20.4 OAPM in a New WebLogic Domain

This topic describes how to configure Oracle Authorization Policy Manager (OAPM) in a new WebLogic domain. It includes the following sections:

• Appropriate Deployment Environment

• Components Deployed

• Dependencies

• Procedure

20.4.1 Appropriate Deployment Environment

Perform the configuration in this topic if you want to install Oracle Authorization Policy Manager in an environment where you may install Oracle Identity Manager, Oracle Access Manager, Oracle Identity Navigator, or Oracle Adaptive Access Manager at a later stage in the same domain.

20.4.2 Components Deployed

Performing the configuration in this section deploys the following:

• WebLogic Administration Server

• Oracle Authorization Policy Manager application on the Administration Server

20.4.3 Dependencies

The configuration in this section depends on the following:

• Oracle WebLogic Server.

• Installation of the Oracle Identity Management 11g software.

• Database schema for Oracle Authorization Policy Manager and Metadata Services (MDS). For more information about schemas specific to Oracle Authorization Policy Manager, see Creating Database Schema Using the Repository Creation Utility (RCU).

20.4.4 Procedure

Perform the following steps to configure Oracle Authorization Policy Manager in a new WebLogic domain:

1. Ensure that all the prerequisites, listed in Prerequisites, are satisfied. In addition, see Important Notes Before You Begin.

2. Run the <Oracle_IDM2>/common/bin/config.sh script (on UNIX). (<Oracle_IDM2>\common\bin\config.cmd on Windows). The Oracle Fusion Middleware Configuration Wizard appears.

3. On the Welcome screen, select the Create a new WebLogic domain option. Click Next. The Select Domain Source screen appears.

4. On the Select Domain Source screen, ensure that the Generate a domain configured automatically to support the following products: option is selected.

   Select the Oracle Application Authorization Policy Manager - 11.1.1.3.0 [Oracle_IDM2] option. When you select this option, the Oracle JRF 11.1.1.0 [oracle_common] option is also selected, by default. For association with Enterprise Manager at a later stage, select the Oracle Enterprise Manager - 11.1.1.3.0 [oracle_common] template. Click Next. The Select Domain Name and Location screen appears.

5. Enter a name and a location for the domain to be created, and click Next. The Configure Administrator User Name and Password screen appears.

6. Configure a user name and a password for the administrator. The default user name is weblogic. Click Next.

7. Choose JRockit SDK 160_17_R28.0.0-679 and Production Mode in the Configure Server Start Mode and JDK screen of the Oracle Fusion Middleware Configuration Wizard. Click Next. The Configure JDBC Component Schema screen is displayed.

8. On the Configure JDBC Component Schema screen, select a component schema, such as the APM MDS Schema or the APM Schema that you want to modify. You can set values for Schema Owner, Schema Password, Database and Service, Host Name, and Port. Click Next. The Test JDBC Component Schema screen appears. After the test succeeds, the Select Optional Configuration screen appears.

9. On the Select Optional Configuration screen, you can configure the Administration Server, Managed Servers, Clusters, Machines, Deployments and Services, and RDBMS Security Store. Select the relevant check boxes and click Next.

   • Optional: Configure the following Administration Server parameters:

     • Name

     • Listen Address

     • Listen Port

     • SSL Listen Port

     • SSL Enabled

   • Optional: Add and configure Managed Servers, as required. Note that Oracle Authorization Policy Manager does not require a Managed Server because the application is deployed on the WebLogic Administration Server.

   • Optional: Configure Clusters, as required.

     For more information about configuring clusters for Oracle Identity Management products, see the "Configuring High Availability for Identity Management Components" topic in the guide Oracle Fusion Middleware High Availability Guide.

   • Optional: Assign Managed Servers to Clusters, as required.

   • Optional: Configure Machines, as needed. This step is useful when you want to run the Administration Server on one machine and Managed Servers on another physical machine.

     Tip:

     Before configuring a machine, use the ping command to verify whether the machine or host name is accessible.

   • Optional: Assign the Administration Server to a machine.

   • Optional: Select Deployments, such as applications and libraries, and Services to target them to a particular cluster or server.

   • Optional: Configure RDBMS Security Store Database, as required.

10. On the Configuration Summary screen, review the domain configuration, and click Create to start creating the domain.

A new WebLogic domain to support Oracle Authorization Policy Manager is created in the <Middleware_Home>\user_projects\domains directory (on Windows). On UNIX, the domain is created in the <Middleware_Home>/user_projects/domains directory.