E Modifying OIG to Revert OIG-OAM Integration Configuration
-
Revert Weblogic Authentication providers changes in OIG Domain.
-
Login into Weblogic Administration console for OIG domain.
-
Navigate to Security Realms>>Providers>>Authentication.
-
Delete the following authentication providers:
-
Delete OAMIDAsserter
-
Delete OIMSignatureAuthenticator
-
Delete OIDAuthenticator, if the directory type used is OID
Note:
If the directory type is OUD or AD, delete OUDAuthenticator or ADAuthenticator respectively.
-
-
Create a new authentication provider.
-
Select New.
-
Enter OIMAuthenticationProvider as the name of the new authenticator.
-
Select Type as OIMAuthenticationProvider.
-
Click OK.
-
After creating the authenticator, navigate to OIMAuthenticationProvider details page.
-
Set control flag to SUFFICIENT.
-
Click Save.
-
-
Reorder Authentication Providers. Select Reorder and sort the authenticator providers as follows:
-
DefaultAuthenticator
-
OIMAuthenticationProvider
-
TrustService Identity Assert
-
DefaultIdentityAsserter
-
Other authentication providers/asserters, if any.
-
-
-
Delete event-handler file from MDS.
Login into Oracle Enterprise Manager (EM) in OIG Domain to delete metadata files from MDS. See https://docs.oracle.com/middleware/12213/oig/OMDEV/deploying-and-undeploying-customizations.htm#OMDEV5274.Note:
Use file name as /db/ssointg/EventHandlers.xml and start the process. -
Disable SSOEnabled flag from SSOIntegrationMXBean.
-
Login into Oracle Enterprise Manager in OIG Domain.
-
Select Weblogic Domain >> System MBean Browser.
-
Navigate to Application Defined Mbeans >> oracle.iam >> Server: oim_server >> Application: oim >> IAMAppRuntimeMBean >> SSOIntegrationMXBean
-
From the SSOIntegrationMXBean's Attributes tab, set SsoEnabled value to false.
-
Click Apply.
-
-
Delete the oim.conf from OHS domain.
If you have copied the oim.conf file manually to OHS domain, then delete $OHS_DOMAIN_HOME/config/fmwconfig/components/OHS/ohs1/moduleconf/oim.conf from OHS domain. -
Restart OHS Server, OIG and OAM domain.