Here is a brief review of remote registration using the Oracle-provided tool (oamreg) with OSSO Agents.
This topic provides the OSSO Registration Request for use with the remote registration tool oamreg.sh (Linux) or oamreg.bat (Windows).
The information highlighted in bold must be modified for a mod_osso agent. However, all other fields can use the default values.
Both inband
and outofband
remote registration modes require a request file with the input argument, as listed in Table 29-6.
Table 29-6 OpenSSO Request Files for Remote Registration
Templates for . . . | Description |
---|---|
Register OSSO Agents (mod_osso) |
$OAM_REG_HOME/input/OSSORequest.xml |
Other Templates |
|
Update Agent: |
$OAM_REG_HOME/input/OSSOUpdateAgentRequest.xml See Also: "Updating Agents Remotely" |
Create Policies: Create New Host Identifiers and an Application Domain without Registering an Agent |
$OAM_REG_HOME/input/CreatePolicyRequest.xml See Also: "Managing Policies and Application Domains Remotely" |
Update Policies: Existing Host Identifiers and Application Domain (not associated with an Agent Registration) |
$OAM_REG_HOME/input/UpdatePolicyRequest.xml See Also: "Managing Policies and Application Domains Remotely" |
Table 29-7 describes elements in the OSSO request file: OSSORequest.xml.
Table 29-7 OSSO-Specific Elements in a Remote Registration Request
Elements | Description | Example |
---|---|---|
<serverAddress> <agentName> <hostIdentifier> <agentBaseUrl> <autoCreatePolicy> <applicationDomain> <virtualhost> |
Elements common to all remote registration request templates. |
See Table 15-8 |
<ssoServerVersion> |
SSO Token version values:
|
<ssoServerVersion> >...</ssoServerVersion> > |
<OracleHomePath> |
The absolute file system directory path to the mod_osso agent. |
<oracleHomePath> $ORACLE_HOME </oracleHomePath> |
<updateMode> |
Default: None specified |
<updateMode></updateMode> |
<adminInfo> |
Optional. Administrator details for this mod_osso instance. For example, Application Administrator. Default: None specified |
<adminInfo></adminInfo> |
<adminId> |
Optional. Administrator log in ID for this mod_osso instance. For example, SiteAdmin. Default: None specified |
<adminId></adminId> |
<logoutUrl> |
Include the Logout URLs for consumption during remote registration. Default: None specified |
<logoutUrl>logout1.html</logoutUrl> |
<failureUrl> |
Include the Failure URLs for consumption during remote registration. Default: None specified |
<failureUrl>failure1.html</failureUrl> |
Remote OSSO Agent registration automatically:
Creates the agent page for the Oracle Access Management Console
Creates an Application Domain and basic policies to protect applications
Updates the OSSO configuration file on the client to be consumed by the agent at run time
Here is a brief summary of tasks required to perform in-band remote registration for your OSSO agent.
Full details are provided in Registering and Managing OAM 11g Agents.
You must have familiarized yourself with OAM Remote Registration before you proceed.
To perform in-band remote registration of OSSO Agents:
The term out-of-band registration refers to manual registration that involves coordination and actions by both the in-band Administrator and the out-of-band Administrator.
In outofband
mode, the in-band Administrator uses the starting request file submitted by the out-of-band Administrator, and returns a generated response file to the out-of-band Administrator for additional processing. The out-of-band Administrator runs the remote registration tool with the response file as input to update the agent configuration file.
This is a brief summary of tasks required to perform out-of-band remote registration for your OSSO agent. Full details are provided in other topics.
You must have familiarized yourself with the "OAM Remote Registration" before you can proceed.
To perform an out-of-band remote registration for out-of-network OSSO Agents: