Skip Headers
Oracle® Fusion Middleware Developer's Guide for Oracle Adaptive Access Manager
11g Release 1 (11.1.1)

Part Number E15480-08
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
PDF · Mobi · ePub

18 Handling Lifecycle Management Changes

Because of integrated deployment of Oracle Adaptive Access Manager with other applications, Oracle Virtual Directory, Oracle Identity Manager, Oracle Access Manager, Oracle Internet Directory, and configuration changes in those applications, various configuration changes might be required in Oracle Adaptive Access Manager. Instructions for handling such types of configuration changes are described in this chapter:

References are also provided for moving Oracle Adaptive Access Manager from a test environment to a production environment:

18.1 Oracle Virtual Directory (OVD) Host, Port, and SSL Enablement Changes

To change the Oracle Virtual Directory host, port, and SSL enablement:

  1. Start the Oracle Adaptive Access Manager server-related managed server.

  2. Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin.

  3. Log in as a user with access to the Properties Editor.

  4. Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:

    • Change the password authentication provider to LDAP

    • Rewire existing Oracle Adaptive Access Manager for Oracle Virtual Directory hostname

    • Rewire existing Oracle Adaptive Access Manager for Oracle Virtual Directory port changes

    • Rewire existing Oracle Adaptive Access Manager for SSL Enablement of Oracle Virtual Directory (Change Plain Text Communication to SSL for wiring between Oracle Adaptive Access Manager and Oracle Virtual Directory)

    Table 18-1 Configuring Oracle Directory Manager Property Values

    Property Name Property Values

    bharosa.uio.default.password.auth.provider.classname

    com.bharosa.vcrypt.services.LDAPOAAMAuthProvider

    oaam.uio.ldap.host

    <OVD host>

    For example, host.oracle.com

    oaam.uio.ldap.port

    <OVD port>

    oaam.uio.ldap.userdn.template

    <User Search DN>

    For example, uid= {USER_ID}, cn=user,dc=us,dc=oracle,dc=com.

    oaam.uio.ldap.isSSL

    false


    For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.

  5. Restart the Oracle Adaptive Access Manager server-related managed server.

18.2 Oracle Identity Manager (OIM) URL Changes

Follow these steps to rewire an existing deployment of Oracle Adaptive Access Manager with Oracle Identity Manager:

  1. Start the Oracle Adaptive Access Manager server-related managed server.

  2. Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin.

  3. Log in as a user with access to the Properties Editor.

  4. Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:

    • Rewire existing Oracle Adaptive Access Manager for password flow

    • Rewire existing Oracle Adaptive Access Manager for other redirection

    Table 18-2 Configuring Oracle Identity Manager Property Values

    Property Name Property Values

    oaam.oim.url

    t3://<OIM Managed Server>:<OIM Managed Port>

    For example, t3://host.oracle.com:14000

    bharosa.uio.default.signon.links.enum.selfregistration.url

    http://<OIM Managed Server>:<OIM Managed Port>/oim/faces/pages/USelf.jspx?E_TYPE=USELF&OP_TYPE=SELF_REGISTRATION&backUrl=<OAAM Login URL for OIM>

    where <OAAM Login URL for OIM> is http://<OHS host>:<OHS port>/oim/faces/pages/Self.jspx or (in case of IDMDOMAINAgent ) is http://<OIM host>:<OIMport>/oim/faces/pages/Self.jspx

    OHS setup was performed during the integration between Oracle Access Manager and Oracle Identity Manager.

    bharosa.uio.default.signon.links.enum.trackregistration.url

    http://<OIM Managed Server>:<OIM Managed Port>/oim/faces/pages/USelf.jspx?E_TYPE=USELF&OP_TYPE=UNAUTH_TRACK_REQUEST&backUrl=<OAAM Login URL for OIM>

    where <OAAM Login URL for OIM> is http://<OHS host>:<OHS port>/oim/faces/pages/Self.jspx or (in case of IDMDOMAINAgent ) is http://<OIM host>:<OIMport>/oim/faces/pages/Self.jspx.

    OHS setup was performed during the integration between Oracle Access Manager and Oracle Identity Manager.


    For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.

  5. Restart the Oracle Adaptive Access Manager server-related managed server.

18.3 Oracle Access Manager (OAM) Host and Port Changes

For information on rewiring Oracle Access Manager for Oracle Adaptive Access Manager hostname and port changes, refer to the Oracle Fusion Middleware Administrator's Guide for Oracle Access Manager with Oracle Security Token Service.

18.4 Oracle Internet Directory (OID) Host and Port Changes and SSL Enablement

Follow these steps to change the Oracle Internet Directory Host, Port and SSL enablement in an existing deployment of Oracle Adaptive Access Manager:

  1. Start the Oracle Adaptive Access Manager server-related managed server.

  2. Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin.

  3. Log in as a user with access to the Properties Editor.

  4. Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:

    • Change the password authentication provider to LDAP

    • Rewire existing Oracle Adaptive Access Manager for Oracle Internet Directory hostname

    • Rewire existing Oracle Adaptive Access Manager for Oracle Internet Directory port changes

    • Rewire existing Oracle Adaptive Access Manager for SSL Enablement of Oracle Internet Directory (Change Plain Text Communication to SSL for wiring between Oracle Adaptive Access Manager and Oracle Internet Directory)

    Table 18-3 Configuring Oracle Directory Manager Property Values

    Property Name Property Values

    bharosa.uio.default.password.auth.provider.classname

    com.bharosa.vcrypt.services.LDAPOAAMAuthProvider

    oaam.uio.ldap.host

    <OID host>

    For example, host.oracle.com

    oaam.uio.ldap.port

    <OID port>

    oaam.uio.ldap.userdn.template

    <User Search DN>

    For example, uid= {USER_ID}, cn=user,dc=us,dc=oracle,dc=com.

    oaam.uio.ldap.isSSL

    false


    For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.

  5. Restart the Oracle Adaptive Access Manager server-related managed server.

18.5 Database Host and Port Changes

After installing Oracle Adaptive Access Manager, if there are any changes in the database host or port number, follow these instructions:

  1. Go to the ORACLE_HOME of the database.

  2. Change the port number in ORACLE_HOME /network/admin/listener.ora.

  3. Stop and then restart the Oracle listener.

  4. Change the database pointer in the data sources screen in the Weblogic Administration Console

To changes the data source:

  1. In the WebLogic Administrative Console, navigate to Services, select JDBC, select Data Sources, and then oaamDS.

  2. Click oaamDS and edit it for hostname/port or user name/password.

18.6 Moving Oracle Adaptive Access Manager to a New Production Environment

For information on moving Oracle Adaptive Access Manager to a new production environment, see "Moving Identity Management to a New Production Environment" in Oracle Fusion Middleware Administrator's Guide.

18.7 Moving Oracle Adaptive Access Manager to an Existing Production Environment

For information on moving Oracle Adaptive Access Manager to an existing production environment, see " Moving Identity Management to an Existing Production Environment" in Oracle Fusion Middleware Administrator's Guide.