The following procedure walks through provisioning using the remote registration tool, in-band mode. In this example, OAMRequest_short.xml is used as a template to create an agent named my-10g-agent1, protecting /.../*, and declaring a public resource, /public/index.html. Your values will be different. You can use a full registration template to specify public, private, and excluded resources.
See Performing Remote Registration for OAM Agents.
To use remote registration with a 10g WebGate for Access Manager 11g:
Acquire the remote registration tool and set up the script for your environment. For example:
Locate RREG.tar.gz file in the following path:
$ORACLE_HOME/oam/server/rreg/client/RREG.tar.gz
Untar RREG.tar.gz file to any suitable location. For example: rreg/bin/oamreg.
In the oamreg script (oamreg.bat or oamreg.sh), set the following environment variables based on your situation (client side or server side) and information.
See Table 15-5.
Create the registration request:
Locate OAMRequest_short.xml and copy it to a new file. For example:
$OAM_REG_HOME/input/OAMRequest_short.xml/
Copy: OAMRequest_short.xml
To: my-10g-agent1.xml
Edit my-10g-agent1.xml to include details for your environment. For example:
<OAMRegRequest>
<serverAddress>http://ruby.uk.example.com:7001</serverAddress>
<hostIdentifier>my-10g</hostIdentifier>
<agentName>my-10g-agent1</agentName>
<protectedResourcesList> <resource>/myapp/</resource> <resource>/myapp/.../*</resource> </protectedResourcesList> <publicResourcesList> <resource>/public/index.html</resource> </publicResourcesList> <excludedResourcesList> <resource>/excluded/index.html</resource> </excludedResourcesList>
<autoCreatePolicy>true</autoCreatePolicy>
<primaryCookieDomain>.uk.example.com</primaryCookieDomain>
<logOutUrls>
<url>/oamsso/logout.html</url>
</logOutUrls>
</OAMRegRequest>
Register the agent.
For example:
Locate the remote registration script.
Windows: rreg\bin\oamreg.bat
From the directory containing the script, execute the script using inband mode.
For example:
$ ./bin/oamreg.sh inband input/my-10g-agent1.xml
Welcome to OAM Remote Registration Tool! Parameters passed to the registration tool are: Mode: inband Filename: ...
When prompted, enter the following information using values for your environment:
Enter your agent username: userame Username: userame Enter agent password: ******** Do you want to enter a WebGate password?(y/n) n iv. Do you want to import an URIs file?(y/n) n
Review the final message to confirm that this was a successful registration:
Inband registration process completed successfully! Output artifacts are created in the output folder"
Ignore the ObAccessClient.xml file created during registration for now.
Log in to the Oracle Access Management Console and add resources for the new registration to the Application Domain.
See Table 25-1.
Under Application Security, click the following links to reveal Search controls:
Use the Search controls to locate the Application Domain in which your WebGate registration page is created, then click the name in the Results table to display the page.
Click the Resources tab and then Create.
OAM Proxy Port—Under Configurations, double click Server Instances and search for the server to get the OAM Proxy port details.
See Table 6-3.
Proceed as needed for your environment:
Existing WebGate: Configuring Centralized Logout for 10g WebGate with 11g OAM Servers
Uninstalled WebGate: Locating and Installing the Latest 10g WebGate for Access Manager 11g
Optional: Managing 10g OAM Agents Remotely