3/45
List of Figures
2-1 Oracle Fusion Middleware Access Management Architecture
2-2 Oracle Access Manager 11g Components and Services
2-3 Component Distribution
2-4 Oracle Access Manager 11g Log In Page
2-5 Sign Out Link, Upper-right Corner
2-6 OAM Administration Console Welcome Page and Policy Configuration Tab
2-7 Policy Configuration and System Configuration Navigation Trees
2-8 Menu and Tool Bar Above the Navigation Tree
2-9 View Menu
2-10 Actions Menu
2-11 Tabs of Open Pages, and Page Controls
2-12 System Configuration Tab and navigation tree
2-13 System Configuration: Expanded Tree (Left), Active Page (Right)
2-14 OAM Server Common Properties
2-15 Policy Configuration Tab, Navigation Tree, and Active Page
3-1 Create User Identity Store Page for Embedded LDAP
3-2 Completed User Identity Store Registration for Oracle Internet Directory
4-1 OAM Server Registration Page with Proxy Tab
4-2 Coherence Page and Values for an Individual OAM Server
4-3 OAM Server Common Properties Page
4-4 Server Common OAM Proxy Page
4-5 Common Policy Evaluation Caches
5-1 IDM Domain Agent Configuration in the WebLogic Administration Console
5-2 IDM Domain Agent Default Characteristics
5-3 Create OAM 11g Agent Page
5-4 OAM 11g Webgate Page with Defaults
5-5 Create OSSO Agent Page
5-6 OSSO Agent Page and Confirmation Window
6-1 Key Generation
7-1 Oracle Access Manager 11g Policy Model and Shared Components
7-2 SSO Log-in Processing with OAM Agents
7-3 SSO Login Processing with OSSO Agents
8-1 Policy Components: Relationship to an Application Domain
8-2 The Default wl_authen Resource Type Definition
8-3 Host Identifier Page
8-4 Pre-configured Kerberos Authentication Module
8-5 Pre-Configured LDAP Authentication Module
8-6 Pre-Configured X509 Authentication Module
8-7 Default LDAPScheme Page
9-1 Application-Specific Components of the OAM Policy Model
9-2 Application Domain Generated using the Administration Console
9-3 Default Resource Definition in the Application Domain
9-4 Default Authentication Policy for Protected Resources
9-5 Default Authorization Policy for Protecting Resources
9-6 Fresh Application Domains General Page
9-7 Application Domains Navigation Tree
9-8 Resources Page in an Application Domain
9-9 Authentication Policy Page: IDMDomainAgent
9-10 Authorization Policy Page: IDMDomainAgent
9-11 Authorization Policy Response in the Administration Console
9-12 Simple Response Samples
9-13 Sample Complex Responses
9-14 Authorization Policy Page, General Details
9-15 Add Constraint Window
9-16 Constraint Containers on the Authorization Policy Page
9-17 Identity Class Constraint Details: Selected User and Groups Table
9-18 Identity Class Add User Population Entries Window
9-19 Selected User and Groups Window
9-20 IP4Range Class Constraints
9-21 Temporal Constraint Class Details Page
9-22 Common SSO Engine Settings
10-1 OAM Agent (PEP) and OAM Server (PDP) Interoperability
10-2 User Interactions with the Access Tester
10-3 Access Tester Console
10-4 Server Connection Panel in the Access Tester
10-5 Protected Resource URI Panel in the Access Tester
10-6 Access Tester User Identity Panel
10-7 Test Case Workflow
12-1 Session Data and the Role of Oracle Coherence
12-2 Session Tab under OAM Server Common Properties
12-3 Session Management Page, under System Utilities
14-1 Audit to Database Architecture
14-2 Server Common Properties - Auditing
15-1 OAM 10g Agent Monitoring Page
15-2 Detached OAM 10g Agent Connection Table
15-3 Detached OAM 10g Agent Operations Overview Table
15-4 Detached OAM 10g Agent Operations Overview Table
15-5 Detached OAM 10g Agent Information Table
15-6 OSSO 10g Agent Monitoring Page with Operation Details
15-7 OSSO 10g Agent Monitoring Process Overview Table Detached
15-8 OSSO 10g Agent Information Table Detached
16-1 Fusion Middleware Control (AS-Control) Deployment Architecture
16-2 Fusion Middleware Control Login Page with Help Topics
16-3 OAM Farm Page in Fusion Middleware Control
16-4 Farm Navigation Tree in Fusion Middleware Control
16-5 Node Information Page in Fusion Middleware Control
16-6 Application Deployment Summary for the Selected Internal Application
16-7 Application Deployment Menu
16-8 WebLogic Server Domain Summary with Context Menu Exposed
16-9 Oracle Access Manager Cluster Performance Overview
16-10 Performance Summary Page with Metric Palette
16-11 Log Level Configuration Tab
16-12 Log Files Configuration Page
16-13 Typical Log Messages Page in Fusion Middleware Control
16-14 System MBean Browser and Attributes Tab
16-15 Routing Topology with Context Menu
A-1 Source and Target processing
A-2 Dependency Tree for Each Application Domain
B-1 Pre-Upgrade OSSO 10g Topology
B-2 Pre-Upgrade Sample OSSO 10g with Front-End Proxy
B-3 Post-Upgrade OSSO 10g Topology
B-4 mod_wl Replaces mod_oc4j on the Proxy Server
B-5 Typical Topology Without Proxy Server
B-6 Co-existence Processing
B-7 Co-existence and OSSO 10g Authentication
B-8 OSSO Agent Configuration Named for One Application
B-9 OSSO Agent Configuration Named for the Second Application
B-10 OSSO Agent Configuration Named for the Third Application
B-11 Host Identifier for migratedSSOPartners
B-12 Resources in the migratedSSOPartners Application Domain
B-13 Authentication Policy for the Application Domain migratedSSOPartners
E-1 Communication Channels for OAM Servers and WebGates
G-1 IPv6 with OAM 11g and Challenge Redirect
Scripting on this page enhances content navigation, but does not change the content in any way.