Because of integrated deployment of Oracle Adaptive Access Manager with other applications, Oracle Virtual Directory, Oracle Identity Manager, Oracle Access Manager, Oracle Internet Directory, and configuration changes in those applications, various configuration changes might be required in Oracle Adaptive Access Manager. Instructions for handling such types of configuration changes are described in this chapter:
Oracle Virtual Directory (OVD) Host, Port, and SSL Enablement Changes
Oracle Internet Directory (OID) Host and Port Changes and SSL Enablement
References are also provided for moving Oracle Adaptive Access Manager from a test environment to a production environment:
Moving Oracle Adaptive Access Manager to a New Production Environment
Moving Oracle Adaptive Access Manager to an Existing Production Environment
To change the Oracle Virtual Directory host, port, and SSL enablement:
Start the Oracle Adaptive Access Manager server-related managed server.
Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin
.
Log in as a user with access to the Properties Editor.
Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:
Change the password authentication provider to LDAP
Rewire existing Oracle Adaptive Access Manager for Oracle Virtual Directory hostname
Rewire existing Oracle Adaptive Access Manager for Oracle Virtual Directory port changes
Rewire existing Oracle Adaptive Access Manager for SSL Enablement of Oracle Virtual Directory (Change Plain Text Communication to SSL for wiring between Oracle Adaptive Access Manager and Oracle Virtual Directory)
Table 18-1 Configuring Oracle Directory Manager Property Values
Property Name | Property Values |
---|---|
bharosa.uio.default.password.auth.provider.classname |
com.bharosa.vcrypt.services.LDAPOAAMAuthProvider |
oaam.uio.ldap.host |
<OVD host> For example, host.oracle.com |
oaam.uio.ldap.port |
<OVD port> |
oaam.uio.ldap.userdn.template |
<User Search DN> For example, uid= {USER_ID}, cn=user,dc=us,dc=oracle,dc=com. |
oaam.uio.ldap.isSSL |
false |
For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.
Restart the Oracle Adaptive Access Manager server-related managed server.
Follow these steps to rewire an existing deployment of Oracle Adaptive Access Manager with Oracle Identity Manager:
Start the Oracle Adaptive Access Manager server-related managed server.
Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin
.
Log in as a user with access to the Properties Editor.
Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:
Rewire existing Oracle Adaptive Access Manager for password flow
Rewire existing Oracle Adaptive Access Manager for other redirection
Table 18-2 Configuring Oracle Identity Manager Property Values
Property Name | Property Values |
---|---|
oaam.oim.url |
t3://<OIM Managed Server>:<OIM Managed Port> For example, t3://host.oracle.com:14000 |
bharosa.uio.default.signon.links.enum.selfregistration.url |
where OHS setup was performed during the integration between Oracle Access Manager and Oracle Identity Manager. |
bharosa.uio.default.signon.links.enum.trackregistration.url |
where OHS setup was performed during the integration between Oracle Access Manager and Oracle Identity Manager. |
For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.
Restart the Oracle Adaptive Access Manager server-related managed server.
For information on rewiring Oracle Access Manager for Oracle Adaptive Access Manager hostname and port changes, refer to the Oracle Fusion Middleware Administrator's Guide for Oracle Access Manager with Oracle Security Token Service.
Follow these steps to change the Oracle Internet Directory Host, Port and SSL enablement in an existing deployment of Oracle Adaptive Access Manager:
Start the Oracle Adaptive Access Manager server-related managed server.
Go to OAAM Admin at http://<OAAM Managed Server Host>:<OAAM Admin Managed Server Port>/oaam_admin
.
Log in as a user with access to the Properties Editor.
Open the Oracle Adaptive Access Manager Property Editor to modify parameters to:
Change the password authentication provider to LDAP
Rewire existing Oracle Adaptive Access Manager for Oracle Internet Directory hostname
Rewire existing Oracle Adaptive Access Manager for Oracle Internet Directory port changes
Rewire existing Oracle Adaptive Access Manager for SSL Enablement of Oracle Internet Directory (Change Plain Text Communication to SSL for wiring between Oracle Adaptive Access Manager and Oracle Internet Directory)
Table 18-3 Configuring Oracle Directory Manager Property Values
Property Name | Property Values |
---|---|
bharosa.uio.default.password.auth.provider.classname |
com.bharosa.vcrypt.services.LDAPOAAMAuthProvider |
oaam.uio.ldap.host |
<OID host> For example, host.oracle.com |
oaam.uio.ldap.port |
<OID port> |
oaam.uio.ldap.userdn.template |
<User Search DN> For example, uid= {USER_ID}, cn=user,dc=us,dc=oracle,dc=com. |
oaam.uio.ldap.isSSL |
false |
For information on setting properties in Oracle Adaptive Access Manager, see "Using the Property Editor" in Oracle Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager.
Restart the Oracle Adaptive Access Manager server-related managed server.
After installing Oracle Adaptive Access Manager, if there are any changes in the database host or port number, follow these instructions:
Go to the ORACLE_HOME of the database.
Change the port number in ORACLE_HOME /network/admin/listener.ora
.
Stop and then restart the Oracle listener.
Change the database pointer in the data sources screen in the Weblogic Administration Console
To changes the data source:
In the WebLogic Administrative Console, navigate to Services, select JDBC, select Data Sources, and then oaamDS.
Click oaamDS and edit it for hostname/port or user name/password.
For information on moving Oracle Adaptive Access Manager to a new production environment, see "Moving Identity Management to a New Production Environment" in Oracle Fusion Middleware Administrator's Guide.
For information on moving Oracle Adaptive Access Manager to an existing production environment, see " Moving Identity Management to an Existing Production Environment" in Oracle Fusion Middleware Administrator's Guide.