Skip Headers
Oracle® Fusion Middleware Enterprise Single Sign-On Suite Installation Guide
11g Release 2 (11.1.2.2)
Part Number E37691-05
Go to Documentation Home
Home		 Go to Table of Contents
Contents		 Go to Feedback page
Contact Us
Go to previous page
Previous
PDF · Mobi · ePub

12 Appendix C: Oracle Enterprise Single Sign-On Suite Configuration Reference

This section describes the registry settings you can use to customize the behavior of the Oracle Enterprise Single Sign-On Suite applications.

12.1 Additional Password Reset Configuration Procedures

This section describes additional procedures for configuring Password Reset that you may find useful during deployment.

12.1.1 Modifying the DCOM Permissions of the Password Reset Reporting Service

Password Reset sends reporting events to the SQL Reporting database through the SSO Reporting Service, which runs locally on the Web server. The local SSO Reporting Service sends those events to the SQL Reporting database at regular intervals.

The default interval for transmitting events to the SQL Reporting database is 30 minutes. You can change this setting from the Reporting page of the Password Reset Management Console.

You can configure the Web server in one of two ways to enable reporting:

  • (Recommended) Modify the DCOM permissions of the SSO Reporting Service to allow the Password Reset Reset account to launch and activate the SSO Reporting Service.

  • Make the Password Reset Reset domain account a member of the local Administrators group.

To modify the DCOM permissions:

  1. Click Start > Run. At the command prompt, type dcomcnfg and press Enter to launch the Component Services management tool.

    Surrounding text describes image139.jpg.

  2. Navigate to the DCOM Config node: Console Root > Component Services > Computers > My Computer > DCOM Config.

    Surrounding text describes image140.jpg.

  3. Right-click the SSOReportingService Class node and select Properties.

  4. Select the Security tab.

    Surrounding text describes image141.jpg.

  5. In the "Launch and Activation Permissions" section, click Customize, then click Edit.

  6. In the "Group or user names:" section, click Add.

    Surrounding text describes image142.jpg.

  7. Enter the name of the Password Reset reset domain account and click OK.

    Surrounding text describes image143.jpg.

  8. Verify that the Password Reset reset account has "Local Launch" and "Local Activation" permissions.

    Surrounding text describes image144.jpg.

  9. 9. Click OK twice to finish.

12.1.2 Installing and Configuring an AD LDS (ADAM) Instance for Password Reset

  1. Run the AD LDS (ADAM) installer. Select A unique instance and click Next.

  2. Provide your Instance name and click Next.

  3. Specify port numbers of 10000 and 10001 (ten thousand range, for easy recall) and click Next.

  4. Specify the root DN and click Next.

  5. Specify an easy-to-find base location (for example, %RootDrive%\ADAM\Instance) and click Next.

  6. Specify the run privileges as appropriate for your environment and click Next.

    Surrounding text describes image150.gif.

  7. Specify the Administrative Permissions as appropriate for your environment and click Next.

    Surrounding text describes image151.gif.

  8. Select Do not import LDIF files for this instance of ADAM and click Next.

  9. In the "Ready to Install" screen, click Next.

  10. In the "Complete" screen, click Finish.

Go to previous page
Previous
Go to Documentation Home
Home		 Go to Table of Contents
Contents		 Go to Feedback page
Contact Us