Index

A  B  C  D  E  F  G  H  I  L  M  N  O  P  R  S  T  U  V  W  X 

Symbols

"To enable cert_authn.dll on the IIS 7 Web server", 30.6.3

A

AA Timeout Threshold field, 9.3.1
About
Changing Directory Server Hosts, G.2
Oracle Enterprise Manager Fusion Middleware Control, 27.2
WebGate Installation, 28.2.3
Access Manager SDK
affect on AccessGate configuration parameters, 9.3.1, 10.2.5.5
Access Server
cache, 9.4.2
logging, 24.1
polling between it and directory, 9.4.3
polling between it and WebGate, 9.4.3
Access System
transport security, 28.4.4
AccessGate
cache, 9.3.1
logging, 24.1
user-defined parameters, 9.3.2
AccessGate Password field, 9.3.1
actions
for authorization success or failure, 14.10.3
AddDefaultCharset directive, 29.5
administrative
pages, D.1.1
Administrator
languages, D.1.1, D.1.1
Administrator language
Removal, 28.8
Apache, 28.4.1
associating an Apache WebGate with particular resources, 13.4.2.3
Apache v2
Architecture, 29.4
Directives, 29.12
HTTP Server, 29.3.1
Limitations, 29.4
Portable Runtime library, 29.4
APACHE_WebGate, 29.3
APACHESSL_WebGate, 29.3
app.context, C.2.2
application domain
single sign-on within an application domain, 12.3.7
authentication, 12.7.2
retaining over multiple sessions, 13.6.3
authentication scheme
caching, 9.3.1, 10.2.5.5
time-based, 13.6.3
authorization, 12.7.2
single sign-on cookies, use of, 12.5.3.2
Auto login, C.1.1
autologin.url, C.2.2

B

basic authentication method, H.8

C

cache
Access Server, 9.4.2
AccessGate, 9.3.1
default timeout, 9.4.2
InactiveReconfigPeriods, 9.3.2
ObSSOCookie, 6.2.4
Cache Timeout field, 9.3.1
CachePragmaHeader field, 10.2.5.5, 10.2.5.5, 10.2.5.5, 10.2.5.5
Cert mode, 9.3.1, 10.2.5.5, 15.5.1.1
cert_authn.dll, 30.5.2
certificate
Identity Server, 28.4.5
change password page
behavior, H.1.1
error messages, H.3.3, H.3.4
installing, H.6.1
parameters, H.2.3
client_request_retry_attempts, 10.2.5.5
Completing
WebGate Installation
Domino, 32.6.1
WebGate installation with IIS, 30.5
WebGate installation with ISA Server, 31.4, 31.5
configuration data
Removal, 28.8
Confirming
WebGate Installation, 28.4.10
Console Method
WebGate, 28.4.3
cookies
encrypted session token and, 12.5.3.2
lasting over multiple sessions, 13.6.1
primary cookie domain, 9.3.1, 9.3.1, 10.2.5.5
sending credentials in, 12.6.1
Creating
a WebGate Instance, 28.4.2
CredentialMapping permission, C.2.2

D

default.auth.level, C.2.2
deployment
inventories, B.4.3
deployment types, 1.1.2.1
deployment-specific pages
examples, H.7
globalization support, H.4
guidelines, H.5, H.5
support for OracleAS Wireless, H.6.2
diagnostics
collecting in the log files, 24.7.1
directory server hosts, G.2
Domino, 28.4.1
Web servers, I.31.6
DSAPI filter, 32.6, 32.6.1
Dynamic authentication, C.1.1

E

End User Languages, D.1.1
End Users languages, D.1.1
evaluate
changes before and after migration, B.4.5
Existing OSSO, 28
External applications
login pages, H.6.3
external applications
adding, H.8
authentication methods
basic, H.8
GET, H.8
POST, H.8

F

Failover Threshold field, 9.3.1
Finishing
WebGate Installation, 28.4.8
force change password feature, H.1.1.4

G

GET authentication method, H.8
Global logout, C.1.1
globalization, 10.2.5.5
globalization support
deployment-specific pages, H.4
grace login, H.1.1.3
GUI Method, 28.4.3
WebGate, 28.4.3

H

header variables
in single sign-on, 12.6.1
passing information via, 2.5.3, 12.7.2, 14.8.1
ProxySSLStateHeader, 9.3.2, 10.2.5.5, G.3
setting credentials in, 12.6.1
with WebGate behind a reverse proxy, 9.3.2, 10.2.5.5, G.3
host identifiers
adding, 13.4.4
deleting, 13.4.7
modifying, 13.4.6
viewing, 13.4.5
vs DenyOnNotProtected, 9.3.1
hosts
configuring identifiers for, 13.4.1.3

I

I18N, D.1
IBM HTTP Server, 29.3.2
see also IHS, 29.3
Identity Server
install certificate, 28.4.5
logging, 24.1
request certificate, 28.4.5
IHS, 29.5.1
Limitations, 29.4
Web serverr, 29.3.3
IHS v2 Web servers, 28.4.1
IIS, 28.4.1
SSL with WebGate, 30.5.1
WebGate, 28.4.7, 28.4.8, 28.4.10
IIS Virtual Web server, 28.4.1, 30.2.1
IIS Web server
see also ISAPI, 30.2
InactiveReconfigPeriod, 9.4.2
Installing
Domino Security (DSAPI) Filter, 32.6
Identity Server certificate, 28.4.5
WebGate, 28, 28.4
Integrated Windows Authentication, 10.2.5.5
inventory
deployments, B.4.3
details for each deployment, B.4.3
IP address validation, 9.3.3
ISA Proxy Servers, 28.4.1
ISA Server, 31, 31.2
ISAPI, 30.2, 31.2
ISAPI Webgate filter, 30.5.3.4.2
IWA, 10.2.5.5

L

Language Pack
Removal, 28.8
Language Packs, D.1.1
Language Tag, D.1.1
locale, D.1
Localized Messages, D.1.1
Logging
log level, 24.4.4
logging
about, 24.1
activating a log-handler, 24.4.4
Buffer_Size, 24.6
configuration file, 24.2
modifying, 24.2.2
order of elements, 24.4.7
order of evaluation of entries, 24.5.1
structure, 24.4
configuration file structure, 24.4, 24.4
default configuration file, 24.2.2.2, 24.2.2.2
default log configuration file, 24.6.1
default settings for logs, 24.6.1
directing log output, 24.4.4
File_Name, 24.6
FileLogWriter, 24.3
global log level threshold, 24.4.3
levels, 24.5
ListName, 24.6
log configuration file path, 24.2.1
log file buffer size, 24.4.4
log file name, 24.4.4
log file rotation, 24.4.4
log levels, about, 24.1
log levels, setting a level for each module, 24.7
log levels, table of, 24.1.1
log output destinations, 24.3
log writer, 24.4.4
log writers, 24.3
Log_Level, 24.6
Log_Status, 24.5, 24.6
Log_Threshold_Level, 24.5
Log_Writer, 24.6
Max_Rotation_Size, 24.6
Max_Rotation_Time, 24.6
MODULE_CONFIG section, 24.7.1
modules within a log file, 24.7.1.2
MPFileLogWriter, 24.3
order of elements in the configuration file, 24.4.7
output, where sent, 24.3
per-module thresholds, 24.7
per-module thresholds, configuring, 24.7.2
sending log data to multiple destinations, 24.3
SysLogWriter, 24.3
system log on Solaris and Linux, 24.6.1
system log on Windows, 24.6.1
thresholds, 24.7.1
when a server restart is needed, 24.2.2.1
where log data is sent, 24.3
xmlns, 24.6
login page
error messages, H.3.1, H.3.1, H.3.2
installing, H.6.1
parameters, H.2.1, H.2.1
password reset feature, H.2.2
login pages
for external applications, H.6.3
login.url.FORM, C.2.2
logout
forced, 9.3.1
logout.url, C.2.2
Lotus Notes, 32.6.1, I.31.6

M

Manually Configuring
WebGate Web Server, 28.3, 28.4.7.1
MaxClients, 29.12
Maximum Connections field, 9.3.1
Maximum Elements in Cache field, 9.3.1
Maximum Session Time field, 9.3.1
MaxSpareServers, 29.12
MaxSpareThreads, 29.12
Microsoft Passport, 10.2.5.5
MinSpareServers, 29.12
MinSpareThreads, 29.12
mod_ssl, 29.5.3
MODULE_CONFIG section, 24.7.1
MPM, 29.4, 29.12
mpm_winnt, 29.4, 29.12
mpm_worker_module, 29.4, 29.4, 29.6.5, I.31.5
Multiple instances
Removal, 28.8
Multi-Process Modules
see also mpm, 29.4

N

name changes, Preface
names, new, Preface, Preface
net start w3svc, 30.5.3.4.2
net stop iisadmin, 30.5.3.4.2
network traffic, 9.4.2
for Access System, 9.4.2
reducing, 9.4.2

O

OAM solution, 16.6, C.1.1
oamAuthnProvider.jar, 28.6.5.1
oblixlock.dll, 30.5.2
ObSSOCookie, 9.3.1, 9.3.1, 9.3.1, 9.3.1, 9.3.3
cache, 6.2.4
retaining over multiple sessions, 13.6.3
OHS2, 10.2.5.5
Open mode, 9.3.1, 10.2.5.5, 15.5.1.1
OPSS SSO Framework, 2.9.3, 2.9.3, C.1.1, C.1.1
Oracle Access Manager
protecting, 13.5.1.1, 13.5.1.1, 13.5.1.1
unprotecting, 13.5.1.1
Oracle HTTP Server
see also OHS, 29.3
Oracle HTTP Server (OHS), I.31.9
Oracle HTTP Server 2, 10.2.5.5
Oracle Platform Security Services, 12.7.1.3, 16.2.5
OracleAS Single Sign-On
external applications, H.8
globalization support, H.4
OSSO
existing implementation, 28

P

passwords
changing, H.1.1.2
force change password feature, H.1.1.4
resetting, H.1.1.1, H.2.2
PDF files, 9.3.1, 10.2.5.5
Peoxwsuew
Somino
To install the Domino Web server on Unix, 32.2
performance, 9.3.1
planning
deliverables, B.4
details for each deployment, B.4.3
inventory, B.4.3
plug-ins
logging, 24.1
policy domain
root, 14.5.1.3
top URL prefix in the DIT, 14.5.1.3
Policy Manager
clock, I.28
logging, 24.1
policy domain root, 14.5.1.3
POST authentication method, H.8
postgate filter, 30.5.3.4.2
postgate.dll, 30.5.3.4.2
ISA Server, 31.2
preferred host
vs DenyOnNotProtected, 9.3.1
Preferred HTTP Host field, 9.3.1
prefork MPM, 29.4
Primary Cookie Domain field, 9.3.1
Procedure
AccessGates and WebGates
To change the configuration polling frequency, 9.4.3
authentication
To define a persistent cookie in the authentication scheme, 13.6.3
Domino
To generate the keyring and stash files, 32.5
To set up first Domino server, 32.3
To start Domino server, 32.4
IPv6
To configure IPv6 with a separate proxy for authentication and resource WebGates, G.3
logging
To configure a module-specific log threshold, 24.7.2
OHS
To resolve the failure to start OHS, I.31.9
SAP
To configure Oracle Access Manager for SAP Enterprise Portal 6.0, 11.6.1
To configure SAP Enterprise Portal 6.0 for external authentication, 11.5.2
To prepare for the integration with SAP, 11.4
Siebel
To configure Apache Web server 1.3.x or 2.0.1, 11.5.1
single sign-on
To secure the ObSSOCookie, 13.6.2
To disable Windows Challenge/Response Authentication, I.14
Uninstall
To uninstall Oracle Access Manager components, 28.8
Web server
To remove and re-install IIS DLLs, I.16.5, I.31.14
WebGate
To add cert_authn.dll as an ISAPI filter, 30.5.1
To add cert_authn.dll as an ISAPI Filter for IIS v7, 30.6.3
To add cert_authn.dll as an ISAPI filter with multiple WebGates, 30.7.3
To change permissions for the access subdirectory for ISA Server, 31.4.2
To enable cert_authn.dll on the IIS 7 Web server, 30.6.3
To enable SSL for IIS, 30.5.1
To enable SSL for IIS with multiple WebGates, 30.7.3
To finish installation, 28.4.8
To install the postgate ISAPI filter, 30.5.3.4.2
To manually configure a Web server, 28.4.7.1
To manually update your Web server configuration, 28.4.7
To order ISAPI filters, 30.5.2
To order ISAPI filters for ISA Server, 31.5.3
To protect a Web site (not the default site), 30.5.4
To provide configuration details, 28.4.6
To register Oracle Access Manager plug-ins as ISA Server Web filters, 31.5.1
To set IIS 5.0 isolation on IIS 6, 30.5.3.4.1
To specify a transport security mode, 28.4.4
To start installation, 28.4.3
To unregister filters before WebGate uninstall on ISA Server, 31.7
To update the Web server configuration, 28.4.7
WebGate 64-bit
To enable SSL for IIS and client certificate authentication, 30.8.2
Process overview
How URL patterns are used, 14.5.1.4
WebGate-to-Access Server configuration polling, 9.4.2
When a user requests access, 12.7.2, 12.7.3
props.auth.level, C.2.2
props.auth.uri, C.2.2
props.auth.url, C.2.2
Protecting
When the default site is not setup, 30.5.4
proxy_module, 29.3.3
public key, 8.5.1

R

Removal
Apache v2 Web server configuration, 29.13
configuration data, 28.8
IHS v2 Web server configuration, 29.13
IIS Web server configuration, 30.11
Language Packs, 28.8
Multiple Instances, 28.8
OHS v2 Web server configuration, 29.13
Web server configuration, 28.8
Web server configuration changes, 28.8
report files, 9.3.1, 10.2.5.5
Request Certificate
Identity Server, 28.4.5
resource
J2EE, 14.5.1
policy domain root, 14.5.1.3
resource types
C programs, 14.5.1
C++ programs, 14.5.1
CRM applications, 14.5.1
directories, 14.5.1
Enterprise Java Beans (EJBs), 14.5.1
ERP applications, 14.5.1
Java programs, 14.5.1
Java Server pages (JSPs), 14.5.1
query strings, 14.5.1
web applications, 14.5.1
web pages, 14.5.1
Restarting
ISA Server, 31.6
reverse proxy, 29.3.3

S

SAP
Enterprise Portal
external authentication confguration, 11.5.2
Oracle Access Manager configuration, 11.6.1
proxy configuration, 11.5.1
supported platforms, 11.2
Security field, 9.3.1, 9.3.1
security policies, 12.7.2
Security-Enhanced Linux (SELinux), 28.4.8, 29.12, 29.12, 29.12, I.24, I.31.4
shared secret
frequency of reading, 9.3.2
sign-off page
installing, H.6.1
Simple mode, 9.3.1, 10.2.5.5, 15.5.1.1
single sign-off page
installing, H.6.1
parameters, H.2.4, H.2.4, H.2.5
single sign-on
definition, 2.5.1, 12.3.3.1
issues with IP addresses, 9.3.3
ObSSOCookie, 6.2.4
ObSSOCookie, securing, 13.6.1
Software Developer Kit, 9.2.1
Specifying
WebGate Configuration Details, 28.4.6
WebGate Transport Security Mode, 28.4.4
SSO
existing 10g SSO, 28
SSO Logout URL, 9.3.1, 9.3.1, 9.3.1, 10.2.5.5, 10.2.5.5, 16.3.1, 16.3.1, 16.3.1
SSO service, C.1.1
SSO service configuration, C.2.1
sso.provider.class, C.2.2
Starting
ISA Server, 31.6
State field, 9.3.1
Stopping
ISA Server, 31.6
Sun Web Servers
WebGate, 28.4.7

T

Task overview
Adding an instance and installing WebGate, 28.2.2, 28.2.3
Completing IIS WebGate installations, 30.5
Enabling single domain single sign-on, 12.4
Installing and configuring the ISAPI WebGate on ISA Server, 31.2
Installing the ISAPI WebGate for the ISA Server, 31.4.1
Installing the WebGate includes, 28.4, 28.6.2
Performing WebGate configuration for ISA Server, 31.4, 31.5
tests
development, B.4.5
evaluate changes before and after migration, B.4.5
ThreadsPerChild, 29.12
timeout
for WebGate to AccessGate connections, 10.2.5.5
token.provider.class, C.2.2
traffic, network, 9.4.2
Translatable information, D.1.1
transport security
Access System, 28.4.4
options, 9.3.1, 9.3.1, 10.2.5.5
Troubleshooting
Access Server Crashes on Apache, I.31.1
Failure to write to log file errors, I.31.7
Loss of Access, I.31.7
Loss of access to Web pages, I.31.7
PCLOSE Error Sun Web server, I.31.13
Random bug report pages, I.31.7
Re-Installing IIS DLLs, I.16.5, I.31.14
Web Server Issues, I.31

U

Unicode Standard
4.0, D.1
Uninstaller, 28.8
Updating
WebGate Web Server Configuration, 28.4.7
URL
containing the ObSSOCookie, 12.5.3.2
maximum number in cache, 9.3.1, 9.3.1, 9.3.1, 9.3.2, 9.3.2, 10.2.5.5
Oracle Access Manager URLs, unprotecting, 13.5.1.1
policy domain root URL, 14.5.1.3
prefix, 14.5.1.3
protecting Oracle Access Manager URLs, 13.5.1.1, 13.5.1.1, 13.5.1.1
SSO Logout URL, 9.3.1, 9.3.1, 9.3.1, 10.2.5.5, 10.2.5.5, 16.3.1, 16.3.1, 16.3.1
storing as https, 9.3.2, 10.2.5.5
URLInUTF8Format, 10.2.5.5
user-defined parameters
client_request_retry_attempts, 10.2.5.5
URLInUTF8Format, 10.2.5.5
UTF-8, 10.2.5.5

V

virtual Web hosting, 13.4.2

W

Web Server
Configuration Changes
Removal, 28.8
Web server
configuration changes
removal, 28.8
IHS, 29.3.3
Web server hosts
configuring identifiers for, 13.4.1.3
WebGate, 12.7.2, 12.7.3, 28.4.3
Access Server Timeout Threshold, 9.3.1
associating with particular virtual host, directory, or file, 13.4.2.3
CacheControlHeader, 9.3.1, 10.2.5.5
CachePragmaHeader, 9.3.1, 10.2.5.5
clock, I.28
Configuration Details, 28.4.6
configuration polling, 9.4.2
Console method, 28.4.3
create instance, 28.4.2
Enabling SSL for IIS, 30.5.1
ID, 28.4.6
IIS, 28.4.7, 28.4.8, 28.4.10
installing, 28.4
IP address validation, 9.3.3
logging, 24.1
password, 28.4.6
polling frequency, 9.4.3
polling frequency, changing, 9.4.3
Sun Web servers, 28.4.7
webgate.dll, 30.5.2, 30.5.3.4.2, 31.5.3
ISA Server, 31.2
WebPass
logging, 24.1
worker MPM, 29.4

X

xlC.rte 6.0 runtime library, 29.3.2