| Oracle® Role Manager Installation Guide Release 10g (10.1.4.2) Part Number E14608-04 |
|
|
View PDF |
| Oracle® Role Manager Installation Guide Release 10g (10.1.4.2) Part Number E14608-04 |
|
|
View PDF |
This chapter provides the information about the following sections:
The standard Roles contains objects and attributes that are listed in the standard data model, which are required for the Web application of Oracle Role Manager to function as designed. See Table A-1 in the Appendix of Oracle Role Manager User's Guide for a complete list of objects available in the standard data model of Oracle Role Manager.
To load standard roles:
If the application server on with Role Manager is deployed is not already running, start it.
In a Web browser, go to the Role Manager Administrative Console. For example, by default:
JBoss: http://<host>:8080/ormconsole
WebSphere: http://<host>:9080/ormconsole
WebLogic: http://<host>:9001/ormconsole
Type user name and password of the Role Manager Administrator previously defined in "Installing Role Manager", and then click Log In.
Click Upload.
Click Browse.
Navigate to select the standard_roles.dar file found in ORM_HOME/samples/sample_data.
Click Load.
Click refresh until you see that all processes are finalized.
The sample data contains sample roles and role definitions, persons, and organizations. See Chapter 3, "Working with System Roles" of Oracle Role Manager User's Guide for more information about predefined system roles in the sample data.
To load standard and sample data:
If the application server on with Role Manager is deployed is not already running, start it.
In a Web browser, go to the Role Manager Administrative Console. For example, by default:
JBoss: http://<host>:8080/ormconsole
WebSphere: http://<host>:9080/ormconsole
WebLogic: http://<host>:9001/ormconsole
Type user name and password of the Role Manager Administrator previously defined in "Installing Role Manager", and then click Log In.
Click Upload.
Click Browse.
Navigate to select the sample_data.dar file found in ORM_HOME/samples/sample_data.
Click Load.
Click refresh until you see that all processes are finalized.
Once the data load processes display as being finalized, you can go back to the Role Manager Web application and check the sample data.
Loading the sample data can take several minutes. While data is being loaded, you can click refresh to monitor progress.
If you change the standard configuration or standard data model, you need to run a command to deploy your customizations to the database and then load the standard and the sample data.
This procedure assumes you have already completed the following steps:
A database instance has been created for Role Manager with the appropriate tablespaces. (Refer to "Database Setup".)
The Role Manager database owner and application user schemas have been created and contain no data. (Refer to "Creating the Role Manager Users".)
The database is accessible and the service on which Role Manager is installed is started.
To deploy model and configuration customizations:
If you have any custom configuration or data model customizations, create an archive file containing your customizations and append the file name with .car. For more information about custom configuration, refer to Oracle Role Manager Administrator's Guide and for more information about data model customization, refer to Oracle Role Manager Developer's Guide.
In ORM_HOME/config, if it does not exist, create a file named db.properties that contains the following two lines:
db.driverClass=oracle.jdbc.driver.OracleDriver db.connection_string=jdbc:oracle:thin:@$HOST$:$PORT$:$SERVICE_NAME$
where:
$HOST$ is the database host name
$PORT$ is the database listener port
$SERVICE_NAME$ is the database instance on which the Role Manager users were created
In a command window, navigate to ORM_HOME/bin.
Run the following command to deploy the configuration and data model and create the Role Manager Administrator:
If you have no Integration Library (IL) customizations:
deploy.bat "../config/oim_integration.car" orm-owner ormapp-user admin-user
where:
orm-owner is the user name of the Oracle Role Manager database owner user/schema
ormapp-user is the user name of the Oracle Role Manager application user/schema
admin-user is the user name of the Oracle Role Manager system administrator
If you have IL customizations:
deploy.bat "<collection_of_cars>" <orm-owner> <ormapp-user> <admin-user>
where:
<collection_of_cars> contains the relative paths and file names of all CAR files to deploy.
For example, in a customized deployment, the collection of CAR files on a UNIX-based system might be similar to:
"../config/configurations_custom.car:../config/oim_integration_custom.car"
orm-owner is the user name of the Oracle Role Manager database owner user/schema
ormapp-user is the user name of the Oracle Role Manager application user/schema
admin-user is the user name of the Oracle Role Manager system administrator
Note:
The collection must be enclosed within double quotation marks. The delimiters to be used are:For Windows systems, use semicolon (;)
For UNIX-based systems, use a colon (:)
By default standard.car and configurations.car are part of initial deployment and if you have any customizations for these files, then you need to re-deploy customized files.
The first deployment must include the configuration.car* file. If you require the standard data model, for example, if you want to use the out-of-the-box web UI and/or the sample data, you must also include the standard.car file.
Note:
The default configuration.car file gives all privileges from the standard data model to the system administrator system role. If you want to start with a more hardened security policy, you must use the configuration_hardened.car file. You can use the hardened configuration and then decide to give privileges set in the default configuration.car file to the system administrator system role. To do so, you can either use the web UI or load the privilege mappings using the admin_systemrole_privilege_mapping.dar file.<orm-owner> is the username of the Role Manager database owner user created in "Creating the Role Manager Users"
<ormapp-user> is the username of the Role Manager application user created in "Creating the Role Manager Users"
<admin-user> is the username for the Role Manager Administrator to create.
At the prompt, type the password of the Role Manager database owner.
At the prompt, type the password of the Role Manager application user.
At the prompt, type the password for the new Role Manager Administrator account.
Note:
After deploying the data model and configuration, you must load the sample and the standard data. Refer to "Loading Sample Data" for instructions.By default the largest DAR file you can load is 10MB, loading a larger file results in an error. You can configure the maximum DAR file size using the following instructions.
To configure the DAR file size:
Edit the config file:
For UNIX-based systems:
JBOSS_HOME/bin/run.sh
For Windows systems:
JBOSS_HOME\bin\run.bat
Add the following argument to JAVA_OPTS:
-Doracle.iam.rm.loader.max_upload_size=<new_value>
|
 Copyright © 2010, Oracle and/or its affiliates. All rights reserved. Legal Notices |
|