This chapter presents planning information for your Oracle Communications Delegated Administrator system and describes recommended deployment topologies that enhance security.
For more information about installing Delegated Administrator, see Delegated Administrator Installation and Configuration Guide.
Delegated Administrator is deployed on Oracle GlassFish Server. For information on how to install and configure GlassFish Server, see Delegated Administrator Installation and Configuration Guide. To operate GlassFish Server in secure mode, see the discussion about managing administrative security in Oracle GlassFish Server Security Guide.
The GlassFish Server installation prompts for the following authentication and security protocols:
Administration User and Administration User password
Master password for SSL certificate
Port number for HTTPS port
Secure administration server instance
It is important to minimize the GlassFish installation by not installing components that you do not intend to use. During GlassFish installation, be sure to enter no when asked to install the following components:
High Availability Database Server
Load Balancing Plugin
Sample Applications
Note:
By default, the GlassFish installation creates both a regular HTTP listener and an HTTPS (HTTP with SSL) listener. As a security practice, Oracle recommends that you disable the non-SSL (HTTP) listener for Delegated Administrator. See the discussion about configuring an HTTP listener for SSL in Oracle GlassFish Server Administration Guide for more information.For more information on installing GlassFish Server for the Communications Suite product, see Delegated Administrator Installation and Configuration Guide.
Review the following installation documentation:
Installation Scenario in Delegated Administrator Installation and Configuration Guide
Delegated Administrator Initial Configuration in Delegated Administrator Installation and Configuration Guide
Understanding Schema and Provisioning Options in Messaging Server in Communications Suite Deployment Planning Guide.
The Delegated Administrator installation and initial configuration program prompts for credentials of the following:
Default SSL port for Delegated Administrator Server Host
Administrator User ID and Password for the Delegated Administrator Console
Secure Administrator Server Instance option for the Delegated Administrator Console
Administrator User ID and Password for the Delegated Administrator Server
Secure Administrator Server Instance option for the Delegated Administrator Server
User/Group Directory Server manager (bind DN and password)
Delegated Administrator Internal LDAP Username and Password
Access Manager Top-level Administrator and Password
Access Manager Internal LDAP Auth Username and Password
Secure Administrator Server Instance option for the Delegated Administrator Console
Top-level Administrator for Default Org and Password
In the post-configuration tasks in Delegated Administrator Installation and Configuration Guide, the following procedures are outlined:
Adding ACIs for Schema 2 Compatibility Mode
Running Delegated Administrator in SSL Mode on Web Server. In addition to running Delegated Administrator in SSL Mode on Web Server, you can also run it in SSL mode on GlassFish Server. For more information, see the discussion about certificates and SSL in Oracle GlassFish Server Security Guide.