Oracle® Fusion Middleware Administrator's Guide for Oracle WebCenter Interaction 10g Release 4 (10.3.3.0.0) Part Number E14107-05 |
|
|
View PDF |
This chapter provides an overview of portal components, the portal user interface, and portal security.
It includes the following sections:
The following table describes the components available in the portal installer. For information on installing these components, refer to the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Windows or the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Unix and Linux.
Component | Description |
---|---|
Administrative Portal |
The administrative portal handles portal setup, configuration, and content. It enables administrative functions, such as creating and managing portlets and other Web services. |
Portal |
The portal serves end user portal pages and content. It enables end users to access portal content through My Pages, community pages, the Knowledge Directory, and search. The portal also enables some administrative actions, such as setting preferences on portlets or managing communities. |
Portal Database (scripts) |
The scripts used to configure the database are included in the portal installer. The portal database stores portal objects, such as user and group configurations, document records, and administrative objects. The portal database does not store the documents available through your portal. Source documents are left in their original locations. |
Automation Service |
The Automation Service runs jobs and other automated portal tasks. You run jobs to perform tasks such as crawling documents into the Knowledge Directory, synchronizing groups and users with external authentication sources, and maintaining the search collection. |
API Service |
The API Service provides access to the SOAP API. |
Image Service |
The Image Service serves static content used or created by portal components. It serves images and other static content for use by the Oracle WebCenter Interaction system. Whenever you extend the base portal deployment to include additional components, such as portal servers or integration products, you may have to install additional Image Service files. For information on installing the Image Service files for those components, refer to the documentation included with the component software. |
Search |
The Search component indexes portal content such as documents, portlets, communities, and users as well as many other Oracle WebCenter objects. |
Document Repository Service |
The Document Repository Service stores content uploaded into the portal and Oracle WebCenter Collaboration. |
Content Upload Service |
The Content Upload Service lets you add files to the portal's Knowledge Directory by uploading them to the Document Repository Service, rather than leaving them in their original locations. This is useful if users must access documents located in an internal network from outside your network. |
Directory Service |
The Directory Service enables Oracle WebCenter Interaction to act as an LDAP server, exposing the user, group, and profile data in the portal database through an LDAP interface, enabling other Oracle WebCenter products (and other third-party applications) to authenticate users against the portal database. |
Remote Portlet Service |
The Remote Portlet Service includes the following components:
|
Notification Service |
The Notification Service enables the portal to send e-mail notifications to users upon specified events. There are no portal events that trigger notifications, but other Oracle WebCenter events do trigger notifications. For example, Oracle WebCenter Collaboration can be configured to send notifications to users when documents are uploaded. |
Tagging Engine Service |
The Tagging Engine is a collaborative information discovery and recovery system that provides personal and collective management of enterprise content, helping you more effectively locate, organize, and share information. You organize content by using tags, which are meaningful keywords that you and other people create and apply to items and people. If your administrator has enabled the auto-tagging feature, the system automatically tags items and people that fit the auto-tagging criteria. You can search for items and people by creating search queries that can include a combination of text, tags, and properties. Included with the Tagging Engine are several portlets to access tagging features: Tagging Engine Items, Tagging Engine People, Tagging Engine Search, Tagging Engine Tag Cloud, and Tagging Engine Results. |
Search Service |
The Search Service communicates tagging information between the portal, the Tagging Engine, and Oracle WebCenter Collaboration. It performs search queries and returns content to the requesting component (the Tagging Engine or Oracle WebCenter Collaboration). |
Content Services |
Content Services scan third-party systems/applications for new content, categorizing links to this content in the organized, searchable structure of the portal's Knowledge Directory. Users can then access this content through the portal user interface.
|
Identity Services |
Identity Services let you import users, groups, and user profile information from third-party user repositories into the portal. Identity Services also enable the portal to authenticate users through the third-party user repositories.
|
Development Tools |
|
.NET Integration Services |
Console for SharePoint (Windows deployments) Oracle WebCenter Console for Microsoft SharePoint imports, indexes, and returns Microsoft Windows Sharepoint Services resources through Oracle WebCenter Interaction Search. |
The following table describes components that provide additional functionality for the portal. For more information on these components or to download the components, visit the Oracle Support site at http://www.oracle.com/support/index.html
.
Component | Description |
---|---|
Activity Services |
Activity Services extend portal functionality to enable analysis, collaboration, publishing, and simple portlet creation.
|
Enterprise Social Computing Products |
Enterprise Social Computing Products provide tools that enable users to freely contribute and actively work together.
|
Developer Tools |
The following developer tools help you rapidly build applications through Oracle WebCenter Interaction:
|
This section provides an overview of the features available to browsing users. For details on these features, see the Oracle Fusion Middleware User's Guide for Oracle WebCenter Interaction.
This section includes the following topics:
There are several features available at the top of your portal that provide access to some basic portal functions (such as help and search).
Feature | Description |
---|---|
Greeting |
Lets you know that you are logged in as the correct user. By default your greeting is |
Administration |
Provides access to the Administrative Objects Directory, where you can create and manage portal objects and access portal utilities. Note: Administration appears only if you have the Access Administration activity right. |
My Account |
Lets you edit your user profile, display options, locale settings, and search preferences, as well as view your user profile and change your password. Note: You must have the Edit Own Profile activity right to be able to edit your user profile. |
Help |
Opens the help associated with the displayed page. |
Log Off |
Logs you out of your portal. |
Search box and button |
Let you search for documents, document folders, communities, community pages, portlets, and users in your portal. |
Top Best Bet icon |
Takes you directly to the top best bet result for the term you enter in the search box. If no top best bet has been set for the term, you will see the regular search results. Note: appears next to the search box only if enabled by portal developers. |
Advanced Search |
Lets you perform an advanced search by searching the portal for text or specific document properties. |
Federated Search |
Lets you perform a federated search (if any federated search resources have been configured by an administrative user) to search other content, portals, and Web search engines. Note: Federated Search appears only if enabled by portal developers. |
There are several menus available in the portal that provide access to information in your portal (such as communities and documents). Administrative users with the Create Experience Definition activity right and your portal developer control which menus appear, including custom menus.
Menu | Description |
---|---|
My Profile |
Lets you view your user profile. User profiles provide information about users, such as address and position. |
My Pages |
Provides access to your My Pages. My Pages are your personalized view of the portal. You choose the applications, tools, and services (in the form of portlets) to display on each My Page. For example, you might create a My Page that includes a search tool for all the employees in your company and a portlet that displays the most recent news about your company. |
My Communities |
Lets you view and manage the communities to which you belong. Communities are sites within a portal designed for a specific audience or task, such as collaborative projects. You might have communities based on departments in your company. For example, the Marketing department might have a community containing press information, leads volumes, a trade show calendar, and so on. The Engineering department might have a separate community containing project milestones, regulatory compliance requirements, and technical specifications. |
Directory |
Provides access to the Knowledge Directory. The Knowledge Directory is similar to a file system tree in that documents are organized in folders and subfolders. A folder can contain documents uploaded by users or imported by content crawlers, as well as links to people, portlets, and communities. If your administrator has given you permission, you might also be allowed to add documents to the Knowledge Directory, or submit yourself as an expert on a particular topic. |
You can direct users to one of their My Pages, to a community, to a user profile, to a Knowledge Directory folder, to a document, or to search results with a simple URL, referred to as a friendly URL.
To direct users to one of their My Pages, to a community, to a user profile, to a Knowledge Directory folder, or to a document, create a link in the following format: http://portal.company.com/portal/server.pt/object_token/object_name/object_id
Replace http://portal.company.com/portal/server.pt with the URL to your portal.
Replace object_token with the token for the type of object to which you are linking.
The default values are: mypage
, community
, user
, directory
, and document
, but you can customize them. For example, “directory” could instead be “folder.”
Replace object_name with the name of the object. Replace any spaces in My Page, community, user, or Knowledge Directory folder names with underscores (_); replace any spaces in document names with plus signs (+).
Replace object_id with the ID of the object.
Note:
Users must have at least Read access to the object to which you are directing them.
If an object cannot be found, the user will receive an error message.
If more than one object has the name specified in the link and an ID is not specified, the portal displays a list of objects with the same name and the user can select which one to view.
To direct users to search results, create a link in the following format: http://portal.company.com/portal/server.pt/search?q=search+term[&num=items]
Replace http://portal.company.com/portal/server.pt with the URL to your portal.
Replace search+term with the term you want to search for, replacing any spaces with plus signs (+).
You can optionally specify the number of results to display per page. To do so, include the num
element and replace items with the number of results you want to display per page.
The administrative user interface enables you to create and manage administrative objects and enables you to access portal utilities.
This section covers the following topics:
The following table describes the portal objects you can create through the Create Object list in the Administrative Objects Directory.
Object | Description |
---|---|
Administrative Folder |
Administrative folders provide a hierarchical structure that make it easy to organize portal objects and manage security. |
Authentication Source - Remote |
Authentication sources enable you to import users, groups, and group memberships that are already defined in your enterprise in existing user repositories, such as Active Directory or LDAP servers. After users are imported, you can authenticate them with the credentials from those user repositories. |
Community |
Communities are sites within a portal designed for a specific audience or task, such as collaborative projects. |
Community Template |
Community templates define the basic structure for the resulting communities, such as which page templates to include and, optionally, a header or footer for the community. |
Content Crawler - Remote |
Remote content crawlers enable you to import content from external content repositories such as a Windows NT file system, Documentum, Microsoft Exchange, or Lotus Notes. |
Content Crawler - WWW |
Web content crawlers enable you to import content from Web sites. |
Content Source - Remote |
Remote content sources provide access to external content repositories, such as a Windows NT file system, Documentum, Microsoft Exchange, or Lotus Notes. |
Content Source - WWW |
Web content sources provide access to Web sites. |
Content Type |
Content types specify several options — the source content format (such as Microsoft Office, Web page, or Lotus Notes document), whether the text of the content should be indexed for searching, and how to populate values for document properties. |
Experience Definition |
Experience definitions provide multiple user experiences within a single portal. An experience definition defines certain elements of a user experience, such as adaptive page layout settings, branding style, and navigation. |
External Operation |
An external operation enables you to run shell scripts (for example, .sh or .bat files) through the portal and schedule these actions through portal jobs. For example, you might want to create a script that queries documents, pings portal servers, e-mails snapshot query results to users, or runs some other custom job, then create an external operation that points to the script, and use a job to run the script on a specified schedule. |
Federated Search - Incoming |
An incoming federated search allows other Oracle WebCenter Interaction portals to search your portal. |
Federated Search - Outgoing |
An outgoing federated search enables users of your portal to search other Oracle WebCenter Interaction portals or other external repositories. |
Filter |
Filters control what content goes into which folder when crawling in documents or using Smart Sort to filter content into new folders. A filter sets conditions that document links must pass to be sorted into associated folders in the Knowledge Directory. |
Group |
Groups are sets of users, sets of other groups, or both. Groups enable you to more easily control security because you assign each group different activity rights and access privileges. |
Invitation |
Invitations allow you to direct potential users to your portal, making it easy for them to create their own user accounts and letting you customize their initial portal experiences with content that is of particular interest to them. |
Job |
Jobs allow you to schedule portal management operations. A job is a collection of related operations. Each operation is one task, such as a crawl for documents, an import of users, or one of the system maintenance tasks. |
Page (Only displays when in a community folder) |
Community pages let you categorize information for your community audience. |
Page Template |
Page templates define the basic structure for the resulting community pages, such as the column layout and which portlets to include. |
Portlet |
Portlets provide portal users customized tools and services as well as information. Portlets let you to integrate applications, tools, and services into your portal, while taking advantage of portal security, caching, and customization. |
Portlet Bundle |
Portlet bundles are groups of related portlets, packaged together for easy inclusion on My Pages or community pages. |
Portlet Template |
Portlet templates allow you to create multiple instances of a portlet, each displaying slightly different information. |
Profile Source - Remote |
Profile sources allow you to import user information (such as name, address, or phone number) that is already defined in your enterprise in existing user repositories, such as Active Directory or LDAP servers. The imported user information can be used to populate user profiles or can be passed to content crawlers, remote portlets, or federated searches as user information. |
Property |
Properties provide information about, as well as a way to search for, documents and objects in your portal. For example, you might want to create an Author property so users can find all the documents or objects created by a particular user. |
Remote Server |
Remote servers group together Web services that are installed on the same computer and require the same type of authentication. With a remote server, you enter the base URL and authentication settings just once for multiple Web services, and, if you must move the Web services, you just must change the remote server settings. |
Snapshot Query |
Snapshot portlets enable you to display the results of a search in a portlet or e-mail the results to users. You can select which repositories to search (including Oracle WebCenter Collaboration), and limit your search by language, object type, folder, property, and text conditions. |
User |
Portal users enable you to authenticate the people who access your portal and assign appropriate security for the documents and objects in your portal. Users can be imported from external user repositories, created through the portal, created through invitations, self-registered, or just guests (unauthenticated users). |
Web Service - Authentication |
Authentication Web services enable you to specify general settings for your external user repository, leaving the more detailed settings (like domain specification) to be set in the associated remote authentication sources, enabling you to create different authentication sources to import each domain without having to repeatedly specify all the settings. |
Web Service - Content |
Content Web services enable you to specify general settings for your external user repository, leaving the target and security settings to be set in the associated remote content source and remote content crawler, enabling you to crawl multiple locations of the same content repository without having to repeatedly specify all the settings. |
Web Service - Intrinsic Portlet |
Portlet Web services allow you to specify functional settings for your portlets, leaving the display settings to be set in each associated portlet. An intrinsic portlet Web service references one or more sets of code that are located on the portal computer. |
Web Service - Profile |
Profile Web services enable you to specify general settings for your external user repository, leaving the more detailed settings (like domain specification) to be set in the associated remote profile sources, enabling you to create different profile sources to import information each domain without having to repeatedly specify all the settings. |
Web Service - Remote Pagelet |
Pagelet Web services allow you to make pagelets created in Oracle WebCenter Pagelet Producer available through the portal. |
Web Service - Remote Portlet |
Portlet Web services allow you to specify functional settings for your portlets, leaving the display settings to be set in each associated portlet. A remote portlet Web service references services hosted by a separate remote server. |
Web Service - Search |
Search Web services allow you to specify general settings for your remote search repository, leaving the security settings to be set in the associated outgoing federated searches, enabling you to segregate access to your search repository through multiple outgoing federated searches. |
The default portal installation includes several portal objects that are created upon installation.
Object | Description |
---|---|
Administrative Resources (folder) |
This folder contains the following objects created at installation: users, groups, the Oracle WebCenter Interaction Authentication Source, the World Wide Web content source, properties, content types, and federated search objects. |
Intrinsic Operations (folder) |
This folder contains external operations and intrinsic jobs, such as Search Update, Document Refresh, and Weekly Housekeeping. The folder is registered with the primary Automation Service. |
Portal Resources (folder) |
This folder contains intrinsic portlets and Web services, as well as page, community, and portlet templates. |
Default Experience Definition (folder) |
This folder contains the users associated with the default experience definition. Upon installation, one user is associated with the default experience definition—Administrator. |
Audit Log Management (job) |
This job archives old audit messages into files and deletes old audit files. |
Bulk Subscriptions (job) |
This job subscribes users to communities and portlets when you use bulk add. |
Document Refresh (job) |
This job performs background maintenance on your search index such as refreshing document links and properties and deleting expired documents. |
Dynamic Membership Update Agent (job) |
This job updates dynamic group memberships as defined on the Dynamic Membership Rules page of the Group Editor. |
Search Update (job) |
This job makes sure the search collection is synchronized with the database. You can run multiple instances of this job. |
Weekly Housekeeping (job) |
This job performs weekly housekeeping on your system, such as deleting expired invitation codes and deleting uploaded files for which links have been deleted. |
Navigation Tags Header Portlet (portlet) |
This portlet is provided as an example of a custom header that includes navigation tags; you can customize it and use it in communities or experience definitions. This portlet is stored in the Portal Resources folder. |
Classic Footer Portlet (portlet) |
This portlet is provided as an example of a custom footer that you can customize and use in communities or experience definitions. |
Classic Header Portlet (portlet) |
This portlet is provided as an example of a custom header that you can customize and use in communities or experience definitions. |
Layout Footer Portlet (portlet) |
This portlet is provided as an example of a custom footer that uses adaptive tags; you can customize it and use it in communities or experience definitions. |
Layout Footer Portlet (portlet) |
This portlet is provided as an example of a custom header that uses adaptive tags; you can customize it and use it in communities or experience definitions. |
Portal Login (portlet) |
This portlet allows users to log in to the portal. You probably want to add this to all your guest users' home pages so that users can log in from the default page displayed when they navigate to your portal. |
Tag Login Portlet (portlet) |
This portlet is provided as an example of a custom login portlet that uses adaptive tags; you can customize it and add it to your guest users' home pages so that users can log in from the default page displayed when they navigate to your portal. This portlet is stored in the Portal Resources folder. For information on adaptive tags, see the Adaptive Page Layouts section of the Oracle Fusion Middleware User Interface Customization Guide for Oracle WebCenter Framework Interaction. |
Folder Expertise (portlet) |
This portlet displays the folders for which the user is an expert. Administrative users can add users to a folder as an expert through the Related Resources page of the Folder Editor (if they have at least Edit access to the folder and as least Select access to the user), or, if users have the Self-Selected Experts activity right, they can add themselves as experts when they are browsing folders in the Knowledge Directory. This portlet is stored in the Portal Resources folder. |
General Information (portlet) |
This portlet displays user profile information such as name and address, but an administrative user with at least Edit access to the portlet can configure it to display any information. If your portal displays a legacy layout (rather than adaptive layouts), this portlet is displayed on the user profile page by default. This portlet is stored in the Portal Resources folder. |
Managed Communities (portlet) |
This portlet displays the communities to which the user has Edit or Admin access. If your portal displays a legacy layout (rather than adaptive layouts), this portlet is displayed on the user profile page by default. This portlet is stored in the Portal Resources folder. |
Enterprise Poke |
Available only if the Remote Portlet Service is installed. This portlet enables users to "poke" the user whose profile they are viewing. The poke displays in the User Activities stream for the user that was poked and the user that initiated the poke. This portlet is stored in the Enterprise Poke folder. |
Last 5 Profile Viewers |
Available only if the Remote Portlet Service is installed. This portlet displays the last five users that have viewed the profile the user is viewing. This portlet is stored in the Profile Portlets folder. |
Online Now |
Available only if the Remote Portlet Service is installed. This portlet shows whether the user has logged in to the portal within the last ten minutes. This portlet is stored in the Profile Portlets folder. |
Total Profile Views |
Available only if the Remote Portlet Service is installed. This portlet displays the total number of times the profile has been viewed within a specified time (specified in the administrative preferences for the portlet). This portlet is stored in the Profile Portlets folder. |
My Picture |
Available only if the Remote Portlet Service is installed. This portlet enables a user to upload an image to display as the profile picture. This portlet is stored in the Profile Portlets folder. |
Tag Me |
Installed with the portal, but requires the Tagging Engine to be installed. This portlet enables users to add a tag to the user whose profile they are viewing. This portlet is stored in the Portal Resources folder. |
Job Histories Intrinsic Portlet (portlet) |
This portlet displays the same job history information that is displayed on the Job History page of the Automation Service Manager. This portlet is stored in the Portal Resources folder. |
Knowledge Directory Portlet |
This portlet enables you to browse the Knowledge Directory. You can add this portlet to a My Page or community page. The portlet can display the entire Knowledge Directory or it can be configured to display only selected folders. This portlet is stored in the Knowledge Directory Portlet folder. |
Last 5 Profile Viewers |
Available only if the Remote Portlet Service is installed. If added to a My Page, this portlet displays the last five users that have viewed your profile. This portlet is stored in the Profile Portlets folder. |
Portal Search (portlet) |
This portlet lets users search your portal and access their saved searches. Users might want to add this to their home page for easy access to their saved searches. This portlet is stored in the Portal Resources folder. |
Posted Links Portlet |
Available only if the Remote Portlet Service is installed. This portlet enables you to add links to useful or interesting web pages. When you add a link, the link displays in the portlet and the action displays in your User Activities stream. This portlet is stored in the Posted Links folder. |
RSS Reader Portlet (portlet) |
This portlet lets users specify an RSS or ATOM feed to display on a My Page. This portlet is stored in the Portal Resources/RSS Reader folder, but is available only if you installed the Remote Portlet Service and imported the RSS Reader migration package. |
RSS Community Reader Portlet (portlet) |
This portlet lets community managers specify an RSS or ATOM feed to display on a community page. This portlet is stored in the Portal Resources/RSS Reader folder, but is available only if you installed the Remote Portlet Service and imported the RSS Reader migration package. |
Submit to KD Portlet |
Available only if the Remote Portlet Service is installed. This portlet enables you to submit a document to the Knowledge Directory. This portlet is stored in the Portal Resources folder. Note: The Submit to KD Portlet supports only adaptive layout mode; it does not work in classic mode. |
Tagging Engine Items |
Available only if the Tagging Engine is installed. This portlet enables you to search for objects using a text string or by clicking a tag. It also provides access to the Tagging Engine application. This portlet is stored in the Tagging Engine folder. |
Tagging Engine People |
Available only if the Tagging Engine is installed. This portlet enables you to search for users using a text string or by clicking a tag. It also provides access to the Tagging Engine application. This portlet is stored in the Tagging Engine folder. |
Tagging Engine Search |
Available only if the Tagging Engine is installed. This portlet is used in conjunction with the Tagging Engine Results portlet. It enables you to search for objects using a text string and the results appear in the Tagging Engine Results portlet. This portlet is stored in the Tagging Engine folder. |
Tagging Engine Tag Cloud |
Available only if the Tagging Engine is installed. This portlet displays the tags that have been applied to objects in the portal. The tag cloud results can be filtered by selecting a view from the view drop-down list. When you click a tag, the results appear in the Tagging Engine Results portlet. This portlet is stored in the Pathways folder. |
Tagging Engine Results |
Available only if the Tagging Engine is installed. This portlet displays the results from the Tagging Engine Search portlet or the Tagging Engine Tag Cloud portlet. This portlet is stored in the Tagging Engine folder. |
Total Profile Views |
Available only if the Remote Portlet Service is installed. This portlet displays the total number of times your profile has been viewed within a specified time (specified in the administrative preferences for the portlet). This portlet is stored in the Profile Portlets folder. |
User Status (portlet) |
This portlet lets users post their current status. This portlet is stored in the Activity Service folder, but is available only if you installed the Remote Portlet Service and imported the Activity Service migration package. |
User Activities (portlet) |
This portlet displays a user's status history and any other recent activities that are submitted by other applications. This portlet is stored in the Activity Service folder, but is available only if you installed the Remote Portlet Service and imported the Activity Service migration package. To view another user's activities, open the user's profile and look at the User Activities portlet displayed in the profile. To subscribe to e-mail notification or an RSS feed of the user's activity, click the appropriate button at the bottom of the user's User Activities portlet. |
Community Links Portlet Template (portlet template) |
This template is used by the portal to create portlets that display the links saved in a Community Knowledge Directory folder. This portlet template is stored in the Portal Resources folder. |
Content Snapshots (portlet template) |
This template is used by the portal to create portlets that display the results of a Snapshot Query. This portlet template is stored in the Portal Resources folder. |
The following table describes the portal utilities accessible through the Select Utility list in the Administrative Objects Directory.
Utility | Description |
---|---|
Access Unclassified Documents |
Access documents imported by a content crawler and placed in the Unclassified Documents folder in the Knowledge Directory. |
Activity Manager |
Create, modify, or delete activities. |
Approve Directory Content |
Approve directory content submitted to the Knowledge Directory. |
Approve Objects for Migration |
Approve migration packages. |
Audit Manager |
Audit user activity or object activity. |
Automation Service |
Configure and run jobs. |
Credential Vault Manager |
Manage lockboxes corresponding to external systems that users can access through the portal. |
Default Profiles |
Configure default user profiles. |
Experience Rules Manager |
Define and prioritize Experience Rules. |
Global ACL Sync Map |
Configure the global access control list (ACL) synchronization map. |
Global Content Type Map |
Configure the Global Content Type Map. |
Global Document Property Map |
Configure the global document property map. |
Global Object Property Map |
Configure the global object properties map. |
Knowledge Directory Preferences |
Configure Knowledge Directory preferences. |
Localization Manager |
Localize the portal. |
Migration - Export |
Create a portal export package. |
Migration - Import |
Import a portal export package. |
Object Migration Status |
View the status of portal objects that have been requested for migration. |
Portal Settings |
Modify Portal settings. |
Release Disabled Logins |
Manage user locks. |
Release Item Locks |
Manage object locks. |
Search Cluster Manager |
Check status and manage search topology and checkpoints. |
Search Results Manager |
Manage search results preferences. |
Search Service Manager |
Manage Search Service settings. |
Smart Sort |
Run the Smart Sort utility. |
System Health Monitor |
View diagnostic information. |
Tag Library Manager |
Displays the tag libraries loaded on the computer that hosts the portal. |
User Profile Manager |
Modify the user profiles map. |
(Custom Utility) |
Administrative users with the Create Activities activity right or portal developers can create custom utilities that display in the Select Utility list. |
Oracle WebCenter Interaction includes several command-line administration utilities in the portal installation directory and a tag library utility in the portal administrative interface.
Note:
The command-line utilities are located on the computer that hosts the portal, in install_dir/ptportal/10.3.3/bin. Replace install_dir with the portal installation directory, for example C:\Oracle\Middleware\wci for Windows or /oracle/middleware/wci for UNIX or Linux.
Utility (.sh or .bat file) | Purpose |
---|---|
automationserverd |
The Automation Service daemon ensures the Automation Service is running. For information on the Automation Service daemon, see the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Windows or the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Unix and Linux. For information on modifying Automation Service defaults, see Configuring the Automation Service. |
cryptoutil |
The Cryptographic Password utility generates the passwords you might set during installation. To display the man pages for the Cryptographic Password utility, enter the following command:
|
diagnostic |
The Diagnostic utility enables you to verify connectivity for installation components and the portal database. To display the man pages for the Diagnostic utility, enter the following command:
For details, see the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Windows or the Oracle Fusion Middleware Installation Guide for Oracle WebCenter Interaction for Unix and Linux. |
portalenv |
The Portal Environment utility sets the portal environment for tools in install_dir/ptportal/10.3.3/bin. To display the man pages for the Portal Environment utility, enter the following command:
|
ptmigration |
The Migration Wizard manages import packages that enable you to migrate portal objects to new host portals, such as migration from a development environment to a QA environment or production environment, or from a remote server host computer to the portal host computer. The command-line interface (CLI) of the Migration Wizard enables you to import migration packages from the command line. To display the man pages for the Migration Wizard CLI, enter the following command:
For information on object migration, see Migrating, Backing-Up, and Restoring Your Portal. |
Tag Library Manager |
This Tag Library Manager enables you to view the tag libraries installed on the computer that hosts the portal. To access the Tag Library Manager, in the portal, click Administration, then, in the Select Utility menu, click Tag Library Manager. |
Oracle WebCenter Interaction provides many features that work together to secure your portal and its content.
Object level security in the form of Access Control Lists (ACLs). See About Access Controls Lists and Access Privileges.
Activity security in the form of activity rights. See About Activity Rights.
Automatic user lockout. See Automatically Locking User Accounts.
Document security imported from source repositories. See Example of Importing Content Security.
Web application credential management in the form of lockboxes. See Working with Lockboxes.
Password management, which enables you to define password rules. See Appendix A, "Configuring Portal Settings."
Audit records, which you should periodically review to keep track of actions performed by users. See Appendix A, "Configuring Portal Settings."
Single sign-on. See Appendix E, "Deploying Single Sign-On."
Note:
By default, you can log in to the administrative portal as Administrator with no password. If the default Administrator password has not yet been changed, you should do so as soon as possible. Ensure that you document the change and inform the appropriate portal administrators.
In addition to the security available through the portal, you must also secure your hardware and back-end systems (for example, your portal and user databases) to fully protect your portal. You should follow all security guidance provided in your hardware and software documentation.
You must also create strong passwords not only for administrators, but for all portal users and you must advise everyone to keep their passwords safe.
For additional security considerations, see the Oracle Fusion Middleware Deployment Guide for Oracle WebCenter Interaction.
An access control list (ACL) is a list of privileges associated with each document and object in the portal. You add users and groups to a document's or object's ACL and grant them access privileges to determine what they can do with the document or object.
Access privileges determine which documents and objects a user can see while browsing or searching the portal, which documents and objects a user can select (for example, which portlets they can add to My Pages and community pages), and which documents and objects a user can edit. Each document and object in the portal is controlled through the following access privileges:
Access Privilege | Description |
---|---|
Read |
Allows users or groups to see the object. |
Select |
Allows users or groups to add the object to other objects. For example, it allows users to add portlets to their My Pages, add users to groups, or associate remote servers with Web services. |
Edit |
Allows users or groups to modify the object (with the exception of deleting or setting access to the object). |
Admin |
Allows users or groups full administrative control of the object, including deleting the object or approving it for migration. |
For information on setting access privileges, see Setting Security on an Object.
Note:
The Everyone group (all users) has mandatory Read access to authentication sources, content types, filters, invitations, and properties.
If a user is a member of more than one group included in the list, or if they are included as an individual user and as part of a group, that user gets the highest privilege available to the user for the document or object. For example, if a user is part of the Everyone group (which has Read access) and the Administrators group (which has Admin access), that user gets the higher privilege to the document or object: Admin.
Access privileges are based on the security of the folder in which the document or object is stored. Changes to the security of a folder apply to all the documents or objects within that folder. For example, if a document in the folder is shared with another folder (such as when a document is copied from one folder to another), the security of the document is changed in both locations.
Activity rights determine which portal objects a user can create and which portal utilities a user can execute to create or modify portal objects. For example, you can specify that users can create communities, create folders, create content types, and create portlets.
Activity rights are global and cumulative. If a user is a member of multiple groups, each with different rights, that user inherits all the activity rights of all the parent groups. That user can exercise all of those rights in any area of the portal to which that user has the appropriate access. Groups can also inherit activity rights.
In addition to the default activity rights, you can also create custom portal activities. For example, if you have an inventory control system accessed through the portal and only certain users are allowed to edit it, you can create an Edit Inventories activity. You can then create inventory-control portlets that verify whether a user has the correct activity right before receiving access to the portlet.
To create a portal object, you must have at least Edit access to the parent folder (the folder that will store the object), the Access Administration activity right, and the required activity right listed in the table.
Object | Required Activity Right |
---|---|
Administrative Folder |
Create Admin Folders |
Authentication Source - Remote |
Create Authentication Sources |
Community |
Create Communities |
Community Template |
Create Community Infrastructure |
Content Crawler - Remote |
Create Content Crawlers |
Content Crawler - WWW |
Create Content Crawlers |
Content Source - Remote |
Create Content Sources |
Content Source - WWW |
Create Content Sources |
Content Type |
Create Content Types |
Experience Definition |
Create Experience Definitions |
External Operation |
Create External Operations |
Federated Search - Incoming |
Create Federated Searches |
Federated Search - Outgoing |
Create Federated Searches |
Filter |
Create Filters |
Group |
Create Groups |
Invitation |
Create Invitations |
Job |
Create Jobs |
Page (Only displays when in a community folder) |
No activity right needed; just need at least Edit access to community |
Page Template |
Create Community Infrastructure |
Portlet |
Create Portlets |
Portlet Bundle |
Create Web Service Infrastructure |
Portlet Template |
Create Web Service Infrastructure |
Profile Source - Remote |
Create Profile Sources |
Property |
Create Properties |
Remote Server |
Create Web Service Infrastructure |
Snapshot Query |
Create Snapshot Queries |
User |
Create Users |
Web Service - Authentication |
Create Web Service Infrastructure |
Web Service - Content |
Create Web Service Infrastructure |
Web Service - Intrinsic Portlet |
Create Web Service Infrastructure |
Web Service - Profile |
Create Web Service Infrastructure |
Web Service - Remote Pagelet |
Create Web Service Infrastructure |
Web Service - Remote Portlet |
Create Web Service Infrastructure |
Web Service - Search |
Create Web Service Infrastructure |
To access a utility, you must have the Access Administration activity right, the Access Utilities activity right, and the required activity right or group membership listed in the table.
Utility | Required Activity Right (AR) or Group Membership (GM) |
---|---|
Access Unclassified Documents |
Access Unclassified Documents (AR) |
Activity Manager |
Create Activities (AR) |
Approve Directory Content |
Access Utilities (AR) |
Approve Objects for Migration |
Administrators Group (GM) |
Audit Manager |
Administrators Group (GM) |
Automation Service |
Administrators Group (GM) |
Credential Vault Manager |
Administrators Group (GM) |
Default Profiles |
Create User (AR) |
Experience Rules Manager |
Access Experience Rules Manager (AR) |
Global ACL Sync Map |
Administrators Group (GM) |
Global Content Type Map |
Administrators Group (GM) |
Global Document Property Map |
Administrators Group (GM) |
Global Object Property Map |
Administrators Group (GM) |
Knowledge Directory Preferences |
Administrators Group (GM) |
Localization Manager |
Administrators Group (GM) |
Migration - Export |
Administrators Group (GM) |
Migration - Import |
Administrators Group (GM) |
Object Migration Status |
Access Utilities (AR) |
Portal Settings |
Administrators Group (GM) |
Release Disabled Logins |
Administrators Group (GM) |
Release Item Locks |
Administrators Group (GM) |
Search Cluster Manager |
Administrators Group (GM) |
Search Results Manager |
Access Search Results Manager (AR) |
Search Service Manager |
Administrators Group (GM) |
Smart Sort |
Access Smart Sort (AR) |
System Health Monitor |
Administrators Group (GM) |
Tag Library Manager |
Administrators Group (GM) |
User Profile Manager |
Access User Profile Manager (AR) |
(Custom Utility) |
Read access to the custom utility's Web service |