This chapter describes the separately licensed Oracle Identity and Access Management independent license offerings.
The following sections describe the Oracle Identity and Access Management products and product families that can be separately licensed, independent of the packaged Oracle Application Server or WebLogic editions.
You may not use the options, packs, or products described below without separately purchased licenses. The fact that these options, packs, or products may be included in product CDs or downloads or described in documentation that you receive does not authorize you to use them without purchasing the appropriate licenses.
See Section 8.15, "Oracle Database License Requirements," for important license requirements regarding the use of Oracle Database with the products described in this chapter.
Oracle Entitlements Server can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Entitlements Server:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Entitlements Server, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Entitlements Server Security Module can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
Note that to use the Oracle Entitlements Server Security Module, you need to license Oracle Entitlements Server or Oracle Access Management Suite Plus (which includes Oracle Entitlements Server).
Oracle Directory Services Plus can be separately licensed, independent of any Oracle Application Server or WebLogic edition. It includes:
Oracle Internet Directory (including Delegated Administration Services and Directory Integration Platform). These components are described in Section 1.3.2.2.2, "Oracle Identity Management."
Oracle Virtual Directory
Oracle Directory Server Enterprise Edition
Oracle Directory Services Manager
The following restricted-use licenses are included when you separately license Oracle Directory Services Plus:
Oracle Single Sign-On is provided for authentication services to users accessing Oracle Delegated Administration Services only.
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Directory Services Plus, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Database Standard Edition. This infrastructure database is only to be used for storing LDAP related data related to the use of Internet Directory as a general purpose LDAP directory. Storing any other data in the infrastructure database requires a full use license of Oracle Database Standard Edition.
Oracle Access Manager can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Access Manager:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Access Manager, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Adaptive Access Manager can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Adaptive Access Manager:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Adaptive Access Manager, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Identity Federation can be separately licensed, independent of any Oracle Application Server or WebLogic edition. It includes Oracle OpenSSO Fedlet.
The following restricted-use licenses are included when you separately license Oracle Identity Federation:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Identity Federation, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Identity Manager can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Identity Manager:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Identity Manager, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Identity Manager Connectors can be separately licensed, independent of any Oracle Application Server or WebLogic edition. Oracle Identity Manager Connectors require Oracle Identity Manager.
Available Identity Manager Connectors are:
Database User Management
Database Applications Table
Microsoft Active Directory
Oracle Internet Directory
Novell eDirectory
Sun Java System Directory
Oracle e-Business
PeopleSoft Enterprise Applications
SAP Enterprise Applications
Microsoft Exchange
Novell Groupwise
Microsoft Windows
UNIX
RSA Authentication Manager
RSA ClearTrust
IBM Lotus Notes/Domino
SAP Enterprise Portal
Siebel Enterprise Applications
IBM RACF
CA ACF2
CA Top Secret
BMC Remedy User Management
IBM OS/400
JDEdwards EnterpriseOne
Oracle Retail
BMC Remedy Ticketing
Siemens DirX LDAP
Oracle Role Manager can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Role Manager:
BPEL Process Manager for creating workflows where Role Manager is one of the endpoints.
Note:
Oracle BPEL Process Manager bundles UDDI client libraries from the HP SOA Systinet Registry. Such libraries and UDDI client functionality are licensed only to the end user for the purpose of connecting to and communicating with the Oracle Service Registry.Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Oracle Role Manager, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Information Rights Management can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
Oracle Enterprise Single Sign-On Suite Plus can be separately licensed, independent of any Oracle Application Server or WebLogic edition.
The following restricted-use licenses are included when you separately license Oracle Enterprise Single Sign-On Suite Plus:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Access Management Suite Plus can be separately licensed, independent of any Oracle Application Server or WebLogic edition. It includes:
Oracle OpenSSO STS
Oracle OpenSSO Fedlet
The following restricted-use licenses are included when you separately license Oracle Access Management Suite Plus:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Access Management Suite Plus, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Identity and Access Management Suite Plus can be separately licensed, independent of any Oracle Application Server or WebLogic edition. It includes:
Oracle Single Sign-On (described in Section 1.3.2.2.2, "Oracle Identity Management")
Oracle Internet Directory (including Delegated Administration Services and Directory Integration Platform). These components are described in Section 1.3.2.2.2, "Oracle Identity Management."
Oracle Virtual Directory
Oracle Directory Server Enterprise Edition
Oracle OpenSSO STS
Oracle OpenSSO Fedlet
Oracle Directory Services Manager
The following restricted-use licenses are included when you separately license Oracle Identity and Access Management Suite Plus:
Restricted Use: Business Intelligence Publisher to publish and/or view:
Shipped BI Publisher reports. Layout changes are allowed, AND
Shipped or newly created BI Publisher reports that are modified to access data from the existing Identity Management schema that has not been customized.
Oracle Internet Application Server Enterprise Edition or WebLogic Enterprise Edition as host for only Identity and Access Management Suite, including run-time components to provide Java run-time environment and HTTP support, as well as configuration and administration components used for the setup and management of these run-time components.
Oracle Database Standard Edition. This infrastructure database is only to be used for storing LDAP related data related to the use of Internet Directory as a general purpose LDAP directory. Storing any other data in the infrastructure database requires a full use license of Oracle Database Standard Edition.
Note:
If an included product (for example, Oracle Access Manager) comes with restricted-use licenses, the restricted-use licenses still apply when you separately license Oracle Identity and Access Management Suite Plus.The Management Pack for Identity Management enables enterprises to proactively monitor the availability, performance, load, and security metrics of various Identity Management components. The Management Pack for Identity Management helps improve performance and availability, and reduce the cost and complexity of managing Oracle Access Manager, Oracle Identity Manager, and Oracle Identity Federation environments.
The Management Pack for Identity Management leverages Oracle Enterprise Manager Grid Control's broad set of capabilities in configuration management, performance management, and service level management to manage the end-to-end Oracle Access Manager, Oracle Identity Manager, and Oracle Identity Federation environments.
When combined with other Enterprise Manager packs and plug-ins for managing Oracle and non-Oracle database, middleware, network devices and hosts, you can achieve complete end-to-end management of your entire Oracle Identity Management environment.
Note:
A management pack license is required to use the features described below in the Enterprise Manager graphical user interface, command-line interface, and published repository views.The Management Pack for Identity Management includes the features shown in Table 8-1.
Table 8-1 Feature Highlights of Management Pack for Identity Management
Feature | Benefit |
---|---|
Single-step discovery |
Perform a single-step discovery of Oracle Access Manager (OAM), Oracle Identity Manager (OIM), and Oracle Identity Federation (OIF), enabling you to quickly set up your monitoring environment. |
Monitoring and diagnostics |
Receive real-time metrics and historical data as well as alert notifications. Proactively monitor the Oracle Identity Management environment from both a systems-oriented view and an end-user perspective. Out-of-box collection of key performance metrics for monitored components facilitates rapid time to value. This enables you to set up alerts based on warning and critical thresholds, view current and historical performance information using graphs and reports, and diagnose performance problems by identifying bottlenecks in any of the monitored targets. |
Configuration |
Track configuration metrics, take configuration snapshots, and compare configurations for Oracle Access Manager components. |
Service level management |
Model Identity and Access services down to the key components they rely on, define service levels based on business requirements, and report against clearly defined Service Level Objectives (SLOs). You can also monitor your Oracle Identity Management environment from an end-user perspective using synthetic service tests. These tests simulate key end-user activities, such as logging into an application with a single sign-on. The tests are run through beacons from locations within your network to actively measure the performance and availability of your Identity and Access services. |
The Management Pack for Identity Management is available from the Oracle Enterprise Manager Grid Control installer.
For complete license details about the Management Pack for Identity Management, see "Identity Management Enterprise Management" in Oracle Enterprise Manager Licensing Information.
Storing any data other than the Oracle Repository Creation Utility database schema in the Oracle Application Server Infrastructure database requires a full use license of the Oracle Database (Standard Edition, Standard Edition One, or Enterprise Edition).
Some examples of the kinds of data that require the purchase of a full use license for the Oracle Database Standard Edition or Standard Edition One include:
Documents or any other objects stored in the Oracle Database under Oracle Content Management SDK
Documents or any kind of content stored in the Portal Repository
Oracle Integration B2B
Any BPEL Process Manager process instance data, which includes using Oracle Database as the dehydration store
Any other custom data that is created or updated by an application
Two kinds of data require the purchase of a full use license of the Oracle Database Enterprise Edition:
Any Oracle Portal that leverages the VPD functionality of the database for hosting
Any LDAP data related to the use of an Oracle Internet Directory LDAP Directory, and database replication is used
The following scenarios do not require the purchase of a full use license of the Oracle Database when you purchase Oracle Internet Application Server:
If you are only using Oracle Web Cache
If you are using Oracle Business Intelligence Discoverer only against a non-Oracle database
If you are using Oracle Reports Services only against a non-Oracle database