10.2 Understanding OIF Deployments

When you configure Oracle Identity Federation (OIF) 11g Release 1 (11.1.1), a WebLogic Managed Server is created and the Oracle Identity Federation J2EE application is installed on it. If you configure Oracle Identity Federation in a new Oracle WebLogic Server administration domain by selecting the Create Domain option, the Fusion Middleware Control management component is also deployed.

Oracle Identity Federation functionality depends on several components and modules. You can integrate and configure these components and modules during or after the Oracle Identity Federation installation.

The following is a list and brief description of some of the components and modules that determine Oracle Identity Federation functionality. Refer to the Oracle Fusion Middleware Administrator's Guide for Oracle Identity Federation for complete information.

  • Authentication Engine: The module that challenges users when they log in.

  • User Data Store: The repository containing the identity information of the users the Oracle Identity Federation system authenticates.

  • Federation Data Store: The repository containing federated user account linking data.

  • Service Provider (SP) Integration Engine: The module that creates a local authenticated session for the user based on a received federated Single Sign-On (SSO) token.

  • User Session Store and Message Store: The repository containing transient runtime session state data and protocol messages.

  • Configuration Data Store: The repository containing Oracle Identity Federation configuration data.