| Oracle® Fusion Middleware Installation Guide for Oracle Identity Management 11g Release 1 (11.1.1) E12002-02 |
|
 Previous |
 Next |
| Oracle® Fusion Middleware Installation Guide for Oracle Identity Management 11g Release 1 (11.1.1) E12002-02 |
|
Previous |
Next |
This chapter provides an overview of the Oracle Identity Management 11g Release 1 (11.1.1) installation. This chapter includes the following topics:
Installation Types: "Install and Configure" vs. "Install Software - Do Not Configure"
Understanding Oracle WebLogic Server Administration Domain Options
Understanding the State of Oracle Identity Management Components After Installation
Each document in the Oracle Fusion Middleware Documentation Library has a specific purpose. The specific purpose of this guide is to explain how to:
Install single instances of Oracle Identity Management 11g Release 1 (11.1.1) components.
Verify the installation was successful.
Get started with the component after installation.
This guide covers the most common, certified Oracle Identity Management deployments. The following information is provided for each of these deployments:
Appropriate Deployment Environment: Helps you determine which deployment is appropriate for your environment.
Components Deployed: Identifies the components that are installed in each deployment.
Dependencies: Identifies the components each deployment depends on.
Procedure: Explains the steps for the deployment.
As described in "Installation Types: "Install and Configure" vs. "Install Software - Do Not Configure"", the procedures in this guide explain how to deploy Oracle Identity Management components explicitly using the Install and Configure installation option.
However, if you install Oracle Identity Management components using the Install Software - Do Not Configure installation option and then later decide you want to configure them using the Oracle Identity Management 11g Release 1 (11.1.1) Configuration Wizard, you can still use the procedures in this guide, as the screens and tasks will be the same as if you used the Install and Configure option.
The following is an overview of the steps to install Oracle Identity Management 11g Release 1 (11.1.1):
Review Chapter 2, "Understanding the Oracle Identity Management 11g Release 1 (11.1.1) Installation," for context.
Review Chapter 3, "Before Installing Oracle Identity Management," for information about what you should consider before you deploy Oracle Identity Management.
Review Chapter 4, "Performing Common Installation Tasks," to understand the tasks that you must perform for most deployments. Understanding this information before you start will expedite and simplify the deployment process.
Install, verify, and get started with your Oracle Identity Management component by referring to its specific chapter in this guide.
Use the appendixes in this guide as needed.
This topic describes additional sources for 11g Release 1 (11.1.1) deployment information, including documentation on the following subjects:
|
See Also: The "Related Documents" section in this guide's Preface for a list of documents that provide additional information about Oracle Identity Management components. |
This guide does not explain how to upgrade previous versions of Oracle Identity Management components to 11g Release 1 (11.1.1). To upgrade an Oracle Identity Management component:
From Release 10g to 11g Release 1 (11.1.1), refer to:
Oracle Fusion Middleware Upgrade Planning Guide
Oracle Fusion Middleware Upgrade Guide for Oracle Identity Management
From 11g Release 1 (11.1.1.1.0) to 11g Release 1 (11.1.1.2.0), refer to:
"Special Instructions for Oracle Fusion Middleware 11g Release 1 (11.1.1.1.0) Users" in the Oracle Fusion Middleware Installation Planning Guide
This guide does not explain how to install Oracle Identity Management components in High Availability (HA) configurations. To install an Oracle Identity Management component in a High Availability configuration, refer to the following documents:
Oracle Fusion Middleware High Availability Guide
Oracle Fusion Middleware Enterprise Deployment Guide for Oracle Identity Management
The Select Installation Type screen in the Installer presents two options: Install and Configure and Install Software - Do Not Configure. This section describes both options:
Choose the Install and Configure option to install Oracle Identity Management components and simultaneously configure some of their fundamental elements, such as passwords, user names, and so on. Oracle Identity Management components start running and are immediately ready for use after deploying them using the Install and Configure option.
If you choose the Install and Configure option, you will see additional Installer screens that will not appear using the Install Software - Do Not Configure option. These additional screens prompt you for information the Installer uses to configure Oracle Identity Management components.
|
Important: The procedures in this guide explain how to deploy Oracle Identity Management components explicitly using the Install and Configure option. |
Choose the Install Software - Do Not Configure option to install Oracle Identity Management components without configuring them during installation. If you choose the Install Software - Do Not Configure option, the Installer installs the component software and then closes. Oracle Identity Management components will not start running after deploying them using the Install Software - Do Not Configure option, as additional configuration is needed.
After you install components using the Install Software - Do Not Configure option, you can configure them at a later time using the Oracle Identity Management 11g Release 1 (11.1.1) Configuration Wizard. To start the Oracle Identity Management 11g Release 1 (11.1.1) Configuration Wizard, execute the ORACLE_HOME/bin/config.sh script (config.bat on Windows).
|
Important: The procedures in this guide explain how to deploy Oracle Identity Management components explicitly using the Install and Configure option.However, if you install Oracle Identity Management components using the Install Software - Do Not Configure option and then later decide you want to configure them using the Oracle Identity Management 11g Release 1 (11.1.1) Configuration Wizard, you can still use the procedures in this guide, as the screens and tasks will be the same as if you used the Install and Configure option. The only difference between the screens for configuring components is how you access them—Through the Installer if you choose the you the Install and Configure option, or through the Configuration Wizard after executing the ORACLE_HOME/bin/config.sh script (config.bat on Windows). |
During installation, you have several options for choosing how the Oracle Identity Management components are installed in relation to an Oracle WebLogic Server administration domain. A domain includes a special WebLogic Server instance called the Administration Server, which is the central point from which you configure and manage all resources in the domain.
This section describes each domain option for installing Oracle Identity Management components:
|
See: The "Understanding Oracle WebLogic Server Domains" chapter in the Oracle Fusion Middleware Understanding Domain Configuration for Oracle WebLogic Server guide for more information about Oracle WebLogic Server administration domains. |
Select the Create New Domain option to create a new Oracle WebLogic Server administration domain and install Oracle Identity Management components in it. When you install Oracle Identity Management components in a new domain, the Fusion Middleware Control management component and the Oracle WebLogic Administration Server are automatically deployed with them.
Select the Extend Existing Domain option to install Oracle Identity Management components in an existing Oracle WebLogic Server administration domain. When you install Oracle Identity Management components using this option, they are essentially "joining" an existing domain.
|
Note: To install Oracle Identity Management components in an existing Oracle WebLogic Server administration domain, each Oracle WebLogic Server Home, Oracle Middleware Home, and Oracle Home directory in the domain must have identical directory paths and names. |
If you want to install and configure Oracle Identity Management components in an existing Oracle WebLogic Server administration domain, by using either the Installer or the Oracle Identity Management 11g Release 1 (11.1.1) Configuration Wizard, the existing domain must have been created using the Oracle Identity Management 11g Release 1 (11.1.1) Installer. You cannot extend an existing domain for Oracle Identity Management components if the domain was created by another program, such as the Oracle SOA Installer or the Oracle WebLogic Server Configuration Wizard.
|
Note: When you install components using the Extend Existing Domain option, you must provide some credentials for the existing domain, including the user name for the domain. You must enter the user name in ASCII characters only. |
Select the Expand Cluster option to install Oracle Identity Management components in an Oracle WebLogic Server cluster for High Availability (HA). This document does not explain how to install Oracle Identity Management components in HA configurations. Refer to the following documents for more information:
Oracle Fusion Middleware High Availability Guide
Oracle Fusion Middleware Enterprise Deployment Guide for Oracle Identity Management
Select the Configure without a Domain option to install Oracle Identity Management components and configure them to be without domain membership.
|
Note: Only the Oracle Internet Directory and Oracle Virtual Directory components are certified for installation without a domain. |
For Oracle Internet Directory, the Configure without a Domain option is appropriate for environments that have both of the following conditions:
You do not want to include Oracle Internet Directory in a WebLogic Server administration domain for management purposes.
You do not want to manage Oracle Internet Directory using Fusion Middleware Control.
For Oracle Virtual Directory, the Configure without a Domain option is appropriate if you want to register Oracle Virtual Directory with a remote WebLogic Administration Server for management purposes, but you do not want to install Oracle WebLogic Server locally.
You can install Oracle Fusion Middleware instances on separate systems. You can also distribute Oracle Fusion Middleware components over multiple systems, which is especially useful for Oracle Identity Management components. You might want distribute components to improve performance, security, scalability, and availability of Oracle Identity Management services.
The following are two (of many) examples of Oracle Identity Management deployments that benefit from distributing components over multiple systems:
Oracle Internet Directory on one system, and Oracle Directory Services Manager and Oracle Directory Integration Platform on a separate system.
Oracle Identity Management components use an Oracle Database to contain the Oracle Metadata Repository. The Oracle Identity Management components and the Oracle Database are installed on separate systems.
|
Note: If you install Oracle Identity Management components on a separate system from the database containing the Oracle Metadata Repository, the Oracle Identity Management components will need network access to the repository. |
|
See: The following documents if you want to configure more than one Oracle Internet Directory against the same Oracle Metadata Repository:
|
During installation on UNIX platforms, the Installer prompts you to log in as the root user and run the oracleRoot.sh script. You must log in as the root user because the script creates files, edits files, and changes the permissions of certain Oracle executable files in the /usr/local/bin/ directory.
If the oracleRoot.sh script finds files of the same name, it prompts you to indicate whether or not to override the existing files. Back up the existing files (you can do this from another window), then overwrite them.
This topic provides information about the state of Oracle Identity Management components after installation, including:
By default, Oracle Internet Directory and Oracle Virtual Directory are installed with SSL configured. You must configure SSL for the Oracle WebLogic Administration Server and Oracle WebLogic Managed Server after installation.
|
See: The Oracle Fusion Middleware Administrator's Guide for more information. |
By default, the passwords for all Oracle Identity Management components are set to the password for the Oracle Identity Management Instance. For security reasons, after installation, you should change the passwords of the various components so they have different values.
|
See: The following documents for information about changing passwords for Oracle Identity Management components:
|
When you use the Auto Port Configuration option during installation, the Installer follows specific steps to assign ports. The following information describes the default ports and port assignment logic the Installer uses to assign ports for various Oracle Identity Management components when you use the Auto Port Configuration option during installation.
Oracle Virtual Directory:
Non-SSL port: 6501
SSL port: 7501
Admin port: 8899
HTTP port: 8080
First, the Installer attempts to assign the default port. If the default port is unavailable, the Installer tries ports within a range of 50 from the default port. For example, when the Installer assigns the non-SSL port for Oracle Virtual Directory, it first attempts to assign 6501. If 6501 is unavailable, it tries ports from 6501 to 6551. The Installer uses this approach to assign all Oracle Virtual Directory ports.
Oracle Internet Directory:
Non-SSL port: 3060
SSL port: 3131
First, the Installer attempts to assign default ports. If the non-SSL port is unavailable, the Installer tries ports from 3061 to 3070, then from 13060 to 13070. Similarly, the Installer first attempts to assign 3131 as the SSL port, then ports from 3132 to 3141, and then from 13131 to 13141.
Oracle Identity Federation: 7499
First, the Installer attempts to assign the default port. If the default port is unavailable, the Installer tries ports in increments of one, that is: 7500, then 7501, then 7502, and so on. The Installer tries ports up until 9000 to find an available port.
Oracle Directory Services Manager: 7005
First, the Installer attempts to assign the default port. If the default port is unavailable, the Installer tries ports in increments of one, that is: 7006, then 7007, then 7007, and so on. The Installer tries ports up until 9000 to find an available port.
Oracle WebLogic Administration Server: 7001
