1/26
Contents
List of Figures
List of Tables
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Conventions
1
Enterprise Deployment Overview
1.1
What is an Enterprise Deployment?
1.2
Terminology
1.3
Benefits of Oracle Recommendations
1.3.1
Built-in Security
1.3.2
High Availability
1.4
The Enterprise Deployment Reference Topologies
1.4.1
Oracle Access Manager 11g
1.4.2
Oracle Access Manager 11g and Oracle Identity Manager 11g
1.4.3
Oracle Adaptive Access Manager 11g
1.4.4
Oracle Identity Federation 11g
1.5
Understanding the Topology Tiers
1.5.1
Understanding the Directory Tier
1.5.2
Understanding the Application Tier
1.5.2.1
Architecture Notes
1.5.2.2
High Availability Provisions
1.5.2.3
Security Provisions
1.5.3
Understanding the Web Tier
1.5.3.1
Architecture Notes
1.5.3.2
Security Provisions
1.6
Using This Guide
2
Prerequisites for Enterprise Deployments
2.1
Hardware Resource Planning
2.2
Network Prerequisites
2.2.1
Load Balancers
2.2.2
Configuring Virtual Server Names and Ports on the Load Balancer
2.2.3
Virtual IP Addresses
2.2.4
Managing Oracle Fusion Middleware Component Connections
2.2.5
Oracle Access Manager Communication Protocol and Terminology
2.2.5.1
Oracle Access Manager Protocols
2.2.5.2
Overview of User Request
2.2.6
Firewall and Port Configuration
2.3
WebLogic Domain Considerations
2.4
Shared Storage and Recommended Directory Structure
2.4.1
Directory Structure Terminology and Environment Variables
2.4.2
Recommended Locations for the Different Directories
3
Configuring the Database Repositories
3.1
Real Application Clusters
3.2
Configuring the Database for Oracle Fusion Middleware 11
g
Metadata
3.2.1
Creating a Real Applications Clusters Database
3.2.2
Creating Database Services for 10.x and 11.1.x Databases
3.2.3
Creating Database Services for 11.2.x Databases
3.2.4
Database Tuning
3.3
Executing the Repository Creation Utility
3.3.1
Procedure for Executing RCU
3.3.2
RCU Example
4
Installing the Software
4.1
Introduction
4.2
Using this Guide
4.3
Software Installation Summary
4.4
Installing Oracle HTTP Server
4.4.1
Prerequisites
4.4.1.1
Check Port 7777
4.4.1.2
Check oraInst.loc
4.4.2
Installation
4.4.3
Upgrading Oracle HTTP Server from 11.1.1.2 to 11.1.1.5
4.5
Installing Oracle Fusion Middleware
4.5.1
Installing Oracle Fusion Middleware Components
4.5.2
Installing Oracle Fusion Middleware Home
4.5.3
Installing JRockit
4.5.4
Installing Oracle WebLogic Server
4.5.4.1
General Prerequisites for Installing WebLogic
4.5.4.2
Invoking the WebLogic Installer
4.5.4.3
Installing Oracle WebLogic Server
4.5.5
Installing Oracle Identity Management
4.5.6
Upgrading the Oracle Homes for Oracle Identity Management from 11.1.1.2 to 11.1.1.5
4.5.7
Installing the Oracle SOA Suite
4.5.8
Installing Oracle Identity and Access Management
4.6
Applying Patches and Workarounds
4.6.1
Patching the Oracle Database
4.6.1.1
Patch Requirements for Oracle Database 11g (11.1.0.7)
4.6.1.2
Patch Requirements for Oracle Database 11g (11.2.0.2.0)
4.6.2
Patches for Fusion Middleware
4.6.3
Provisioning the OIM Login Modules Under the WebLogic Server Library Directory
4.6.4
Creating the wlfullclient.jar File
4.7
Backing Up the Installation
5
Configuring the Web Tier
5.1
Configuring the Oracle Web Tier
5.1.1
Configuring the HTTP Server
5.1.2
Validating the Installation
5.2
Configuring Virtual Hosts
5.3
Configuring Oracle HTTP Server to Run as Software Owner
5.4
Validating the Installation
5.5
Backing up the Web Tier Configuration
6
Creating the WebLogic Server Domain for Identity Management
6.1
Enabling ADMINVHN on IDMHOST1
6.2
Running the Configuration Wizard on IDMHOST1 to Create a Domain
6.3
Creating boot.properties for the WebLogic Administration Server on IDMHOST1
6.4
Starting Node Manager on IDMHOST1
6.5
Updating the Node Manager Credentials
6.6
Validating the WebLogic Administration Server
6.7
Disabling Host Name Verification for the Oracle WebLogic Administration Server
6.8
Stopping and Starting the WebLogic Administration Server
6.9
Configuring Oracle HTTP Server for the WebLogic Administration Server
6.10
Registering Oracle HTTP Server with WebLogic Server
6.11
Setting the Front End URL for the Administration Console
6.12
Enabling WebLogic Plug-in
6.13
Validating Access Through Oracle HTTP Server
6.14
Manually Failing Over the WebLogic Administration Server
6.14.1
Failing over the Administration Server to IDMHOST2
6.14.2
Starting the Administration Server on IDMHOST2
6.14.3
Validating Access to IDMHOST2 Through Oracle HTTP Server
6.14.4
Failing the Administration Server Back to IDMHOST1
6.15
Backing Up the WebLogic Domain
7
Extending the Domain with Oracle Internet Directory
7.1
Identity Store and Policy Store in Oracle Internet Directory
7.2
Prerequisites for Configuring Oracle Identity Directory Instances
7.3
Configuring the Oracle Internet Directory Instances
7.3.1
Configuring the First Oracle Internet Directory Instance
7.3.2
Configuring an Additional Oracle Internet Directory Instance
7.4
Post-Configuration Steps
7.4.1
Registering Oracle Internet Directory with the WebLogic Server Domain
7.4.2
Considering Oracle Internet Directory Password Policies
7.5
Validating the Oracle Internet Directory Instances
7.6
Tuning Oracle Internet Directory
7.7
Backing up the Oracle Internet Directory Configuration
8
Extending the Domain with Oracle Directory Integration Platform and ODSM
8.1
Extending the Oracle WebLogic Domain with Oracle Directory Integration Platform and ODSM
8.2
Expanding the Oracle Directory Integration Platform and ODSM Cluster
8.2.1
Installing and Configuring Oracle Directory Integration Platform and ODSM on IDMHOST2
8.2.2
Post-Installation Step: Copying Oracle Directory Integration Platform to wls_ods2
8.2.3
Configure the Enterprise Manager Agents
8.3
Provisioning the Managed Servers in the Managed Server Directory
8.4
Configuring ODSM to work with the Oracle Web Tier
8.4.1
Prerequisites
8.4.2
Configuring Oracle HTTP Servers to Access the ODSM Console
8.5
Validating the Application Tier Configuration
8.5.1
Validating Oracle Directory Services Manager
8.5.2
Validating Oracle Directory Integration Platform
8.6
Backing Up the Application Tier Configuration
9
Extending the Domain with Oracle Virtual Directory
9.1
Prerequisites for Configuring Oracle Virtual Directory Instances
9.2
When to use Oracle Virtual Directory
9.3
Configuring the Oracle Virtual Directory Instances
9.3.1
Configuring the First Oracle Virtual Directory Instance
9.3.2
Configuring an Additional Oracle Virtual Directory
9.4
Post-Configuration Steps
9.4.1
Registering Oracle Virtual Directory with the Oracle WebLogic Server Domain
9.5
Disable Oracle Virtual Directory Listener SSL NIO
9.6
Validating the Oracle Virtual Directory Instances
9.7
Creating ODSM Connections to Oracle Virtual Directory
9.8
Creating Adapters in Oracle Virtual Directory
9.8.1
Creating Adapters for Oracle Internet Directory
9.8.1.1
User Adapter for Oracle Internet Directory
9.8.1.2
Changelog Adapter for Oracle Internet Directory
9.8.2
Creating Adapters for Microsoft Active Directory Server
9.8.2.1
User Adapter for Active Directory
9.8.2.2
Changelog Adapter for Active Directory
9.8.3
Creating Adapters for Oracle Directory Server Enterprise Edition or Sun Java System Directory Server
9.8.3.1
User Adapter for ODSEE
9.8.3.2
Changelog Adapter for ODSEE
9.8.4
Validating the Oracle Virtual Directory Adapters
9.9
Tuning Oracle Virtual Directory
9.10
Backing Up the Oracle Virtual Directory Configuration
10
Preparing Identity and Policy Stores
10.1
Backing up the LDAP Directories
10.2
Prerequisites
10.3
Preparing the OPSS Policy Store
10.3.1
Creating Policy Store Users and the Policy Container
10.3.2
Reassociating the Policy and Credential Store
10.4
Preparing the Identity Store
10.4.1
Extending Directory Schema for Oracle Access Manager
10.4.2
Creating Users and Groups for Oracle Access Manager
10.4.3
Creating Users and Groups for Oracle Adaptive Access Manager
10.4.4
Creating Users and Groups for Oracle Identity Manager
10.4.5
Creating Users and Groups for Oracle WebLogic Server
10.4.6
Disable Anonymous Binds to Oracle Virtual Directory LDAP Ports
10.4.7
Set Up Oracle Virtual Directory–Oracle Identity Manager Access Control Lists
10.4.8
Creating Access Control Lists in Non-Oracle Internet Directory Directories
10.4.9
Updating Oracle Virtual Directory Adapters
11
Extending the Domain with Oracle Access Manager 11g
11.1
Introduction to Installing Oracle Access Manager
11.1.1
Using Different LDAP Directory Stores
11.1.2
Using Oracle Virtual Directory as the Identity Store
11.2
Prerequisites
11.3
Configuring Oracle Access Manager on IDMHOST1
11.3.1
Extending Domain with Oracle Access Manager
11.3.2
Removing IDM Domain Agent
11.3.3
Propagating the Domain Changes to the Managed Server Domain Directory
11.4
Configuring Oracle Access Manager on IDMHOST2
11.4.1
Deploying Oracle Access Manager on IDMHOST2
11.4.2
Updating Node Manager Properties File on IDMHOST2
11.4.3
Starting Oracle Access Manager Server on IDMHOST2
11.5
Configuring Oracle Access Manager to work with the Oracle Web Tier
11.5.1
Prerequisites
11.5.2
Configuring Oracle HTTP Servers to Display Login Page
11.5.3
Configuring Oracle HTTP Servers to Access Oracle Access Manager Console
11.5.4
Validating Accessibility
11.6
Configuring Oracle Access Manager
11.6.1
Changing Oracle Access Manager Security Model
11.6.2
Configuring Oracle Access Manager by Using the IDM Automation Tool
11.6.3
Configuring Oracle Access Manager for Multidirectory Support
11.6.4
Validating the Configuration
11.7
Updating Newly-Created Agent
11.8
Changing the Login Attribute.
11.9
Adding the oamadmin Account to Access System Administrators
11.10
Validating Oracle Access Manager
11.11
Creating Oracle Access Manager Key Store
11.11.1
Creating an Empty Trust Store File Named oamclient-truststore.jks
11.11.2
Importing the CA Certificate into the Trust Store
11.11.3
Setting up Keystore with the SSL Certificate and Private Key file of the Access Client
11.12
Backing Up the Application Tier Configuration
11.13
Create a Protected Resource for Oracle Identity Navigator
12
Extending the Domain with Oracle Adaptive Access Manager
12.1
Prerequisites
12.2
Configuring Oracle Adaptive Access Manager on IDMHOST1
12.2.1
Extending Domain for Oracle Adaptive Access Manager
12.2.2
Starting Administration Server on IDMHOST1
12.2.3
Creating OAAM Administration User in WebLogic Console
12.2.4
Configuring Oracle Adaptive Access Manager on OAAMHOST1
12.3
Starting and Validating OAAMHOST1
12.3.1
Creating Node Manager Properties File on OAAMHOST1
12.3.2
Starting Oracle Adaptive Access Manager on OAAMHOST1
12.3.3
Validating OAAMHOST1
12.4
Configuring Oracle Adaptive Access Manager on OAAMHOST2
12.4.1
Deploying Domain on OAAMHOST2
12.4.2
Starting OAAMHOST2
12.4.2.1
Creating Node Manager Properties File on OAAMHOST2
12.4.2.2
Starting Oracle Adaptive Access Manager on OAAMHOST2
12.4.3
Validating OAAMHOST2
12.5
Configuring OAAM to Work with the Oracle HTTP Server
12.5.1
Updating Oracle HTTP Server Configuration
12.5.2
Restarting Oracle HTTP Server
12.5.3
Changing Host Assertion in WebLogic
12.5.4
Validating Oracle Adaptive Access Manager
12.6
Loading Oracle Adaptive Access Manager Seed Data
12.7
Backing Up the Application Tier Configuration
13
Extending the Domain with Oracle Identity Navigator
13.1
Extending the Domain with Oracle Identity Navigator
13.1.1
Prerequisites
13.1.2
Configuring Oracle Identity Navigator on IDMHOST1
13.1.3
Stopping and Starting the Administration Server IDMHOST1
13.1.4
Provisioning Oracle Identity Navigator on IDMHOST1
13.1.5
Configuring Oracle HTTP Servers to Access OIN Console
13.1.6
Validating Oracle Identity Navigator
13.2
Backing Up the Application Tier Configuration
14
Extending the Domain with Oracle Identity Manager
14.1
Prerequisites
14.2
Enabling Virtual IP Addresses on OIMHOST1 and OIMHOST2
14.3
Extending the Domain to Configure Oracle Identity Manager and Oracle SOA Suite on IDMHOST1
14.4
Configuring Oracle Identity Manager on IDMHOST1
14.5
Propagating the Oracle Identity Manager and SOA Managed Servers to OIMHOST1 and OIMHOST2
14.6
Post-Installation Steps on OIMHOST1
14.6.1
Updating the Coherence Configuration for the SOA Managed Server
14.6.2
Starting the WLS_OIM1 and WLS_SOA1 Managed Servers on OIMHOST1
14.6.3
Validating Oracle Identity Manager Instance on OIMHOST1
14.7
Post-Installation Steps on OIMHOST2
14.7.1
Starting Node Manager on OIMHOST2
14.7.2
Starting the WLS_OIM2 and WLS_SOA2 Managed Servers on OIMHOST2
14.7.3
Validating Oracle Identity Manager Instance on OIMHOST2
14.8
Modifying the Oracle Identity Manager Default System Properties for UserName Generation
14.9
Configuring Oracle Identity Manager to Reconcile from ID Store
14.10
Configuring Oracle Identity Manager to Work with the Oracle Web Tier
14.10.1
Prerequisites
14.10.2
Configuring Oracle HTTP Servers to Front End the Oracle Identity Manager and SOA Managed Servers
14.10.3
Changing Host Assertion in WebLogic
14.10.4
Validating Oracle Identity Manager Instance from the WebTier
14.11
Configuring a Default Persistence Store for Transaction Recovery
14.12
Configuring an IT Resource Instance for Email
14.13
Enabling Oracle Identity Manager to Connect to SOA Using the Administrative Users Provisioned in LDAP
14.14
Updating the Username Generation Policy for Active Directory
14.15
Update Oracle Identity Manager JMS Queues
14.16
Tuning Oracle Platform Security
14.17
Provisioning Users to the Enterprise Identity Store in a Multidirectory Scenario
14.17.1
Creating and Importing New Rules
14.17.2
Updating IT Resource for Oracle Identity Manager Integration
14.17.3
Updating the Incremental Reconciliation Changelog Number
14.18
Backing Up the Application Tier Configuration
15
Extending the Domain with Oracle Identity Federation
15.1
Prerequisites
15.2
Configuring Oracle Identity Federation on OIFHOST1
15.3
Configuring Oracle Identity Federation on OIFHOST2
15.4
Provisioning the Managed Servers on the Local Disk
15.5
Validating Oracle Identity Federation
15.6
Configure the Enterprise Manager Agents
15.7
Enabling Oracle Identity Federation Integration with LDAP Servers
15.8
Configuring Oracle Identity Federation to work with the Oracle Web Tier
15.8.1
Prerequisites
15.8.2
Making Oracle Identity Federation aware of the Load Balancer
15.8.3
Configuring Oracle HTTP Servers To Front End the Oracle Identity Federation Managed Servers
15.9
Validating Oracle Identity Federation
15.10
Backing Up the Application Tier Configuration
16
Setting Up Node Manager
16.1
About Setting Up Node Manager
16.2
Changing the Location of the Node Manager Log
16.3
Enabling Host Name Verification Certificates for Node Manager
16.3.1
Generating Self-Signed Certificates Using the utils.CertGen Utility
16.3.2
Creating an Identity Keystore Using the utils.ImportPrivateKey Utility
16.3.3
Creating a Trust Keystore Using the Keytool Utility
16.3.4
Configuring Node Manager to Use the Custom Keystores
16.3.5
Starting Node Manager
16.3.6
Configuring Managed WebLogic Servers to Use the Custom Keystores
16.3.7
Changing the Host Name Verification Setting for the Managed Servers
17
Configuring Server Migration for Oracle Identity Manager
17.1
Setting Up a User and Tablespace for the Server Migration Leasing Table
17.2
Creating a Multi Data Source Using the Oracle WebLogic Administration Console
17.3
Editing Node Manager's Properties File
17.4
Setting Environment and Superuser Privileges for the wlsifconfig.sh Script
17.5
Configuring Server Migration Targets
17.6
Testing the Server Migration
18
Integrating Components
18.1
Integrating Oracle Identity Manager and Oracle Access Manager 11g
18.1.1
Prerequisites
18.1.2
Copying OAM Keystore Files to OIMHOST1 and OIMHOST2
18.1.3
Configuring Oracle Access Manager for Oracle Identity Manager Integration
18.1.4
Updating Existing LDAP Users with Required Object Classes
18.1.5
Integrating Oracle Access Manager 11
g
with Oracle Identity Manager 11
g
18.1.5.1
Remove Security Providers
18.1.5.2
Integrating Oracle Access Manager with Oracle Identity Manager by Using idmConfigTool
18.1.6
Updating Oracle Virtual Directory Authenticator
18.1.7
Manually Creating CSF Keys
18.1.8
Managing the Password of the xelsysadm User
18.1.9
Validating Integration
18.2
Integrating Oracle Adaptive Access Manager with Oracle Access Manager 11
g
18.2.1
Prerequisites
18.2.2
Copying OAM Keystore Files to OAAMHOST1 and OAAMHOST2
18.2.3
Registering OAAM as a Third Party Application
18.2.4
Adding Password to IAMSuiteAgent Profile
18.2.5
Validation
18.2.6
Setting OAAM properties for Oracle Access Manager
18.2.7
Updating Secondary Host Parameter
18.2.8
Validating OAAM-Oracle Access Manager Integration
18.2.8.1
Creating Oracle Adaptive Access Manager Policy Groups
18.2.8.2
Creating a Resource in Oracle Access Manager
18.2.8.3
Moving TAP Resource to TAP Policy
18.2.8.4
Validating Oracle Adaptive Access Manager
18.3
Integrating Oracle Adaptive Access Manager 11
g
with Oracle Identity Manager 11
g
18.3.1
Prerequisites
18.3.2
Configuring Oracle Identity Manager Encryption Keys in CSF
18.3.3
Setting OAAM properties for Oracle Identity Manager
18.3.4
Setting Oracle Identity Manager properties for OAAM
18.3.5
Changing Domain to TAP Scheme Protection
18.3.6
Restarting Oracle Adaptive Access Manager and Oracle Identity Manager
18.3.7
Validating Oracle Identity Manager-OAAM Integration
18.4
Integrating Oracle Identity Federation with Oracle Access Manager 11
g
18.4.1
Prerequisites
18.4.2
Integrating Oracle Identity Federation with Oracle Access Manager in Authentication Mode
18.4.2.1
Creating an Authorization Policy in Oracle Access Manager
18.4.2.2
Creating a Resource in Oracle Access Manager
18.4.2.3
Configuring the Oracle Access Manager Authentication Engine
18.4.2.4
Configuring the OSSO SP Engine
18.4.3
Integrating Oracle Identity Federation with Oracle Access Manager in SP Mode
18.4.3.1
Configuring the OSSO SP Engine
18.4.3.2
Updating the Oracle Identity Federation Authentication Scheme in Oracle Access Manager
18.4.3.3
Creating an Oracle Identity Federation Authentication Policy in Oracle Access Manager
18.4.3.4
Creating a Test Page
18.4.3.5
Creating a Resource in Oracle Access Manager
18.4.3.6
Configuring Oracle Access Manager to Delegate Authentication to Oracle Identity Federation
18.4.4
Validating Oracle Identity Federation Integration with Oracle Access Manager
18.4.4.1
Generating Provider Metadata
18.4.4.2
Registering the Providers
18.4.4.3
Setting the Default Identity Provider
18.4.4.4
Updating the Default Authentication Engine to LDAP Engine
18.4.4.5
Updating the Default SSO Response Binding
18.4.4.6
Validating SP Mode Configuration
18.4.4.7
Updating the Default Authentication Engine to Oracle Access Manager
18.4.4.8
Validating Authentication Mode Configuration
18.5
Auditing Identity Management
19
Configuring Single Sign-on for Administration Consoles
19.1
Configuring Single Sign-On for Administration Consoles with Oracle Access Manager 11g
19.1.1
Prerequisites
19.1.2
Creating Oracle Directory Authenticator
19.1.3
Creating Oracle Access Manager Identity Asserter
19.2
Assigning IDM Administrators Group to Weblogic Administration Groups
19.3
Updating the boot.properties File
19.4
Restarting Servers
19.5
Installing and Configuring WebGate
19.5.1
Prerequisites
19.5.2
Making Special gcc Libraries Available
19.5.3
Installing Oracle WebGate on WEBHOST1 and WEBHOST2
19.5.3.1
Oracle WebGate 10
g
19.5.3.2
Copying Logout Page to OHS Servers
19.5.4
Patching the Oracle Access Manager 10
g
WebGates
19.5.5
Validating WebGate
19.5.6
Validating the Oracle Access Manager Single Sign-On Setup
20
Managing Enterprise Deployments
20.1
Starting and Stopping Oracle Identity Management Components
20.1.1
Startup Order
20.1.2
Starting and Stopping Oracle Virtual Directory
20.1.2.1
Starting Oracle Virtual Directory
20.1.2.2
Stopping Oracle Virtual Directory
20.1.3
Starting and Stopping Oracle Internet Directory
20.1.3.1
Starting Oracle Internet Directory
20.1.3.2
Stopping Oracle Internet Directory
20.1.4
Starting, Stopping, and Restarting Oracle HTTP Server
20.1.4.1
Starting Oracle HTTP Server
20.1.4.2
Stopping Oracle HTTP Server
20.1.4.3
Restarting Oracle HTTP Server
20.1.5
Starting and Stopping Node Manager
20.1.5.1
Starting Node Manager
20.1.5.2
Stopping Node Manager
20.1.5.3
Starting Node Manager for an Administration Server
20.1.6
Starting, Stopping, and Restarting WebLogic Administration Server
20.1.6.1
Starting WebLogic Administration Server
20.1.6.2
Stopping WebLogic Administration Server
20.1.6.3
Restarting WebLogic Administration Server
20.1.7
Starting, Stopping, and Restarting Oracle Identity Manager
20.1.7.1
Starting Oracle Identity Manager
20.1.7.2
Stopping Oracle Identity Manager
20.1.7.3
Restarting Oracle Identity Manager
20.1.8
Starting, Stopping, and Restarting Oracle Access Manager Managed Servers
20.1.8.1
Starting Oracle Access Manager Managed Servers
20.1.8.2
Stopping Oracle Access Manager Managed Servers
20.1.8.3
Restarting Oracle Access Manager Managed Servers
20.1.9
Starting, Stopping, and Restarting Oracle Adaptive Access Manager Managed Servers
20.1.9.1
Starting Oracle Adaptive Access Manager Managed Servers
20.1.9.2
Stopping Oracle Adaptive Access Manager Managed Servers
20.1.9.3
Restarting Oracle Adaptive Access Manager Managed Servers
20.1.10
Starting and Stopping Oracle Identity Federation Managed Servers
20.1.10.1
Starting Oracle Identity Federation
20.1.10.2
Stopping Oracle Identity Federation
20.1.10.3
Restarting Oracle Identity Federation
20.1.10.4
Starting the Oracle Identity Federation Instances and EMAgent
20.1.10.5
Stopping the Oracle Identity Federation Instances and EMAgent
20.2
Monitoring Enterprise Deployments
20.2.1
Monitoring Oracle Internet Directory
20.2.1.1
Oracle Internet Directory Component Names Assigned by Oracle Identity Manager Installer
20.2.2
Monitoring Oracle Virtual Directory
20.2.3
Monitoring Oracle Directory Integration Platform
20.2.4
Monitoring WebLogic Managed Servers
20.3
Scaling Enterprise Deployments
20.3.1
Scaling Up the Topology
20.3.1.1
Scaling Up the Directory Tier
20.3.1.1.1
Scaling Up Oracle Internet Directory
20.3.1.1.2
Scaling Up Oracle Virtual Directory
20.3.1.2
Scaling Up the Application Tier
20.3.1.2.1
Scaling Up Oracle Directory Integration Platform and ODSM
20.3.1.2.2
Scaling Up Oracle Access Manager 11g
20.3.1.2.3
Scaling Up Oracle Adaptive Access Manager
20.3.1.2.4
Scaling Up Oracle Identity Manager (Adding Managed Servers to Existing Nodes)
20.3.1.3
Scaling Up Oracle Identity Federation
20.3.1.4
Scaling Up the Web Tier
20.3.2
Scaling Out the Topology
20.3.2.1
Scaling Out the Directory Tier
20.3.2.1.1
Scaling Out Oracle Internet Directory
20.3.2.1.2
Scaling Out Oracle Virtual Directory
20.3.2.2
Scaling Out the Application Tier
20.3.2.2.1
Scaling Out Oracle Identity Federation
20.3.2.2.2
Scaling Out Oracle Directory Integration Platform and ODSM
20.3.2.2.3
Scaling Out Oracle Access Manager 11g
20.3.2.2.4
Scaling Out Oracle Adaptive Access Manager
20.3.2.2.5
Scaling Out Oracle Identity Manager (Adding Managed Servers to New Nodes)
20.3.2.3
Scaling Out the Web Tier
20.4
Performing Backups and Recoveries
20.5
Patching Enterprise Deployments
20.5.1
Patching an Oracle Fusion Middleware Source File
20.5.2
Patching Identity Management Components
20.6
Troubleshooting
20.6.1
Troubleshooting Oracle Internet Directory
20.6.2
Troubleshooting Oracle Virtual Directory
20.6.3
Troubleshooting Oracle Directory Integration Platform
20.6.4
Troubleshooting Oracle Directory Services Manager
20.6.5
Troubleshooting Oracle Access Manager 11g
20.6.5.1
User Reaches the Maximum Allowed Number of Sessions
20.6.5.2
Policies Do Not Get Created When Oracle Access Manager is First Installed
20.6.5.3
You Are Not Prompted for Credentials After Accessing a Protected Resource
20.6.6
Troubleshooting Oracle Identity Manager
20.6.7
Troubleshooting Oracle Identity Federation
20.7
Other Recommendations
20.7.1
Preventing Timeouts for SQL*Net Connections
Index
Scripting on this page enhances content navigation, but does not change the content in any way.