Before You Begin
This 15-minute tutorial shows you how to deploy Oracle Identity Governance application on Oracle Cloud Infrastructure.
Background
Oracle Identity Governance application available on the Oracle Cloud Infrastructure Marketplace allows you to quickly deploy an instance of Oracle Identity Governance.
What Do You Need?
- An Oracle Cloud compute instance
- SSH key pair generated in OpenSSH format
- A Linux host for running the
idmcli
utility
The idmcli
utility is also available for Windows
and Mac platforms. This tutorial covers running the idmcli
utility on Linux.
Creating an Oracle Cloud Infrastructure Compute Instance with Oracle Identity Governance Image
- Launch your browser and navigate to the OCI Marketplace at https://cloudmarketplace.oracle.com/marketplace/oci
- In the Applications tab, in the search box, enter identity management and click Go.
- In the Search Results page, click Oracle Identity Management. The Oracle Identity Management application listing page is displayed.
- Read the Usage Information and then, click Get App.
- In the Select OCI Region drop-down, select the OCI region where your compute instance is setup and then, click Sign In.
- On the Sign In page, select your cloud tenant, enter the user name and password and then, click Sign In.
- On the Oracle Identity Management app details page, select the Compartment to which you want to deploy the application.
- Select I have reviewed and accept the Oracle Standard Terms and Restrictions and then, click Launch Instance.
- In the Create Compute Instance page, enter a name for the instance.
- Select the Availability Domain.
- Select the Instance Type. In this case, select Virtual Machine.
- Under the Instance Shape section, click Change Shape.
- In the Browse All Shapes dialog box, select VM.Standard2.2 and then, click Select Shape.
- In the Configure networking section, select the Virtual cloud network compartment, Virtual cloud network, Subnet compartment, and the Subnet for the instance.
- In the Add SSH key section, select Choose SSH key file and then, click Choose Files.
- Select the public SSH key file (.pub) and click Open.. To know more about creating SSH keys, see Creating SSH Keys for Use with Oracle Cloud Services.
- Click Create. The instance is created and provisioning starts. The instance creation is complete when the status shows RUNNING.
- Make note of the ip address of the instance displayed on the instance page.
Configuring the Oracle Identity Governance Instance Using idmcli
After creating the compute instance in OCI, perform the rest of
the configuration using the idmcli
utility.
- While the instance is being created, click the View Usage Instructions.
- In the Usage Instructions page, navigate to Configuring OIG
By Using the idmcli utility. Click the link to download
idmcli.zip
to your local host. - Extract the contents of the zip file.
- Provide the execute permission for the executable file.
chmod +x idmcli
- Make a copy of
config-template.yaml
and name ifconfig.yaml
. - Edit
config.yaml
and provide the ip address of the instance and the location of the private SSH key. - Save and close the
config.yaml
file. - In a Linux terminal run the
idmcli
command:./idmcli oig single-node --config ./config.yaml
- When prompted for password, enter a password of your choice.
This is a common password used for all of the configuration.
The password must consist of alphanumeric or specific special
characters ($, #, or _). The password cannot begin with a
special character or a number. The utility takes approximately
45minutes to complete.
[2019-09-13 05:23:52] Using parameters from file /home/opc/params.prop [2019-09-13 05:23:52] [2019-09-13 05:23:52] ================================================== [2019-09-13 05:23:52] Creating database [2019-09-13 05:23:52] -------------------------------------------------- [2019-09-13 05:23:52] Copying database files 1% complete ...... Creating and starting Oracle instance 35% complete ...... Completing Database Creation 56% complete ...... Executing Post Configuration Actions
[2019-09-13 05:30:31] ================================================== [2019-09-13 05:30:31] Executing @xaview.sql [2019-09-13 05:30:31] -------------------------------------------------- ...... [2019-09-13 05:30:31] @xaview.sql execution completed successfully [2019-09-13 05:30:31] ================================================== ...... [2019-09-13 05:30:31] ================================================== [2019-09-13 05:30:31] Executing RCU [2019-09-13 05:30:31] -------------------------------------------------- ......
[2019-09-13 05:34:11] ================================================== [2019-09-13 05:34:11] Creating silent domain creation scripts from template ...... [2019-09-13 05:34:11] ================================================== [2019-09-13 05:34:11] Creating domain ......
[2019-09-13 05:40:14] -------------------------------------------------- [2019-09-13 05:40:14] Domain creation completed successfully [2019-09-13 05:40:14] ==================================================
......
[2019-09-13 05:40:14] ================================================== [2019-09-13 05:40:14] Executing offlineConfigManager [2019-09-13 05:40:14] --------------------------------------------------
......
[2019-09-13 05:41:01] ================================================== [2019-09-13 05:41:01] Starting servers [2019-09-13 05:41:01] -------------------------------------------------- ...... [2019-09-13 05:41:01] Starting Admin server ...... [2019-09-13 05:42:41] Admin Server started [2019-09-13 05:42:41] Starting SOA server ...... [2019-09-13 05:44:52] SOA Server started [2019-09-13 05:44:52] Starting OIG server ...... [2019-09-13 05:48:58] OIM Server started [2019-09-13 05:48:58] -------------------------------------------------- [2019-09-13 05:48:58] Servers started successfully [2019-09-13 05:48:58] ================================================== - At the end the various console urls and the usernames are
displayed.
......
[2019-09-13 06:00:21] Oracle home: /u01/app/oracle/product/middleware/ [2019-09-13 06:00:21] OIG domain home: /u01/idm_data/user_projects/governance_domain ...... [2019-09-13 06:00:21] Weblogic Console non-secure URL: http://100.111.93.34:7001/console [2019-09-13 06:00:21] Weblogic Console secure URL: https://100.111.93.34:7003/console [2019-09-13 06:00:21] Weblogic Adminstrator username: weblogic ...... [2019-09-13 06:00:21] OIG System Administrator non-secure URL: http://100.111.93.34:14000/sysadmin [2019-09-13 06:00:21] OIG self-service non-secure URL: http://100.111.93.34:14000/identity [2019-09-13 06:00:21] OIG System Administrator secure URL: https://100.111.93.34:14003/sysadmin [2019-09-13 06:00:21] OIG self-service secure URL: https://100.111.93.34:14003/identity [2019-09-13 06:00:21] OIG Adminstrator username: xelsysadm ...... [2019-09-13 06:00:21] SOA non-secure URL: http://100.111.93.34:8001/integration/service/IdentityService/identity/ [2019-09-13 06:00:21] SOA secure URL: https://100.111.93.34:8003/integration/service/IdentityService/identity/ ...... [2019-09-13 06:00:21] -------------------------------------------------- [2019-09-13 06:00:21] OIG setup completed successfully [2019-09-13 06:00:21] ==================================================
Accessing the Oracle Identity Governance Consoles
- Launch your browser and navigate to the Weblogic console of
the instance you just deployed. The secure url for the
Weblogic console is of the format:
https://<ip address of the instance>:7003/console
You can specify the private or the public address of the instance in the url. - Launch your browser and navigate to the Oracle Identity
Governance System Administration console. The secure url for
the OIG System Administration console is of the format:
https://<ip address of the instance>:14003/sysadmin
- Launch your browser and navigate to the Oracle Identity
Governance Self-Service console. The secure url for the OIG
Self-Service console is of the format:
https://<ip address of the instance>:14003/identity
Want to Learn More?
Feedback
To provide feedback on this tutorial, please contact Identity Management User Assistance.