The ISAPI 10g WebGate must be installed on the same computer as the SharePoint Server. Other components in this integration can reside on the same host as the WebGate or any other computer in your deployment (Solaris, Linux, or Windows platforms).
Tasks in the following procedure are required for all integration scenarios described in this chapter.
After installing and testing Microsoft components, perform steps here to install Access Manager for your integration. This task applies to both integration scenarios in this chapter. To avoid repetition, information here is not repeated elsewhere.
A different host can be set up for Active Directory or some other directory service. If both Access Manager and SharePoint Server are set up for different instances of Active Directory, both instances must belong to the same Active Directory domain.
Prerequisites
Install and test Microsoft components described in "Required Microsoft Components".
To prepare for integration with SharePoint Server
Install Oracle Identity Management and Access Manager as described in the .
Register a 10g WebGate for IIS Web server with Access Manager:
Log in to the Oracle Access Management Console. For example: http://
host:port/oamconsole
.
Click Application Security at the top of the window.
In the Launch Pad tab, click SSO Agent Registration in the Quick Start Wizards section.
Select WebGate as the agent type and click Next.
Set the agent version to 10g and enter required details (those with an *):
Note:
Do not specify a Base URL.
Protected Resource List: In this table, enter individual resource URLs to be protected by this OAM Agent.
Public Resource List: In this table, enter individual resource URLs to be public (not protected).
Click Apply to submit the registration, check the Confirmation window for the location of generated artifacts, then close the window.
Proceed as follows:
Install a fresh WebGate: Continue with steps 6, 7, and 8.
Existing WebGate on SharePoint Host: Skip to "Integrating With Microsoft SharePoint Server".
Note:
Only 64-bit ISAPI WebGates are supported as described in "Integrating With Microsoft SharePoint Server Configured With LDAP Membership Provider".
Locate and download the 64-bit ISAPI WebGate installer as follows:
Go to Oracle Fusion Middleware 11gR1 Software Downloads at:
https://www.oracle.com/technology/software/products/middleware/htdocs/fmw_11_download.html
Click Accept License Agreement, at the top of the page.
From the Access Manager Webgates (10.1.4.3.0) row, click the download link for the desired platform and follow on-screen instructions.
Store the WebGate installer in the same directory as any 10g (10.1.4.3) Access System Language Packs you want to install.
Launch the WebGate installer for your platform, installation mode, and Web server.
Follow these steps:
Follow on-screen prompts.
Provide Administrator credentials for the Web server.
Language Pack—Choose a Default Locale and any other Locales to install, then click Next.
WebGate installation begins (IISImpersonationModule.dll
will be installed in WebGate_install_dir\access\Oblix\apps\Webgate\bin\
).
Before updating the Web server configuration, copy WebGate artifacts from the Admin Server to the computer hosting the WebGate.
On the computer hosting the Oracle Access Management Console (AdminServer), locate and copy ObAccessClient.xml (and any certificate artifacts):
$DOMAIN_HOME/output/
$Agent_Name/
ObAccessClient.xml
password.xml
(if needed)aaa_key.pem
(your private key generated by openSSL)aaa_cert.pem
(signed certificates in PEM format)On the OAM Agent host, add the artifacts to the WebGate path. For example:
/access/oblix/lib/ObAccessClient.xml
/access/oblix/config
Restart the WebGate Web server.
(Optional.) Restart the OAM Server that is hosting this Agent. This step is recommended but not required.
Proceed as needed to complete this integration within your environment: