens the configuration page for the selected instance in the navigation tree. This is not available when you have a node selected in the navigation tree.

Alternatively, double-click the instance name in the navigation tree to open a page.

Create

Activates a fresh page that you can fill in to define a new configuration.

Alternatively, click the Create button in the tool bar as described in Table 3-4.

Monitor Menu

Displays the monitoring page for the Agent selected in the navigation tree. For more information, see Chapter 26.

Open common properties

Opens the OAM Server Common Properties page, which provides various functional configurations shared among all OAM Servers. This is available only when a system instance is selected in the navigation tree.

Delete

Removes the selected instance registration. The deleted registration is removed from the navigation tree and is no longer accessible to the system. For instance, if you delete an agent registration, the Agent is no longer registered and cannot be used.

Alternatively, click the Delete button in the tool bar as described in Table 3-4.


3.4.1.3 Content Pages and Page Controls

Like the Welcome page, any open content pages appear on the right side of the console.

The active content page is visible and generally provides a work space where you can add, view, or modify related settings. A named tab identifies each open page, like the tabs on manila folders. The tab of the active page is white.

Up to ten pages can be open simultaneously per configuration tab: Policy Configuration tab or System Configuration tab. Only the named tabs of opened pages for the currently active configuration tab are shown.

Only the active page is visible, with as many named tabs of other open pages that can fit on one line. You can click a named tab to activate the corresponding page. When named tabs of open pages do not fit on one line, a pointer is provided that enables you to open and choose from a list of concealed pages. Figure 3-8 illustrates multiple pages open at the same time. You can see named tabs for each page and controls to access pages that are concealed (or to close the active page or close multiple pages).

Figure 3-8 Tabs of Open Pages, and Page Controls

Tabs of Open Pages and Page Controls
Description of "Figure 3-8 Tabs of Open Pages, and Page Controls"

Each page appears only once. No warning is issued if you attempt to open the same page multiple times. However, the page is only one time.

Note:

There is no warning if you open the page for the same item more than once.

The controls that you can use with open pages are described in Table 3-7.

Table 3-7 Controls for Open Pages

Page Control Definition Description
View List of Concealed Pages Button

View a list of concealed pages

Click the pointer to view the list of concealed pages when you cannot view all tabs simultaneously.

Close Active Page Button

Close Active Page

Click this button to close the active page.

Note: Closing a page before clicking Apply discards any changes or additions without warning. The changes are lost. You can use this to cancel changes you do not want to retain.

Close Multiple Pages Button

Close Multiple Pages

  • Click this button to initiate closing multiple open pages.

  • In the dialog box that appears, click the box beside the name of each page you want to close.

  • Click OK to complete the action.

Note: Closing a page before clicking Apply discards any changes or additions without warning. The changes are lost. You can use this to cancel changes you do not want to retain.


3.4.2 Elements on a Page

Pages in the console contain one or more graphical user interface elements as described in Table 3-8. For an example of each element n the console, see Figure 3-8 or log into the console and have a look.

Table 3-8 Page Elements and Descriptions

Page Element Description

Named tab

Identifies each open page on the right side of the console. Also, displays a page of related, lower-level settings. See Figure 3-2 for an example.

Page controls

Enables you to close one or more pages. See Table 3-7.

Apply button

Submits changes or additions made to the page.

Named text box

Enables you to enter relevant details in the named field using the keyboard.

Option button

Enables you to choose one of several options. For example, you can click an option button to define a state (Enabled vs. Disabled) or a security mode (Open vs. Simple vs. Cert).

Tables

Displays current specifications or space for new specifications. Tables have independent command buttons independent from page-level and option buttons.

Command buttons for tables

Surrounding text describes oam_button_add.gif. Surrounding text describes oam_button_delete.gif.

Enables you to:

Add a fresh row or definition to the table.

Remove the selected row or definition from the table.

Drop down lists

Provides a menu of choices on certain pages (and as part of the Search controls). You can choose one item from those listed.


3.4.3 Selecting Controls in the Console

This section describes how to select the desired node or instance in the navigation tree, and selecting commands and page controls in the console. The usual selection guidelines apply.

Table 3-9 describes selections and controls.

Table 3-9 Selection Tasks and Controls

Task Control Description

Expand a node

Surrounding text describes expand_2.gif.

Click the Expand button (>) beside the desired node in the navigation tree to reveal nodes or instances within it.

Collapse a node

Surrounding text describes collapse_2.gif.

Click the Collapse button (V)beside the desired node in the navigation tree to conceal nodes or instances beneath it.

Display View menu

Right-click mouse button

Right-click the desired node in the navigation tree to display a pop-up View menu.

Activate

Click mouse button

Click to activate the desired:

  • Function tab: System Configuration, Policy Configuration, Browse, Search

  • Named tab on a page to reveal related lower-level settings to view or modify: Resources and Responses, for instance.

  • Named Page tab to reveal (activate) the page

  • Text field to enter information on a page

  • Page Control (close or close all buttons as described in Table 3-7)

Open

Double click mouse button

or the Open Folder icon

Double-click an instance name to open the configuration page. For example, double-click a specific:

  • Resource Type name

  • Host Identifier definition name

  • Authentication scheme name

  • Resource name in an application domain

  • Authentication policy name in an application domain

  • Authorization policy name in an application domain

  • Agent instance name

  • Server instance name

  • User identity store instance name

  • Database instance name

  • Authentication module name

  • System utility name

Highlight

Drag cursor

Drag the cursor across text in a box to highlight its content.

Select

Click mouse button

Click the desired item on which to operate. For example, click the desired:

  • Icon, node, or instance name in the navigation tree (Shared Components is one example)

  • Search Button: Initiates a search based on specified criteria

  • Menu name and command to take action on the selected item in the navigation tree

  • Command button to take immediate action:

    Menu and tool bar buttons (Table 3-4)

    Close page buttons (Table 3-7)

  • Command Button on a Page or Table:

    Apply: Submits additions and changes on the active page.

    Table or section buttons (Table 3-8)

    Surrounding text describes oam_button_add.gif.

    Add a new row.

    Surrounding text describes oam_button_delete.gif.

    Remove the selected row.

  • Links: Help, and Sign Out are examples


3.5 Introduction to Policy Configuration and System Configuration Tabs

This section provides a quick tour to orient you to major Oracle Access Manager functions:

3.5.1 About the System Configuration Tab

In the Oracle Access Manager Console, the white tab is active. This section describes the System Configuration tab, which provides three independent sections:

  • Common Configuration

  • Access Manager Settings

  • Security Token Services

Each section can be viewed and used independently because each section provides an independent menu and tool bar above the related navigation tree.

The Actions menu is available only with the System Configuration tab; the View menu is always available. The active page appears on the right. Figure 3-9 shows the System Configuration tab in both fully collapsed and fully expanded form.

Figure 3-9 System Configuration Tab (Collapsed and Fully Expanded)

System Configuration Tab and Navigation Tree
Description of "Figure 3-9 System Configuration Tab (Collapsed and Fully Expanded)"

For more information about system configuration, see:

3.5.2 About the Policy Configuration Tab

The Policy Configuration tab in the Oracle Access Manager Console gives administrators access to authentication and authorization policies and shared SSO components.

The Browse subtab provides a view of the navigation tree. The Search subtab provides a view of your search results for policy elements.

The view in Figure 3-10 lists first-level items beneath Shared Components and Authentication Schemes.

Figure 3-10 Policy Configuration, Shared Components, Collapsed Application Domains

Policy Configuration Tab with Categories
Description of "Figure 3-10 Policy Configuration, Shared Components, Collapsed Application Domains"

Table 3-10 describes the Policy Configuration subtabs.

Table 3-10 Policy Configuration Subtabs

Subtab Description

Browse

Welcome Page, Other Section

On the Policy Configuration tab, the Browse subtab displays the navigation tree from which you can access nodes and instances related to the active configuration tab (Policy or System). This tab is active when you enter the Console.

Search Results

Welcome Page, Other Section

On the Policy Configuration tab, the Search subtab provides access to the results of your latest search. Search controls appear above the Browse and Search Results tabs.

For more information, see "Conducting Searches Using the Console".


See "Console Layout and Controls" for details on navigating and selecting command buttons, page controls, and menu items in the console.

You can also use commands on the View menu to expand the selected node in the navigation tree or to expand all nodes simultaneously. For instance, click Expand All from the View menu to see all nodes and related instances at one time.

3.6 Viewing Configuration Details in the Console

Administrators can view configuration details of individual agents, servers instances, data sources, shared components, and application domains from the Oracle Access Manager Console.

In this example, you will view configuration details for an OAM Agent (Webgate). However, you can use similar steps to view configuration details for server instances, data sources, application domains, or shared components.

Alternatively, you can use custom WLST commands for OAM to view agent and server details.

To view configuration details using the console

  1. Go to the Oracle Access Manager Console and log in as usual. For example:

    https://hostname:port/oamconsole
    

    In the sample URL, hostname refers to computer that hosts the Oracle Access Manager Console; port refers to the HTTP port number on which the console host listens; /oamconsole identifies the Oracle Access Manager Console.

  2. System Configuration:

    1. Click the System Configuration tab.

    2. In the navigation tree, click the desired section name from those listed:


      Common Configuration
      Access Manager Settings
      Security Token Service Settings
    3. Expand: Click the expansion icon besided the desired node (or from the View menu, click Expand All).

    4. Open Instance: Double click the desired instance name to view its configuration.

  3. Policy Configuration:

    1. Click the Policy Configuration tab (available when you enter the console by default).

    2. Expand: Click the expansion icon besided the desired node (or from the View menu, click Expand All).

    3. Open Instance: Double click the desired instance name to view its configuration.

  4. View the page and note any specific details of interest.

  5. Close the page by clicking the X control in the upper-right corner.

3.7 Conducting Searches Using the Console

The Oracle Access Manager Console provides separate search controls for policy elements versus system instances (agents, for instance). This section describes only policy configuration search controls.

3.7.1 Conducting Policy Element Searches Using the Console

This section provides the following topics:

3.7.1.1 About Policy Configuration Search Controls

When searching for a policy configuration element, you can use a wild card in the search string if you do not know the exact name of the item you are trying to locate. From the search results table, you can choose an item to open and view or edit.

Note:

You can use a wildcard (*) character if you do not know the exact name you seek. However, capitalization in your search criteria must match capitalization of the item you seek.

You cannot save your policy configuration search criteria. When you select the System Configuration tab and return to the Policy Configuration tab, the search field and results table are empty.

Policy Configuration search controls are shown and described in Table 3-11.

Table 3-11 Policy Configuration Search Controls

Search Control Description
Search Category List

From the Policy Configuration Search menu, choose an item to define your search or simply select All (the default).

Search Criteria Field and Search Button

In the text field, enter the name of the instance you want to find (or enter a partial name with a wild card (*) in the search string).

Click the Search button to initiate the operation.

Search Tab for Results

Click the Search subtab to reveal the results of your search.

Double-click a name in the results table to open the item to view or edit.

Alternatively, click a name in the results table and then click a command button in the tool bar.

Click Detach in the tool bar to expand the table to a full page.

Select a View menu item to alter the appearance of the results table.

Note: Clicking the System Configuration tab clears the Policy Configuration search field and results table.


3.7.1.2 Searching for Policy Elements

This topic describes how to perform a search for a policy element using the Oracle Access Manager Console.

Note:

Wild cards (*) are allowed in the search string.

In thfollowing example, a search is conducted for a specific host identifier.

To search for a policy element

  1. Activate the Policy Configuration tab.

  2. From the search type list, choose a type to define your search. For example:

    Host Identifiers
    
  3. In the text field, enter the name of the instance you want to find (or partial name with wild card). For example:

    my*
    
  4. Click the Search button to initiate the operation.

  5. From the Search Results tab, click a name in the results table and then:

    • Edit: Click the Edit command button in the tool bar to display the configuration page.

    • Delete: Click the Delete button in the tool bar to remove the instance; confirm removal when the Confirmation window appears.

    • Detach: Click Detach in the tool bar to expand the table to a full page.

    • View: Select a View menu item to alter the appearance of the results table.

  6. Click the Browse tab to return to the navigation tree when you finish.

3.7.2 Refining Searches for System Configuration Elements

This section introduces some of the search controls you will encounter as you create or manage various System Configuration elements using the Oracle Access Manager Console:

  • OAM Agents

  • OSSO Agents

  • STS Templates

  • STS Partners

  • STS Profiles

Table 3-12 describes the common controls available to refine a such a search. Though the type of control is common, actul selections in lists will apply to the specifi item you are seeking.

See Also:

Individual search topics that appear with related component management topics this guide.

Table 3-12 Common System Configuration Search Controls

Element Description

Match

Choose All to search for a template that matches all your specifications.

Choose Any to search for a template that matches at least one of your specifications.

Search Operations List

A list of operations from which you choose one to help refine your search.

Surrounding text describes search_operations.gif.

Description

Refine your search using the optional description field.

Search

Initiates the Search function using criteria in the form.

Reset

Resets the Search form with defaults only.

Add Fields

Shown: For STS Templates

A list of additional items you can add as search criteria. This is not available for all components.

Search Results Table

Itemizes the results of your search based on the component you were searching for and the choices in the View menu, described later in this table.

Actions menu

Shown: Actions for Validation Template

Provides the following functions that can be performed on a selection in the results table:

Validation Template Search Actions Menu

Note: Actions menu functions mirror command buttons above the results table. For example:

  • New ... Template: Click the New ... Template button at the top of the Search page, or select New ... Template from the menu, or click the + button above the table.

  • Edit: Click a name in the Results Table, or select Edit from the Actions menu, or click the Edit (pencil) command button above the Results Table.

  • Create Like: Select the desired row in the table and either select Create Like from the Actions menu, or click the Create Like command button above the table

  • Remove: Select the desired row in the Results Table and either select Delete from the Actions menu, or click the Delete (X) command button above the table.

View menu

A list from which you can identify which information to display in the results table.

Ascending or Descending Order Controls

Controls you can choose to define the order of items listed in the results table:

  • Ascending

  • Descending


To refine your search for a System Configuration target

  1. Activate the System Configuration tab and expand the desired section:

    • Common Configuration

    • Access Manager Settings

    • Security Token Service Settings

  2. Within the section, expand the desired node, and open the terminal node to display the Search page.

  3. Search: Choose the desired controls and enter your search criteria, then click the Search button.

  4. In the Search Results table:

    • Edit or View: Click the Edit command button in the tool bar to display the editable configuration page.

    • Delete: Click the Delete (X) button above the table to remove the instance; confirm removal in the Confirmation window.

    • Detach: Click Detach in the tool bar to expand the table to a full page.

    • Reconfigure Table: Select a View menu item (Table 3-12) to alter the appearance of the results table.

  5. Apply any changes (or dismiss the page) when you finish.

3.8 Using Online Help

At any time while using the Oracle Access Manager Console, you can click the Help link at the top of the page to get more information. Online Help topics link to information in an online version of this book.

Online Help topics link to information in an online version of this book. Online Help procedures provide a brief introduction, followed by the procedure itself.

Generally speaking, topics that are displayed by selecting Help in the Oracle Access Manager Console appear in only English and Japanese languages. Online Help is not translated into the nine ADMIN languages.

You can click the Welcome tab to display a list of topics that describe actions you can take. For specific help topics, use the following procedure.

To locate a specific help topic

  1. From the Oracle Access Manager Console, click a tab or named node in the navigation tree.

  2. Click Help in the upper-right corner of the console.

  3. Review the page that appears in a new window and select one of the following links to:

    • More—Click this link to view more information.

    • How?—Click this link to see steps to perform a task related to your help search.

    • Contents—In the left Help pane, expand Contents to see all help topics as well as all topics in the online manual.

    • Search—Displays a search window where you can enter your help search criteria.

  4. Click the following buttons, as needed:

    • View—Displays a set of viewing options.

    • Arrows—Return to the previous page or go forward to the next page.

    • Printer Icon—Prints the page.

    • Envelope Icon—Emails the page.

3.9 Command-Line Tools

Several command-line tools are available to perform various tasks using the keyboard rather than the console. After using these commands, configurations will be available in the console:

3.10 Logging, Auditing, Monitoring Performance

You can use the logging mechanism to capture critical Oracle Access Manager 11g component events. Logging is the mechanism by which Oracle Access Manager 11g components write messages to a file. These messages can be logged at different levels of granularity.

In Oracle Access Manager, Oracle Security Token Service, and Oracle Fusion Middleware, auditing provides a measure of accountability and answers to the "who has done what and when" types of questions.

Oracle Access Manager uses the Oracle Dynamic Monitoring Systems (DMS) to measure application-specific performance information for OAM Servers and registered OAM Agents.

Administrators can monitor performance and log messages for Oracle Access Manager and Oracle Security Token Service using Oracle Fusion Middleware Control.

For more information, see Part VI, "Common Logging, Auditing, Performance Monitoring".