Configuring the Database Security Store for an Oracle Identity and Access Management Domain

You must run the configureSecurityStore.py script to configure the Database Security Store. This is the only security store type supported by Oracle Identity and Access Management 11g Release 2.

There are two options to configure the Database Security Store:

• -m create

• -m join

The instructions in this chapter use the create option because the join option is for additional domains to use the same Database Security Store already created.

To configure a domain to use a database security store using the -m create option, you must run the configureSecuirytStore.py script as follows depending on your platform:

• On Windows:

  MW_home\oracle_common\common\bin\wlst.cmd <IAM_Home>\common\tools\configureSecurityStore.py -d <domaindir> -c IAM -p <opss_schema_pwd> -m create

• On UNIX:

  MW_home/oracle_common/common/bin/wlst.sh <IAM_Home>/common/tools/configureSecurityStore.py -d <domaindir> -c IAM -p <opss_schema_pwd> -m create

Note: For both platforms, the -c option must be specified as IAM.

The following is sample output from the script:

Using default context in /u01/Oracle/Middleware/user_projects/domains/IDM_domain/config/fmwconfig/jps-config-migration.xml file for credential store.
Credential store location : jdbc:oracle:thin:@myserver.com:1521/orcl
Credential with map Oracle-IAM-Security-Store-Diagnostics key Test-Cred stored successfully!
 Credential for map Oracle-IAM-Security-Store-Diagnostics and key Test-Cred is:
                GenericCredential
Info: diagnostic credential created in the credential store.
Info:  Create operation has completed successfully.

At this point, you can start the Domain Administration Server and the Managed Server.