Skip Headers
Oracle® Fusion Middleware Administrator's Guide for Oracle Access Manager with Oracle Security Token Service
11g Release 1 (11.1.1)

Part Number E15478-06
Go to Documentation Home
Go to Book List
Book List
Go to Table of Contents
Go to Feedback page
Contact Us

Go to previous page
PDF · Mobi · ePub


A  B  C  D  E  F  G  H  I  L  M  N  O  P  R  S  T  U  V  W  X 


"To enable cert_authn.dll on the IIS 7 Web server", 29.6.3


AA Timeout Threshold field, 9.3.1
Changing Directory Server Hosts, G.2
Oracle Enterprise Manager Fusion Middleware Control, 26.2
WebGate Installation, 27.2.3
Access Manager SDK
affect on AccessGate configuration parameters, 9.3.1,
Access Server
cache, 9.4.2
logging, 23.1
polling between it and directory, 9.4.3
polling between it and WebGate, 9.4.3
Access System
transport security, 27.4.4
cache, 9.3.1
logging, 23.1
user-defined parameters, 9.3.2
AccessGate Password field, 9.3.1
for authorization success or failure, 13.10.3
AddDefaultCharset directive, 28.5
pages, D.1.1
languages, D.1.1, D.1.1
Administrator language
Removal, 27.8
Apache, 27.4.1
associating an Apache WebGate with particular resources,
Apache v2
Architecture, 28.4
Directives, 28.12
HTTP Server, 28.3.1
Limitations, 28.4
Portable Runtime library, 28.4
APACHE_WebGate, 28.3
APACHESSL_WebGate, 28.3
app.context, C.2.2
application domain
single sign-on within an application domain, 11.3.7
authentication, 11.7.2
retaining over multiple sessions, 12.6.3
authentication scheme
caching, 9.3.1,
time-based, 12.6.3
authorization, 11.7.2
single sign-on cookies, use of,
Auto login, C.1.1
autologin.url, C.2.2


basic authentication method, H.8


Access Server, 9.4.2
AccessGate, 9.3.1
default timeout, 9.4.2
InactiveReconfigPeriods, 9.3.2
ObSSOCookie, 6.2.4
Cache Timeout field, 9.3.1
CachePragmaHeader field,,,,
Cert mode, 9.3.1,,
cert_authn.dll, 29.5.2
Identity Server, 27.4.5
change password page
behavior, H.1.1
error messages, H.3.3, H.3.4
installing, H.6.1
parameters, H.2.3
WebGate Installation
Domino, 31.6.1
WebGate installation with IIS, 29.5
WebGate installation with ISA Server, 30.4, 30.5
configuration data
Removal, 27.8
WebGate Installation, 27.4.10
Console Method
WebGate, 27.4.3
encrypted session token and,
lasting over multiple sessions, 12.6.1
primary cookie domain, 9.3.1, 9.3.1,
sending credentials in, 11.6.1
a WebGate Instance, 27.4.2
CredentialMapping permission, C.2.2


default.auth.level, C.2.2
inventories, B.4.3
deployment types,
deployment-specific pages
examples, H.7
globalization support, H.4
guidelines, H.5, H.5
support for OracleAS Wireless, H.6.2
collecting in the log files, 23.7.1
directory server hosts, G.2
Domino, 27.4.1
Web servers, I.31.6
DSAPI filter, 31.6, 31.6.1
Dynamic authentication, C.1.1


End User Languages, D.1.1
End Users languages, D.1.1
changes before and after migration, B.4.5
Existing OSSO, 27
External applications
login pages, H.6.3
external applications
adding, H.8
authentication methods
basic, H.8
GET, H.8


Failover Threshold field, 9.3.1
WebGate Installation, 27.4.8
force change password feature, H.1.1.4


GET authentication method, H.8
Global logout, C.1.1
globalization support
deployment-specific pages, H.4
grace login, H.1.1.3
GUI Method, 27.4.3
WebGate, 27.4.3


header variables
in single sign-on, 11.6.1
passing information via, 2.5.3, 11.7.2, 13.8.1
ProxySSLStateHeader, 9.3.2,, G.3
setting credentials in, 11.6.1
with WebGate behind a reverse proxy, 9.3.2,, G.3
host identifiers
adding, 12.4.4
deleting, 12.4.7
modifying, 12.4.6
viewing, 12.4.5
vs DenyOnNotProtected, 9.3.1
configuring identifiers for,


I18N, D.1
IBM HTTP Server, 28.3.2
see also IHS, 28.3
Identity Server
install certificate, 27.4.5
logging, 23.1
request certificate, 27.4.5
IHS, 28.5.1
Limitations, 28.4
Web serverr, 28.3.3
IHS v2 Web servers, 27.4.1
IIS, 27.4.1
SSL with WebGate, 29.5.1
WebGate, 27.4.7, 27.4.8, 27.4.10
IIS Virtual Web server, 27.4.1, 29.2.1
IIS Web server
see also ISAPI, 29.2
InactiveReconfigPeriod, 9.4.2
Domino Security (DSAPI) Filter, 31.6
Identity Server certificate, 27.4.5
WebGate, 27, 27.4
Integrated Windows Authentication,
deployments, B.4.3
details for each deployment, B.4.3
IP address validation, 9.3.3
ISA Proxy Servers, 27.4.1
ISA Server, 30, 30.2
ISAPI, 29.2, 30.2
ISAPI Webgate filter,


Language Pack
Removal, 27.8
Language Packs, D.1.1
Language Tag, D.1.1
locale, D.1
Localized Messages, D.1.1
log level, 23.4.4
about, 23.1
activating a log-handler, 23.4.4
Buffer_Size, 23.6
configuration file, 23.2
modifying, 23.2.2
order of elements, 23.4.7
order of evaluation of entries, 23.5.1
structure, 23.4
configuration file structure, 23.4, 23.4
default configuration file,,
default log configuration file, 23.6.1
default settings for logs, 23.6.1
directing log output, 23.4.4
File_Name, 23.6
FileLogWriter, 23.3
global log level threshold, 23.4.3
levels, 23.5
ListName, 23.6
log configuration file path, 23.2.1
log file buffer size, 23.4.4
log file name, 23.4.4
log file rotation, 23.4.4
log levels, about, 23.1
log levels, setting a level for each module, 23.7
log levels, table of, 23.1.1
log output destinations, 23.3
log writer, 23.4.4
log writers, 23.3
Log_Level, 23.6
Log_Status, 23.5, 23.6
Log_Threshold_Level, 23.5
Log_Writer, 23.6
Max_Rotation_Size, 23.6
Max_Rotation_Time, 23.6
MODULE_CONFIG section, 23.7.1
modules within a log file,
MPFileLogWriter, 23.3
order of elements in the configuration file, 23.4.7
output, where sent, 23.3
per-module thresholds, 23.7
per-module thresholds, configuring, 23.7.2
sending log data to multiple destinations, 23.3
SysLogWriter, 23.3
system log on Solaris and Linux, 23.6.1
system log on Windows, 23.6.1
thresholds, 23.7.1
when a server restart is needed,
where log data is sent, 23.3
xmlns, 23.6
login page
error messages, H.3.1, H.3.1, H.3.2
installing, H.6.1
parameters, H.2.1, H.2.1
password reset feature, H.2.2
login pages
for external applications, H.6.3
login.url.FORM, C.2.2
forced, 9.3.1
logout.url, C.2.2
Lotus Notes, 31.6.1, I.31.6


Manually Configuring
WebGate Web Server, 27.3,
MaxClients, 28.12
Maximum Connections field, 9.3.1
Maximum Elements in Cache field, 9.3.1
Maximum Session Time field, 9.3.1
MaxSpareServers, 28.12
MaxSpareThreads, 28.12
Microsoft Passport,
MinSpareServers, 28.12
MinSpareThreads, 28.12
mod_ssl, 28.5.3
MODULE_CONFIG section, 23.7.1
MPM, 28.4, 28.12
mpm_winnt, 28.4, 28.12
mpm_worker_module, 28.4, 28.4, 28.6.5, I.31.5
Multiple instances
Removal, 27.8
Multi-Process Modules
see also mpm, 28.4


name changes, Preface
names, new, Preface, Preface
net start w3svc,
net stop iisadmin,
network traffic, 9.4.2
for Access System, 9.4.2
reducing, 9.4.2


OAM solution, 15.6, C.1.1
oblixlock.dll, 29.5.2
ObSSOCookie, 9.3.1, 9.3.1, 9.3.1, 9.3.1, 9.3.3
cache, 6.2.4
retaining over multiple sessions, 12.6.3
Open mode, 9.3.1,,
OPSS SSO Framework, 2.9.3, 2.9.3, C.1.1, C.1.1
Oracle Access Manager
Oracle HTTP Server
see also OHS, 28.3
Oracle HTTP Server (OHS), I.31.9
Oracle HTTP Server 2,
Oracle Platform Security Services,, 15.2.5
OracleAS Single Sign-On
external applications, H.8
globalization support, H.4
existing implementation, 27


changing, H.1.1.2
force change password feature, H.1.1.4
resetting, H.1.1.1, H.2.2
PDF files, 9.3.1,
To install the Domino Web server on Unix, 31.2
performance, 9.3.1
deliverables, B.4
details for each deployment, B.4.3
inventory, B.4.3
logging, 23.1
policy domain
top URL prefix in the DIT,
Policy Manager
clock, I.28
logging, 23.1
policy domain root,
POST authentication method, H.8
postgate filter,
ISA Server, 30.2
preferred host
vs DenyOnNotProtected, 9.3.1
Preferred HTTP Host field, 9.3.1
prefork MPM, 28.4
Primary Cookie Domain field, 9.3.1
AccessGates and WebGates
To change the configuration polling frequency, 9.4.3
To define a persistent cookie in the authentication scheme, 12.6.3
To generate the keyring and stash files, 31.5
To set up first Domino server, 31.3
To start Domino server, 31.4
To configure IPv6 with a separate proxy for authentication and resource WebGates, G.3
To configure a module-specific log threshold, 23.7.2
To resolve the failure to start OHS, I.31.9
single sign-on
To secure the ObSSOCookie, 12.6.2
To disable Windows Challenge/Response Authentication, I.14
To uninstall Oracle Access Manager components, 27.8
Web server
To remove and re-install IIS DLLs, I.16.5, I.31.14
To add cert_authn.dll as an ISAPI filter, 29.5.1
To add cert_authn.dll as an ISAPI Filter for IIS v7, 29.6.3
To add cert_authn.dll as an ISAPI filter with multiple WebGates, 29.7.3
To change permissions for the access subdirectory for ISA Server, 30.4.2
To enable cert_authn.dll on the IIS 7 Web server, 29.6.3
To enable SSL for IIS, 29.5.1
To enable SSL for IIS with multiple WebGates, 29.7.3
To finish installation, 27.4.8
To install the postgate ISAPI filter,
To manually configure a Web server,
To manually update your Web server configuration, 27.4.7
To order ISAPI filters, 29.5.2
To order ISAPI filters for ISA Server, 30.5.3
To protect a Web site (not the default site), 29.5.4
To provide configuration details, 27.4.6
To register Oracle Access Manager plug-ins as ISA Server Web filters, 30.5.1
To set IIS 5.0 isolation on IIS 6,
To specify a transport security mode, 27.4.4
To start installation, 27.4.3
To unregister filters before WebGate uninstall on ISA Server, 30.7
To update the Web server configuration, 27.4.7
WebGate 64-bit
To enable SSL for IIS and client certificate authentication, 29.8.2
Process overview
How URL patterns are used,
WebGate-to-Access Server configuration polling, 9.4.2
When a user requests access, 11.7.2, 11.7.3
props.auth.level, C.2.2
props.auth.uri, C.2.2
props.auth.url, C.2.2
When the default site is not setup, 29.5.4
proxy_module, 28.3.3
public key, 8.5.1


Apache v2 Web server configuration, 28.13
configuration data, 27.8
IHS v2 Web server configuration, 28.13
IIS Web server configuration, 29.11
Language Packs, 27.8
Multiple Instances, 27.8
OHS v2 Web server configuration, 28.13
Web server configuration, 27.8
Web server configuration changes, 27.8
report files, 9.3.1,
Request Certificate
Identity Server, 27.4.5
J2EE, 13.5.1
policy domain root,
resource types
C programs, 13.5.1
C++ programs, 13.5.1
CRM applications, 13.5.1
directories, 13.5.1
Enterprise Java Beans (EJBs), 13.5.1
ERP applications, 13.5.1
Java programs, 13.5.1
Java Server pages (JSPs), 13.5.1
query strings, 13.5.1
web applications, 13.5.1
web pages, 13.5.1
ISA Server, 30.6
reverse proxy, 28.3.3


Security field, 9.3.1, 9.3.1
security policies, 11.7.2
Security-Enhanced Linux (SELinux), 27.4.8, 28.12, 28.12, 28.12, I.24, I.31.4
shared secret
frequency of reading, 9.3.2
sign-off page
installing, H.6.1
Simple mode, 9.3.1,,
single sign-off page
installing, H.6.1
parameters, H.2.4, H.2.4, H.2.5
single sign-on
definition, 2.5.1,
issues with IP addresses, 9.3.3
ObSSOCookie, 6.2.4
ObSSOCookie, securing, 12.6.1
Software Developer Kit, 9.2.1
WebGate Configuration Details, 27.4.6
WebGate Transport Security Mode, 27.4.4
existing 10g SSO, 27
SSO Logout URL, 9.3.1, 9.3.1, 9.3.1,,, 15.3.1, 15.3.1, 15.3.1
SSO service, C.1.1
SSO service configuration, C.2.1
sso.provider.class, C.2.2
ISA Server, 30.6
State field, 9.3.1
ISA Server, 30.6
Sun Web Servers
WebGate, 27.4.7


Task overview
Adding an instance and installing WebGate, 27.2.2, 27.2.3
Completing IIS WebGate installations, 29.5
Enabling single domain single sign-on, 11.4
Installing and configuring the ISAPI WebGate on ISA Server, 30.2
Installing the ISAPI WebGate for the ISA Server, 30.4.1
Installing the WebGate includes, 27.4, 27.6.2
Performing WebGate configuration for ISA Server, 30.4, 30.5
development, B.4.5
evaluate changes before and after migration, B.4.5
ThreadsPerChild, 28.12
for WebGate to AccessGate connections,
token.provider.class, C.2.2
traffic, network, 9.4.2
Translatable information, D.1.1
transport security
Access System, 27.4.4
options, 9.3.1, 9.3.1,
Access Server Crashes on Apache, I.31.1
Failure to write to log file errors, I.31.7
Loss of Access, I.31.7
Loss of access to Web pages, I.31.7
PCLOSE Error Sun Web server, I.31.13
Random bug report pages, I.31.7
Re-Installing IIS DLLs, I.16.5, I.31.14
Web Server Issues, I.31


Unicode Standard
4.0, D.1
Uninstaller, 27.8
WebGate Web Server Configuration, 27.4.7
containing the ObSSOCookie,
maximum number in cache, 9.3.1, 9.3.1, 9.3.1, 9.3.2, 9.3.2,
Oracle Access Manager URLs, unprotecting,
policy domain root URL,
protecting Oracle Access Manager URLs,,,
SSO Logout URL, 9.3.1, 9.3.1, 9.3.1,,, 15.3.1, 15.3.1, 15.3.1
storing as https, 9.3.2,
user-defined parameters


virtual Web hosting, 12.4.2


Web Server
Configuration Changes
Removal, 27.8
Web server
configuration changes
removal, 27.8
IHS, 28.3.3
Web server hosts
configuring identifiers for,
WebGate, 11.7.2, 11.7.3, 27.4.3
Access Server Timeout Threshold, 9.3.1
associating with particular virtual host, directory, or file,
CacheControlHeader, 9.3.1,
CachePragmaHeader, 9.3.1,
clock, I.28
Configuration Details, 27.4.6
configuration polling, 9.4.2
Console method, 27.4.3
create instance, 27.4.2
Enabling SSL for IIS, 29.5.1
ID, 27.4.6
IIS, 27.4.7, 27.4.8, 27.4.10
installing, 27.4
IP address validation, 9.3.3
logging, 23.1
password, 27.4.6
polling frequency, 9.4.3
polling frequency, changing, 9.4.3
Sun Web servers, 27.4.7
webgate.dll, 29.5.2,, 30.5.3
ISA Server, 30.2
logging, 23.1
worker MPM, 28.4


xlC.rte 6.0 runtime library, 28.3.2