Skip Headers
Oracle® Access Manager Installation Guide
10
g
(10.1.4.3)
E12493-02
Home
Book List
Index
Contact Us
Next
Contents
List of Examples
List of Figures
List of Tables
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Conventions
What's New in Oracle Access Manager
Product and Component Name Changes
Enhancements Available in 10
g
(10.1.4.3)
Updates to Specific Chapters with 10
g
(10.1.4.2.0)
New Features in Oracle Access Manager 10
g
(10.1.4.0.1)
Part I Installation Planning and Prerequisites
1
About the Installation Task, Options, and Methods
1.1
About Installation Packages, Patch Sets, Bundle Patches, and Newly Certified Agents
1.1.1
Full Installers
1.1.1.1
Packages for Upgrading
1.1.2
Patch Sets
1.1.3
Bundle Patches
1.1.4
Newly Certified Agent Packages
1.2
About the Installation Task
1.3
Installation Options
1.3.1
Updating the Schema and Attributes Automatically Versus Manually
1.3.2
Replicating an Installed Oracle Access Manager Component
1.3.2.1
Silent Mode
1.3.2.2
Cloning and Synchronizing Installed Components
1.3.3
Upgrading an Earlier Release
1.4
Installation Methods
1.4.1
GUI Method
1.4.2
Console Method
2
Preparing for Installation
2.1
About Installation Prerequisites
2.2
Synchronizing System Clocks
2.2.1
About the Network Time Protocol
2.2.1.1
On UNIX Systems
2.2.1.2
On Windows Systems
2.3
Meeting Oracle Access Manager Requirements
2.3.1
General Guidelines
2.3.2
Preparing Linux and Solaris Host Computers
2.3.3
Preparing Windows for the .NET Runtime
2.3.4
Identity System Guidelines
2.3.5
Access System Guidelines
2.3.5.1
Policy Manager Guidelines
2.3.5.2
Access Server Guidelines
2.3.5.3
WebGate Guidelines
2.3.6
Assessing Disk Space Requirements
2.3.7
Choosing an Installation Directory
2.3.8
Securing Oracle Access Manager Component Communications
2.3.8.1
Transport Security Guidelines
2.3.8.2
Open Mode
2.3.8.3
Simple Mode
2.3.8.4
Cert Mode
2.3.8.5
Mixed-Mode Communication for Cache Flush Operations
2.4
Meeting Web Server Requirements
2.4.1
Web Server-Specific Packages
2.4.2
General Considerations for Web Servers
2.5
Meeting Directory Server Requirements
2.5.1
Assigning a Bind DN
2.5.2
Assessing Directory Server Space
2.5.3
Securing Directory Server Communications
2.5.3.1
Guidelines
2.5.3.2
Caveats
2.5.4
Data Storage Requirements
2.5.5
User Data and the Searchbase
2.5.6
Configuration Data and the Configuration DN
2.5.7
Policy Data and the Policy base
2.5.8
About Person and Group Object Classes
2.6
Confirming Certification Requirements
2.7
Obtaining the Latest Installers, Patch Set, Bundle Patch, and Certified Agents
2.7.1
Obtaining the Latest Installers
2.7.2
Obtaining the Latest Patch Set
2.7.3
Obtaining the Latest Bundle Patch
2.7.4
Obtaining the Latest Certified Agent Packages
2.8
Preparing a Temporary Directory for Installers
2.9
Uninstalling Oracle Access Manager Components
2.10
Installation Preparation Checklists
3
About Multi-Language Environments
3.1
About Installing in Multi-Language Environments
3.2
Setting Environment Variables for Command-Line Tools (Optional)
3.2.1
Setting NLS_LANG and COREID_NLS_LANG on Windows Systems
3.2.2
Setting NLS_LANG and COREID_NLS_LANG on UNIX Systems
3.3
Installing with Language Packs
3.4
Directory Structure
3.4.1
Language Directories
3.5
Removing Language Packs
Part II Identity System Installation and Setup
4
Installing the Identity Server
4.1
About the Identity Server and Installation
4.1.1
The Identity Server and the Software Developer Kit
4.1.2
About Installing Multiple Identity Servers
4.1.3
Adding a New Identity Server to an Upgraded Environment
4.2
Identity Server Prerequisites Checklist
4.3
Installing the Identity Server
4.3.1
Starting the Installation
4.3.2
Installing the Identity Server
4.3.3
Specifying a Transport Security Mode
4.3.4
Specifying Identity Server Configuration Details
4.3.5
Defining Communication Details
4.3.6
Defining Directory Server Details
4.3.6.1
Installing the First Identity Server
4.3.6.2
Installing Additional Identity Servers on Windows
4.3.7
Finishing the Identity Server Installation
4.4
Tuning for Oracle Internet Directory
5
Installing WebPass
5.1
About WebPass and Installation
5.1.1
About Installing Multiple WebPass Instances
5.2
WebPass Prerequisites Checklist
5.3
Installing the WebPass
5.3.1
Starting the Installation
5.3.2
Specifying a Transport Security Mode
5.3.3
Specifying WebPass Configuration Details
5.3.4
Updating the WebPass Web Server Configuration
5.3.5
Finishing the WebPass Installation
5.4
Manually Configuring Your Web Server
5.5
Establishing Communication with the Identity Server
5.6
Confirming WebPass Installation
6
Setting Up the Identity System
6.1
About Setting Up the Identity System
6.2
Identity System Setup Considerations
6.3
Identity System Setup Prerequisites Checklist
6.4
Setting up the Identity System
6.4.1
Starting the Setup Process
6.4.2
Specifying Directory Server and Data Location Details
6.4.3
Specifying Object Class Details
6.4.3.1
About Oracle Access Manager Object Classes
6.4.3.2
Specifying Person and Group Object Classes
6.4.4
Confirming Object Class Changes
6.4.5
Configuring Master Administrators
6.4.6
Completing Identity System Setup
6.5
Configuring Attributes Manually
6.5.1
Novell Directory Server Considerations
6.5.2
Configuring or Refining Attributes
6.6
Setting Up Other Identity Server Instances
Part III Access System Installation and Setup
7
Installing the Policy Manager
7.1
About Policy Manager Installation and Setup
7.1.1
About Installing Multiple Policy Managers
7.2
Policy Manager Prerequisites Checklist
7.3
Installing the Policy Manager
7.3.1
Starting the Installation
7.3.2
Defining a Directory Server Type and Policy Data Location
7.3.2.1
Continuing on Solaris Without Updating the Schema
7.3.2.2
Continuing on Windows Without Updating the Schema
7.3.2.3
Storing Policy Data Separately and Updating the Schema
7.3.3
Specifying a Transport Security Mode
7.3.4
Updating Your Policy Manager Web Server Configuration
7.3.5
Finishing the Policy Manager Installation
7.4
Manually Configuring Your Web Server
7.5
Setting Up the Policy Manager
7.5.1
Starting the Setup Process
7.5.2
Specifying Directory Server Details and Data Locations
7.5.3
Configuring Authentication Schemes and Default Policy Domains
7.5.4
Completing Policy Manager Setup
7.6
Confirming Policy Manager Setup
8
Installing the Access Server
8.1
About the Access Server and Installation
8.1.1
About Installing Multiple Access Servers
8.1.2
Installing 10.1.4 Access Servers in an Upgraded Environment
8.2
Access Server Prerequisites Checklist
8.3
Creating an Access Server Instance in the System Console
8.4
Installing the Access Server
8.4.1
Starting the Installation
8.4.2
Specifying a Transport Security Mode
8.4.3
Specifying Directory Server and Communication Details
8.4.4
Finishing the Access Server Installation
9
Installing the WebGate
9.1
About WebGate Installation
9.1.1
About Installing Multiple WebGates
9.2
WebGate Prerequisites Checklist
9.3
Creating a WebGate Instance
9.4
Associating a WebGate and Access Server
9.5
Installing the WebGate
9.5.1
Starting the Installation
9.5.2
Specifying a Transport Security Mode
9.5.3
Specifying WebGate Configuration Details
9.5.4
Updating the WebGate Web Server Configuration
9.5.5
Finishing the WebGate Installation
9.6
Manually Configuring Your Web Server
9.7
Confirming WebGate Installation
Part IV Installing Optional Components
10
Setting Up Oracle Access Manager with Oracle Virtual Directory
10.1
About Oracle Access Manager Implementations with Oracle Virtual Directory
10.1.1
Key Terms and Features
10.1.1.1
Federated Data Stores
10.1.1.2
About Searchbase Options
10.1.1.3
Split Profiles
10.1.2
Aggregated Namespaces
10.1.3
Aggregated Schema Mapping
10.2
Implementation Limitations
10.2.1
About Limitations on Multi-Value Attributes
10.2.2
About Limitations on Embedded Virtual Data Sources
10.3
Implementation Architecture
10.3.1
About Oracle Virtual Directory Drivers and Adapters
10.3.2
About Oracle Access Manager-Specific Data
10.4
About Schema Extension
10.4.1
Virtual Directory Schema
10.4.2
Target Directory Schemas
10.4.3
About Adding Attributes to Target Database Tables
10.4.4
Customer Schemas
10.5
Implementation Scenarios and Limitations
10.5.1
Heterogeneous LDAP Directories
10.5.2
Multiple RDBMS Databases
10.5.2.1
About Joining Database Tables in an Embedded Virtual Data Source
10.5.3
Split-Profiles
10.5.3.1
Join View Adapter Requirements and Limitations
10.6
Implementation Requirements
10.6.1
Security Connection Support
10.6.2
Authentication Support
10.6.2.1
About Pass Credential Authentication
10.6.3
Access Control Support
10.6.4
Failover Support
10.7
About the Implementation Process
10.8
Preparing Your Environment
10.8.1
Identifying Factors for Designing Your Implementation
10.8.2
Preparing Directory Servers for Implementation
10.8.3
Preparing Relational Databases for Implementation
10.9
Installing and Configuring Oracle Virtual Directory and Virtual Directory Manager
10.9.1
Installing Oracle Virtual Directory
10.9.2
Installing Virtual Directory Manager
10.9.3
Creating a Project Space and Server
10.9.4
Obtaining/Updating Sample Adapter and Mapping Templates
10.9.5
Deploying JDBC Driver Libraries for Your RDBMS
10.9.6
Configuring the Oracle Virtual Directory SSL Listener (Optional)
10.10
Installing the First Identity Server
10.11
Extending Directory Schemas
10.12
Creating Mapping Files for Adapters
10.13
Creating Data Store Adapters
10.13.1
Creating Adapters for LDAP Directories
10.13.2
Configuring a Database Adapter
10.13.3
Creating a Split-Profile Adapter
10.13.4
Creating a Multiple-Directories Adapter
10.13.4.1
Creating a Local Data Store Adapter
10.13.4.2
Creating a Physical Node for the Virtual Root
10.14
Customizing Adapters and Mapping Files
10.14.1
Customization Examples
10.14.2
Customized Mapping Script for Active Directory
10.14.2.1
Customized Mapping Script for Oracle Database
10.14.2.2
Customized Adapter for Oracle Database
10.14.3
Customizing General Settings for Oracle Access Manager
10.14.4
Customizing Routing Settings
10.14.5
Editing an Adapter Plug-in to Refer to Your Mapping File
10.15
Completing Identity System Installation and Setup
10.16
Testing Your Implementation
10.17
Reference Information
10.17.1
Oracle Access Manager Auxiliary Attributes
10.17.2
About DN Conversion Toolkit
10.17.2.1
Conditions
10.17.2.2
Requirements
10.17.2.3
Details
10.18
Oracle Access Manager-Oracle Virtual Directory Implementation Templates
10.18.1
Templates for Active Directory
10.18.1.1
OblixADAdapterUsingMapper for Active Directory
10.18.1.2
OblixADAdapterUsingScript for Active Directory
10.18.1.3
OblixADSSLAdapterUsingMapper for Active Directory
10.18.2
Templates for ADAM
10.18.2.1
OblixADAMAdapterUsingMapper for ADAM
10.18.2.2
OblixADAMAdapterUsingScript for ADAM
10.18.2.3
OblixADAMSSLAdapterUsingMapper for ADAM
10.18.3
Templates for Sun Directory Server
10.18.3.1
OblixSunOneAdapterUsingMapper for SunOne
10.18.3.2
OblixSunOneAdapterUsingScript for SunOne
10.18.4
Templates for eDirectory
10.18.4.1
OblixeDirectoryAdapterUsingMapper for eDirectory
10.18.4.2
OblixeDirectoryAdapterUsingScript for eDirectory
10.18.5
Database Template: OblixDBAdapterUsingScript
10.18.6
Schema Mapping Script Templates
10.19
Tips
10.19.1
Database Connectivity Tips
10.20
Troubleshooting Implementations with Oracle Virtual Directory
11
Installing the SNMP Agent
11.1
About the SNMP Agent and Installation
11.2
SNMP Agent Installation Considerations
11.3
SNMP Installation Prerequisites Checklist
11.4
Installing the Oracle Access Manager SNMP Agent
11.4.1
Starting the Installation
11.4.2
Specifying SNMP Agent Configuration Details
11.4.3
Finishing the Installation
11.5
About Integration with Oracle Enterprise Manager 10g Identity Management
12
Installing Language Packs Independently
12.1
About Language Packs and Installation
12.2
Language Pack Installation Considerations
12.3
Language Pack Prerequisites Checklist
12.4
Installing the Language Pack Independently
12.5
Installed Files
12.6
Confirming Language Status
13
About Installing Audit-to-Database Components
14
About the Software Developer Kit
Part V Replication
15
Replicating Components
15.1
About the Silent Mode Options File
15.1.1
Additional Uses of the Silent Mode Options File
15.2
Running the Silent Mode Options File
15.2.1
Selecting an Installation Directory on HP-UX and AIX
15.2.2
Inputting Installation Passwords
15.3
Editing the Silent Mode Options File
15.3.1
Sample Options Files
15.3.1.1
Sample Access Server Options Files
15.4
Silent Mode Parameters
15.4.1
Identity Server Parameters
15.4.2
WebPass Parameters
15.4.3
Policy Manager Parameters
15.4.4
Access Server Parameters
15.4.5
WebGate Parameters
15.4.6
Access Manager SDK Parameters
15.4.7
BEA WebLogic SSPI Parameters
15.4.8
WAS Registry Parameters
15.5
Uninstalling a Component Installed With Silent Mode
15.6
Cloning and Synchronizing Installed Components
15.6.1
An Example of Using np_sync
15.6.1.1
Syntax and Options for np_sync
15.6.1.2
UNIX-Specific Notes
15.6.1.3
Windows-Specific Notes
15.7
Uninstalling a Cloned Component
15.7.1
Uninstalling a Cloned Component on UNIX
15.7.2
Uninstalling a Cloned Component on Windows
15.7.2.1
Uninstalling Oracle Access Manager System
Part VI Web Server Configuration
16
Configuring Apache v1.3-based Web Servers for Oracle Access Manager
16.1
About Oracle HTTP Server and Oracle Access Manager
16.1.1
Oracle HTTP Server Web Component Caveats on Linux
16.1.2
Oracle HTTP Server Web Component Caveats on Linux and Windows Platforms
16.2
About Apache v1.3 and Oracle Access Manager
16.2.1
Identity Server Accessed through WebPass
16.2.2
Policy Manager
16.2.3
WebGate
16.2.3.1
Example: Apache v1.3 Configuration for UNIX Systems
16.3
Apache v1.3, Oracle HTTP Server, and Stronghold Requirements
16.4
Apache v1.3 and Oracle HTTP Server Support
16.5
Compatibility and Platform Support
16.6
Downloading and Compiling the Base Apache Web Server
16.6.1
Apache Release Notes
16.6.2
Other Useful Links
16.7
Platform-Specific Compilation Options
16.8
Platform Specific Run-Time Settings for AIX
16.9
Installation Order for Oracle Access Manager Web Components
16.10
Updating Web Server Configuration for Oracle Access Manager Web Components
16.11
Tuning Apache 1.3 for Oracle Access Manager Web Components
16.11.1
Policy Manager Tuning Factors
16.12
Setting Oracle HTTP Server Client Certificates
16.13
Tuning Oracle HTTP Server for Oracle Access Manager Web Components
16.14
Starting and Stopping the Web Server
16.14.1
Starting and Stopping Oracle HTTP Server Web Servers
16.14.2
Starting and Stopping Apache on UNIX
16.14.2.1
Stopping Apache Web Server on UNIX
16.14.2.2
Starting and stopping the Apache Web Server on UNIX
16.14.2.3
Starting the Server in SSL Mode
16.14.3
Starting and Stopping Apache on Windows
16.15
Removing Web Server Configuration Changes After Uninstall
16.16
Troubleshooting
17
Configuring Web Components for Apache v2-based Web Servers
17.1
About Oracle HTTP Server and Oracle Access Manager
17.2
About Oracle Access Manager with Apache and IHS v2 Web Components
17.2.1
About the Apache HTTP Server
17.2.2
About the IBM HTTP Server
17.2.3
About the Apache and IBM HTTP Reverse Proxy Server
17.3
About Apache v2 Architecture and Oracle Access Manager
17.4
Compatibility and Platform Support
17.5
Requirements for Oracle HTTP Server/IHS/Apache v2 Web Servers
17.5.1
Requirements for IHS2 Web Servers
17.5.2
Requirements for Apache and IHS v2 Reverse Proxy Servers
17.5.3
Requirements for Apache v2 Web Servers
17.6
Preparing Your Web Server
17.6.1
Preparing the IHS v2 Web Server
17.6.1.1
Preparing the Host for IHS v2 Installation
17.6.1.2
Installing the IBM HTTP Server v2
17.6.1.3
Setting Up SSL-Capability
17.6.1.4
Starting a Secure Virtual Host
17.6.2
Preparing Apache and Oracle HTTP Server Web Servers on Linux
17.6.3
Preparing Oracle HTTP Server Web Servers on Linux and Windows Platforms
17.6.4
Setting Oracle HTTP Server Client Certificates
17.6.5
Preparing the Apache v2 Web Server on UNIX
17.6.6
Preparing the Apache v2 SSL Web Server on AIX
17.6.7
Preparing the Apache v2 Web Server on Windows
17.7
Activating Reverse Proxy
17.7.1
Activating Reverse Proxy For Apache v2 Web Servers
17.7.2
Activating Reverse Proxy For IHS v2 Web Servers
17.8
Installing Oracle Access Manager Web Components
17.9
Manually Updating a Web Server Configuration for Oracle Access Manager
17.10
Verifying httpd.conf Updates for Oracle Access Manager Web Components
17.10.1
Verifying WebPass Details
17.10.2
Verifying Policy Manager Details
17.10.3
Verifying WebGate Details
17.10.4
Verifying Language Encoding
17.11
Tuning Oracle HTTP Server for Oracle Access Manager Web Components
17.12
Tuning Oracle HTTP Server /Apache Prefork and MPM Modules for Oracle Access Manager
17.12.1
Tuning Oracle HTTP Server /Apache Prefork Module
17.12.2
Tuning Oracle HTTP Server /Apache MPM Module
17.12.3
Kernal Parameters Tuning
17.13
Starting and Stopping Oracle HTTP Server Web Servers
17.14
Tuning Apache/IHS v2 for Oracle Access Manager Web Components
17.15
Removing Web Server Configuration Changes After Uninstall
17.16
Tips and Troubleshooting
17.17
Helpful Information
18
Setting Up Lotus Domino Web Servers for WebGates
18.1
Compatibility and Platform Support
18.2
Installing the Domino Web Server
18.3
Setting Up the First Domino Web Server
18.4
Starting the Domino Web Server
18.5
Enabling SSL (Optional)
18.6
Installing a Domino Security (DSAPI) Filter
18.6.1
Completing the WebGate Installation
18.7
Troubleshooting
19
Installing Web Components for the IIS Web Server
19.1
Guidelines for Oracle Access Manager Web Components and IIS
19.1.1
WebPass Guidelines for IIS Web Servers
19.1.2
Policy Manager Guidelines for IIS Web Servers
19.1.3
WebGate Guidelines for IIS Web Servers
19.1.4
64-bit WebGates for IIS v6
19.1.5
Multiple WebGates with a Single IIS Instance
19.1.6
Caching Guidelines
19.2
Compatibility and Platform Support
19.3
Verifying WebPass Permissions on IIS
19.4
Verifying Policy Manager Permissions on IIS
19.5
Completing WebGate Installation with IIS
19.5.1
Enabling Client Certificate Authentication on the IIS Web Server
19.5.2
Ordering the ISAPI Filters
19.5.3
Installing postgate.dll on IIS Web Servers
19.5.3.1
Setting Up IIS Web Server Isolation Mode
19.5.3.2
Installing the Postgate ISAPI Filter
19.5.4
Protecting a Web Site When the Default Site is Not Setup
19.6
Installing and Configuring Multiple WebGates for a Single IIS Instance
19.6.1
Installing Each WebGate in a Multiple WebGate Scenario
19.6.2
Setting the Impersonation DLL for Multiple WebGates
19.6.3
Enabling SSL and Client Certification for Multiple WebGates
19.6.4
Confirming Multiple WebGate Installation
19.7
Finishing 64-bit WebGate Installation
19.7.1
Setting Access Permissions, ISAPI filters, and Directory Security Authentication
19.7.2
Setting Client Certificate Authentication
19.8
Confirming WebGate Installation on IIS
19.9
Starting, Stopping, and Restarting the IIS Web Server
19.10
Removing Web Server Configuration Changes Before Uninstall
19.11
Troubleshooting
20
Installing the ISAPI WebGate with the ISA Server
20.1
About Oracle Access Manager and the ISA Server
20.2
Compatibility and Platform Support
20.3
Installing and Configuring WebGate for the ISA Server
20.3.1
Installing WebGate with ISA Server
20.3.2
Changing /access Directory Permissions
20.4
Configuring the ISA Server for the ISAPI WebGate
20.4.1
Registering Oracle Access Manager Plug-ins as ISA Server Web Filters
20.4.2
Configuring ISA Firewall Policies for Authentication/Authorization with ISA Web Filters
20.4.3
Ordering the ISAPI Filters
20.5
Starting, Stopping, and Restarting the ISA Server
20.6
Removing Oracle Access Manager Filters Before WebGate Uninstall on ISA Server
Part VII Product Removal and Troubleshooting
21
Important Notes
21.1
Enabling Java and JavaScript On The Client
21.2
Changing MIME Type Settings
21.3
Choosing a Unique ID for Each User
21.4
Contacting Oracle
22
Removing Oracle Access Manager
22.1
Uninstalling Oracle Access Manager Components
22.2
Recycling an Identity Server Instance Name
Part VIII Appendixes
A
Installing Oracle Access Manager with Active Directory
A.1
About Active Directory
A.1.1
Domain Controllers and Partitions
A.2
About Oracle Access Manager and Active Directory
A.2.1
About Statically-Linked Auxiliary Classes
A.2.2
About Dynamically-Linked Auxiliary Classes
A.3
About Oracle Access Manager and Active Directory Forests
A.3.1
Oracle Access Manager and the Searchbase in a Parent-Child Domain
A.4
Installation and Setup Considerations for Active Directory
A.4.1
Active Directory Schema Choices
A.4.1.1
Determining which Schema to Load
A.4.2
All Configurations
A.4.3
ADSI Option Considerations
A.4.4
LDAP Open Bind Considerations
A.4.5
LDAP Over SSL Considerations
A.5
Installing Oracle Access Manager with Active Directory
A.5.1
Setting Up Your Environment
A.5.1.1
Setting Up Domain Controllers
A.5.1.2
Installing the Certificate Server
A.5.1.3
Retrieving the Certificate
A.5.2
Installing the Identity System
A.5.2.1
Installing the Identity System
A.5.2.2
Setting Up ADSI (Optional)
A.5.3
Setting Up the Identity System
A.5.3.1
Enabling Active Directory Attributes
A.5.3.2
Enabling Change-Password Permissions
A.5.3.3
Setting Up the Identity System
A.5.4
Validating Your Identity System Setup
A.5.5
Installing and Setting Up the Access System
A.5.5.1
Preparing for Access System Installation
A.5.5.2
Installing and Setting Up the Access System
A.5.5.3
Setting Up ADSI on the Access Server (Optional)
A.6
Active Directory Tips and Troubleshooting
B
Installing Oracle Access Manager with ADAM
B.1
About Oracle Access Manager and ADAM
B.1.1
ADAM Instances and Partitions
B.1.2
The ADAM Schema
B.1.3
The Oracle Access Manager Schema Extension for ADAM
B.1.4
Windows Users and Security Principals
B.1.5
Oracle Access Manager Directory Profiles
B.1.6
Replication of an ADAM Instance
B.1.7
ADSI with Oracle Access Manager and ADAM
B.1.8
ADAM and APIs
B.1.9
Authentication, Authorization, and Password Changes
B.2
ADAM and Active Directory Differences
B.3
Support Requirements
B.4
Installing Oracle Access Manager with ADAM
B.4.1
Preparing ADAM for Oracle Access Manager
B.4.2
Installing and Setting the Identity System with ADAM
B.4.3
Installing the Access System with ADAM
B.5
Oracle Access Manager Silent Mode Installation Parameters
B.5.1
Identity Server Silent Mode Installer for ADAM
B.5.2
Policy Manager Silent Mode Installer for ADAM
B.5.3
Access Server Silent Mode Installer for ADAM
B.6
Troubleshooting ADAM Issues
C
Adding Directory Certificates After Component Installation
C.1
About Directory Certificates
C.2
Prerequisites
C.3
Creating a New Certificate Store
C.4
Adding Certificates
C.5
Changing the Directory Server Configuration
D
Changing Directory Server Hosts
D.1
About Changing Directory Server Hosts
D.2
Minimizing Down Time
D.2.1
Configuring Failover between an Identity Server and WebPass
D.2.2
Configuring Failover between an Access Server and WebGate
D.3
Preparing the New Directory Server Instance
D.4
Reconfiguring the Primary Identity Server
D.5
Reconfiguring the Policy Manager
D.6
Reconfiguring the Access Server
E
Troubleshooting Installation Issues
E.1
Browser Issues
E.1.1
Character Display Issues
E.1.2
Microsoft Internet Explorer 6 with Sun VM v1.4.2_04
E.1.3
Unable to Authenticate Resource on Internet Explorer
E.2
Directory Server Issues
E.2.1
Active Directory Issues
E.2.1.1
Active Directory Search Halts
E.2.1.2
ADSI Cannot Be Enabled for this DB Profile (Active Directory)
E.2.1.3
Dynamically-Linked Auxiliary Classes for Active Directory
E.2.2
ADAM Issues
E.2.2.1
ADAM: Cannot find the Config DN or Searchbase
E.2.2.2
ADAM Directory Server Security
E.2.2.3
ADAM Object Classes
E.2.2.4
ADAM Password Changes
E.2.2.5
ADAM Schema Updates
E.2.3
Novell eDirectory Issues
E.2.4
Oracle Internet Directory Schema
E.2.5
Oracle Internet Directory Tuning for Oracle Access Manager
E.2.6
Sun Java System Directory Server 6.0 and Installation of Identity Server
E.2.7
Sun One Directory Server v5 Issue
E.2.8
Sun One Directory Server v5 SSL Issues
E.2.9
Sun One Directory Server 6.3: No such object error
E.3
File Ownership and Command Line Tools
E.4
Identity System Issues
E.4.1
Application Has Not Been Set Up
E.4.2
Cannot Set Up Identity System
E.4.3
Checking Access Server or Identity Server Availability
E.4.4
Could Not Get Any DB Profile
E.4.5
Identity Server Does Not Start
E.4.6
IdentityXML Calls Fail After WebGate Install
E.4.7
WebPass Identifier Not Available After Setup
E.5
IIS and Windows Issues
E.6
Issues with Oracle Virtual Directory Implementations
E.6.1
Directory Server Problems
E.6.2
Error Accessing Policy Manager When Searchbases Differ in User Data Directory Profiles
E.6.3
Multi-Value Attribute Problems
E.6.4
Oracle Virtual Directory SSL Listener Certificate Utility Flags
E.6.5
Secondary Data Store Problems
E.6.6
Unexpected Group Deletion Problem
E.7
Installation Issues
E.7.1
Access Server Installation Halts
E.7.2
CGI Programs Do not Run After Installation
E.7.3
File Replace Warning When Installing on Windows
E.7.4
GUI Mode Issues
E.7.5
Installation Fails with a "bad credentials error (49)"
E.7.6
Installer Hangs on Linux
E.7.7
Installer Prompts to Replace DLL Files
E.7.8
Issue with Early Exit from Installation on Solaris
E.7.9
Performing UNIX Installation in GUI Mode
E.7.10
Quitting a Windows Installation
E.7.11
Running as Non-Root User When Installing on AIX
E.7.12
Specifying Installation Directories
E.7.13
Testing Your Installation
E.7.14
Unable to Leave Person Object Class Page
E.7.15
WebGate Installation with Apache Web Server on AIX
E.8
Language Issues
E.8.1
Garbled Password Message
E.8.2
Installing Additional Administrator Language Packs
E.8.3
Installing Language Packs for Policy Manager and WebGate in Same Directory
E.8.4
Removing the Default Administrator Language Pack
E.9
Login Issues
E.9.1
Identity Server Logged You In, Access System Logged You Out
E.9.2
Windows 2000 Users Cannot Log in After Installation
E.9.3
Receiving Repeated Login Prompts
E.9.4
Unable to log in to Oracle Access Manager on IIS
E.9.5
Restricting Access to Oracle Access Manager
E.10
NPTL Requirements and Post-Installation Tasks
E.11
Platform-Specific Issues
E.11.1
SELinux Issues
E.11.2
Oracle Access Manager Components and Command-line Tools Might Fail with LinuxThreads
E.12
Policy Manager Issues
E.12.1
Cannot Delete Policy Manager Policy Profile
E.13
Reinstalling Oracle Access Manager with Oracle Internet Directory
E.14
Removal Issues
E.15
Transport Security Mode Issues
E.16
User Directory Issues
E.16.1
Adding User to Replicated Directory
E.16.2
Data Corruption
E.17
Web Server Issues
E.17.1
Access Server Fails on an Apache Web Server
E.17.2
Apache v2 on HP-UX
E.17.3
Apache v2 Bundled with Red Hat Enterprise Linux 4
E.17.4
Apache v2 Bundled with Security-Enhanced Linux
E.17.5
Apache v2 on UNIX with the mpm_worker_module for WebGate
E.17.6
Domino Web Server Issues
E.17.7
Errors, Loss of Access, and Unpredictable Behavior
E.17.8
Oracle HTTP Server Fails to Start with LinuxThreads
E.17.9
Oracle HTTP Server WebGate Fails to Initialize On Linux Red Hat 4
E.17.10
Oracle HTTP Server Web Server Configuration File Issue
E.17.11
Issues with IIS v6 Web Servers
E.17.12
PCLOSE Error When Starting Sun Web Server
E.17.13
Removing and Reinstalling IIS DLLs
E.18
WebGate Issues
E.18.1
Access Server and WebGate Naming
E.18.2
Enabling WebGate Diagnostics
E.18.3
Error Messages After Installing WebGate
E.18.4
Installing WebGate and an Identity Server in Same Directory
E.18.5
Receiving Access Server Down Errors
E.18.6
WebGate Cannot Connect to Access Server
E.18.7
Oracle HTTP Server WebGate Fails to Initialize On Linux Red Hat 4
E.18.8
Logout Not Working with Client Certificate Authentication
E.19
Miscellaneous Issues
E.19.1
Unable to Flush the Cache
E.19.2
Giving View Rights to the Master Administrator
E.19.3
Idle Session Time, Maximum Cookie Session Time
E.19.4
Loading the Directory in Secure Mode
E.19.5
Peer Does Not Use Oracle Access Protocol
E.19.6
Receiving Bug Report After Replication Attempt
E.19.7
Search and Query Error Message (Defect 4547)
E.19.8
Identity Server Logged You in but Access System Logged You Out
Index