Go to main content
1/27
Contents
List of Figures
List of Tables
Title and Copyright Information
Preface
Intended Audience
Documentation Accessibility
Related Documentation
Conventions
1
Introduction to High Availability
1.1
What is High Availability
1.1.1
High Availability Problems
1.1.2
High Availability Solutions
1.2
How To Use This Guide
1.2.1
What's New In this Guide
1.2.2
Oracle Fusion Middleware Documentation Libraries
1.3
High Availability Information in Other Documentation
Part I High Availability Features and Capabilities
2
Oracle Fusion Middleware High Availability Framework
2.1
Key Oracle Fusion Middleware Concepts
2.1.1
What is a WebLogic Server Domain?
2.1.1.1
What Is the Administration Server?
2.1.1.2
About Managed Servers and Managed Server Clusters
2.1.1.3
What Is Node Manager?
2.1.2
What Is a System Component Domain?
2.1.3
What Is a Middleware Home?
2.1.4
What Is an Oracle Home?
2.1.4.1
What Is an Oracle Common Home?
2.1.5
What Is a WebLogic Server Home?
2.2
Oracle Fusion Middleware High Availability Terminology
2.3
Oracle Fusion Middleware High Availability Solutions
2.3.1
Local High Availability
2.3.2
Oracle Fusion Middleware High Availability Technologies
2.3.2.1
Server Load Balancing
2.3.3
Active-Passive Deployment
2.3.4
About Active-Active and Active-Passive Solutions
2.3.5
Disaster Recovery
2.4
Protection from Planned and Unplanned Down Time
3
High Availability for WebLogic Server
3.1
What Is a WebLogic Server Cluster?
3.2
WebLogic Server Clusters and WebLogic Server Domains
3.3
Benefits of Clustering
3.4
Key Capabilities of a Cluster
3.4.1
Application Failover
3.4.2
Server Migration
3.4.3
Load Balancing
3.5
Types of Objects That Can Be Clustered
3.6
Communications in a Cluster
3.7
Cluster-Wide JNDI Naming Service
3.8
Failover and Replication in a Cluster
3.8.1
Session Replication
3.9
Whole Server Migration
3.9.1
Node Manager's Role in Whole Server Migration
3.9.2
Server Migration Processes and Communications
3.9.2.1
Startup Process in a Cluster with Migratable Servers
3.9.2.2
Automatic Whole Server Migration Process
3.9.2.3
Manual Whole Server Migration Process
3.9.2.4
Administration Server's Role in Whole Server Migration
3.9.2.5
Migratable Server Behavior in a Cluster
3.9.2.6
Cluster Master's Role in Whole Server Migration
3.10
JMS and JTA High Availability
3.10.1
User-Preferred Servers and Candidate Servers
3.10.2
Considerations for Using File Stores on NFS
3.11
Administration Server and Node Manager High Availability
3.11.1
Administration Server Failure
3.11.2
Node Manager Failure
3.12
Load Balancing
3.13
GridLink Data Sources
3.14
Multi Data Sources
3.15
Cluster Configuration and config.xml
3.16
About Singleton Services
3.17
WebLogic Server and LDAP High Availability
4
Considerations for High Availability Oracle Database Access
4.1
Oracle Real Application Clusters and Fusion Middleware
4.1.1
Java-Based Oracle Fusion Middleware Components Deployed to Oracle WebLogic Server
4.1.2
GridLink Data Sources and Oracle RAC
4.1.3
Using Multi Data Sources with Oracle RAC
4.1.3.1
Configuring Multi Data Sources for MDS Repositories
4.1.3.2
Oracle RAC Configuration Requirements
4.1.3.3
Configuring Schemas for Transactional Recovery Privileges
4.1.4
Configuring GridLink Data Sources with Oracle RAC
4.1.5
Configuring Multi Data Sources with Oracle RAC
4.1.6
JDBC Clients
4.1.7
System Clients
4.2
Protecting Idle Connections from Firewall Timeouts
4.3
Troubleshooting
4.4
Using SCAN Addresses with Oracle Database 11g (11.2)
Part II Configuring High Availability for Oracle Identity and Access Management Components
5
Configuring High Availability for Oracle Identity Manager Components
5.1
Oracle Identity Manager Component Architecture
5.1.1
Oracle Identity Manager Component Characteristics
5.1.2
Runtime Processes
5.1.3
Component and Process Lifecycle
5.1.4
Starting and Stopping Oracle Identity Manager
5.1.5
Configuration Artifacts
5.1.6
External Dependencies
5.1.7
Oracle Identity Manager Log File Locations
5.2
Oracle Identity Manager High Availability Concepts
5.2.1
Oracle Identity Manager High Availability Architecture
5.2.2
Starting and Stopping the OIM Cluster
5.2.3
Cluster-Wide Configuration Changes
5.2.4
Considerations for Synchronizing with LDAP
5.3
High Availability Directory Structure Prerequisites
5.4
Oracle Identity Manager High Availability Configuration Steps
5.4.1
Prerequisites for Configuring Oracle Identity Manager
5.4.1.1
Running RCU to Create the OIM Schemas in a Database
5.4.1.2
Installing Oracle WebLogic Server
5.4.1.3
Installing Oracle SOA Suite on OIMHOST1 and OIMHOST2
5.4.1.4
Installing Oracle Identity and Access Management on OIMHOST1 and OIMHOST2
5.4.1.5
Creating wlfullclient.jar Library on OIMHOST1 and OIMHOST2
5.4.2
Creating and Configuring a WebLogic Domain for OIM, SOA, and BI Publisher on OIMHOST1
5.4.3
Configuring the Database Security Store for the Domain
5.4.4
Post-Installation Steps on OIMHOST1
5.4.4.1
Creating boot.properties for the Administration Server on OIMHOST1
5.4.4.2
Update Node Manager on OIMHOST1
5.4.4.3
Start Node Manager on OIMHOST1
5.4.4.4
Start the Administration Server on OIMHOST1
5.4.5
Configuring Oracle Identity Manager on OIMHOST1
5.4.5.1
Prerequisites for Configuring Oracle Identity Manager
5.4.5.2
Updating the Coherence Configuration for the Coherence Cluster
5.4.5.3
Running the Oracle Identity Management Configuration Wizard
5.4.5.4
Post-Configuration Steps: Start WLS_SOA1, WLS_OIM1, and WLS_BIP1 Managed Servers on OIMHOST1
5.4.6
Validate the Oracle Identity Manager Instance on OIMHOST1
5.4.7
Propagating Oracle Identity Manager to OIMHOST2
5.4.8
Post-Installation Steps on OIMHOST2
5.4.8.1
Update Node Manager on OIMHOST2
5.4.8.2
Start Node Manager on OIMHOST2
5.4.8.3
Start WLS_SOA2, WLS_OIM2, and WLS_BIP2 Managed Servers on OIMHOST2
5.4.9
Validate Managed Server Instances on OIMHOST2
5.4.10
Configuring BI Publisher
5.4.10.1
Setting Scheduler Configuration Options
5.4.10.2
Configuring JMS for BI Publisher
5.4.10.3
Validating the BI Publisher Scheduler Configuration
5.4.11
Configuring Oracle Internet Directory using the LDAP Configuration Post-setup Script
5.4.12
Configuring Server Migration for OIM, SOA, and BI Publisher Managed Servers
5.4.12.1
Setting Up a User and Tablespace for the Server Migration Leasing Table
5.4.12.2
Creating a GridLink Data Source
5.4.12.3
Editing Node Manager's Properties File
5.4.12.4
Setting Environment and Superuser Privileges for the wlsifconfig.sh Script
5.4.12.5
Configuring Server Migration Targets
5.4.12.6
Testing the Server Migration
5.4.13
Configuring a Default Persistence Store for Transaction Recovery
5.4.14
Install Oracle HTTP Server on WEBHOST1 and WEBHOST2
5.4.15
Configuring Oracle Identity Manager to Work with the Web Tier
5.4.15.1
Prerequisites to Configure OIM to Work with the Web Tier
5.4.15.2
Configuring Oracle HTTP Servers to Front End OIM, SOA, and BI Publisher Managed Servers
5.4.16
Validate the Oracle HTTP Server Configuration
5.4.17
Oracle Identity Manager Failover and Expected Behavior
5.4.18
Scaling Up Oracle Identity Manager
5.4.19
Scaling Out Oracle Identity Manager
5.4.19.1
Configuring Oracle HTTP Server to Recognize New Managed Servers
6
Configuring High Availability for Oracle Access Management Access Manager Components
6.1
Access Manager Component Architecture
6.1.1
Access Manager Component Characteristics
6.1.2
Access Manager Configuration Artifacts
6.1.3
Access Manager External Dependencies
6.1.3.1
Access Manager Log File Location
6.2
Access Manager High Availability Concepts
6.2.1
Access Manager High Availability Architecture
6.2.2
Protection from Failures and Expected Behaviors
6.2.2.1
WebLogic Server Crash
6.2.2.2
Node Failure
6.2.2.3
Database Failure
6.3
High Availability Directory Structure Prerequisites
6.4
Access Manager High Availability Configuration Steps
6.4.1
Access Manager Configuration Prerequisites
6.4.2
Running the Repository Creation Utility to Create the Database Schemas
6.4.3
Installing Oracle WebLogic Server
6.4.4
Installing and Configuring the Access Manager Application Tier
6.4.5
Configuring the Database Security Store
6.4.6
Creating boot.properties for the Administration Server on OAMHOST1
6.4.7
Starting OAMHOST1
6.4.7.1
Create the Node Manager Properties File on OAMHOST1
6.4.7.2
Start Node Manager
6.4.7.3
Start Access Manager on OAMHOST1
6.4.8
Validating OAMHOST1
6.4.9
Configuring OAM on OAMHOST2
6.4.10
Starting OAMHOST2
6.4.10.1
Create the Node Manager Properties File on OAMHOST2
6.4.10.2
Start Node Manager
6.4.10.3
Start Access Manager on OAMHOST2
6.4.11
Validating OAMHOST2
6.4.12
Configure Access Manager to Work with Oracle HTTP Server
6.4.12.1
Update Oracle HTTP Server Configuration
6.4.12.2
Restart Oracle HTTP Server
6.4.12.3
Make OAM Server Aware of the Load Balancer
6.4.13
Configuring Access Manager to use an External LDAP Store
6.4.13.1
Extending Directory Schema for Access Manager
6.4.13.2
Create Users and Groups in LDAP
6.4.13.3
Create a User Identity Store
6.4.13.4
Set LDAP to System and Default Store
6.4.13.5
Set Authentication to Use External LDAP
6.4.14
Validating the Access Manager Configuration
6.4.15
Configuring Oracle Coherence to Keep Configuration Files in Sync
6.4.16
Scaling Up Access Manager Topology
6.4.16.1
Scaling Up Access Manager
6.4.16.2
Registering the New Managed Server
6.4.16.3
Configuring WebGate with the New OAM Managed Server
6.4.17
Scaling Out Access Manager
6.4.17.1
Registering the Managed Server with OAM
6.4.17.2
Configuring WebGate with the New OAM Access Server
7
Configuring High Availability for Oracle Adaptive Access Manager Components
7.1
Oracle Adaptive Access Manager Component Architecture
7.1.1
Oracle Adaptive Access Manager Component Characteristics
7.1.1.1
Oracle Adaptive Access Manager State Information
7.1.1.2
Oracle Adaptive Access Manager Runtime Processes
7.1.1.3
Oracle Adaptive Access Manager Process Lifecycle
7.1.1.4
Oracle Adaptive Access Manager Configuration Artifacts
7.1.1.5
Oracle Adaptive Access Manager Deployment Artifacts
7.1.1.6
Oracle Adaptive Access Manager External Dependencies
7.1.1.7
Oracle Adaptive Access Manager Log File Location
7.2
Oracle Adaptive Access Manager High Availability Concepts
7.2.1
Oracle Adaptive Access Manager High Availability Architecture
7.2.1.1
Starting and Stopping the Cluster
7.2.1.2
Cluster-Wide Configuration Changes
7.2.2
Protection from Failures and Expected Behaviors
7.3
Oracle Adaptive Access Manager High Availability Configuration Steps
7.3.1
Prerequisites for Oracle Adaptive Access Manager Configuration
7.3.2
Run the Repository Creation Utility to Create the OAAM Schemas in a Database
7.3.3
Installing Oracle WebLogic Server
7.3.4
Installing and Configuring the Oracle Adaptive Access Manager Application Tier
7.3.4.1
Install Oracle Fusion Middleware for Identity Management
7.3.4.1.1
Configure Oracle Access Manager on OAAMHOST1
7.3.5
Configuring the Database Security Store for the Domain
7.3.6
Creating boot.properties for the Administration Server on OAAMHOST1
7.3.7
Create the Oracle Adaptive Access Manager Administration User
7.3.8
Start OAAMHOST1
7.3.8.1
Create the Node Manager Properties File on OAAMHOST1
7.3.8.2
Start Node Manager
7.3.8.3
Start Oracle Adaptive Access Manager on OAAMHOST1
7.3.9
Validating OAAMHOST1
7.3.10
Configure Oracle Adaptive Access Manager on OAAMHOST2
7.3.11
Start OAAMHOST2
7.3.11.1
Create the Node Manager Properties File on OAAMHOST2
7.3.11.2
Start Node Manager
7.3.11.3
Start Oracle Adaptive Access Manager on OAAMHOST2
7.3.12
Validating OAAMHOST2
7.3.13
Configure Oracle Adaptive Access Manager to Work with Oracle HTTP Server
7.3.13.1
Update Oracle HTTP Server Configuration
7.3.13.2
Restart Oracle HTTP Server
7.3.13.3
Change Host Assertion in WebLogic
7.3.14
Validating the Oracle Adaptive Access Manager Configuration
7.3.15
Scaling Up and Scaling Out the Oracle Adaptive Access Manager Topology
7.3.15.1
Scaling Up Oracle Adaptive Access Manager
7.3.15.2
Scaling Out Oracle Adaptive Access Manager
8
Configuring High Availability for Oracle Access Management Security Token Service
8.1
Security Token Service High Availability Architecture
8.1.1
Clients and Client Connections
8.1.2
Cluster Wide Configuration Changes
8.2
Security Token Service Component Characteristics
8.2.1
Security Token Service Component Lifecycle
8.2.2
Runtime Processes
8.2.2.1
Starting and Stopping Security Token Service
8.2.2.2
J2EE Components and Subcomponents
8.2.2.3
Session State Information
8.2.3
Configuration Artifacts
8.2.4
External Dependencies
8.3
Security Token Service High Availability Configuration Steps
8.4
Validating Security Token Service High Availability
8.5
Security Token Service Failover and Expected Behavior
8.5.1
Death Detection and Restart
8.5.2
Node Failure
8.6
Disabling and Enabling Security Token Service
8.7
Troubleshooting Security Token Service
8.8
Log File Location
8.9
Additional Considerations
9
Configuring High Availability for Identity Federation Components
9.1
Identity Federation Component Architecture
9.1.1
Identity Federation Component Characteristics
9.1.1.1
Runtime Processes
9.1.1.2
Process Lifecycle
9.1.1.3
Request Flow
9.1.1.4
Configuration Artifacts
9.1.1.5
External Dependencies
9.1.1.6
Identity Federation Log File Location
9.2
Identity Federation High Availability Concepts
9.2.1
Identity Federation High Availability Architecture
9.2.1.1
Starting and Stopping the Cluster
9.2.1.2
Cluster-Wide Configuration Changes
9.2.2
Identity Federation Prerequisites
9.3
Identity Federation High Availability Configuration
9.3.1
Setting the Hostname and Port
9.3.2
Changing the ProviderID Value
9.3.3
Tuning Identity Federation Parameters
9.4
Identity Federation Failover and Expected Behavior
9.5
Troubleshooting Identity Federation High Availability
10
Configuring High Availability for Oracle Entitlements Server
10.1
Oracle Entitlements Server High Availability Concepts
10.1.1
Oracle Entitlements Server High Availability Architecture
10.1.1.1
Oracle Entitlements Server Administration Server High Availability
10.1.1.2
Security Module (OES Client)/Policy Information Point High Availability
10.1.1.3
Security Module in Proxy Mode Working Against Web Service / RMI Security Module in Controlled-Push Mode High Availability
10.1.1.4
Security Module in Proxy Mode Working Against Web Service / RMI Security Module in Controlled Pull Mode High Availability
10.1.1.5
Oracle Entitlements Server WebLogic Server Security Module High Availability
10.1.2
Oracle Entitlements Server Security Module High Availability
10.1.3
Load Balancing
10.1.4
Failover Considerations
10.1.5
Protection from Failures and Expected Behaviors
10.1.5.1
Expected Client Application Behavior When Failure Occurs
10.1.5.2
Node failure
10.1.5.3
Database failure
10.1.6
Starting and Stopping the Oracle Entitlements Server Cluster
10.1.7
Cluster-Wide Configuration Changes
10.1.8
Considerations for Synchronizing with LDAP
10.2
Configuring Oracle Entitlements Server High Availability
10.2.1
Prerequisites for Oracle Entitlements Server Configuration
10.2.2
Configure Weblogic Domain for OES Administration Server on OESHOST1
10.2.3
Post-Configuration and Verification
10.2.3.1
Starting Node Manager
10.2.3.2
Validating the WebLogic Administration Server
10.2.3.3
Creating a Separate Domain Directory for Managed Servers in the Same Node as the Administration Server
10.2.3.3.1
Propagate Changes to Remote Server
10.2.3.4
Start Node Manager on Remote Hosts
10.2.3.5
Stop and Start the WebLogic Administration Server and start oes_server1 and oes_server2
10.2.4
Configure OES Security Module in Controlled-push Mode with Oracle Entitlements Server Administration Server High Availability
10.2.5
Configure Oracle Entitlements Server Security Module in Proxy Mode with PDP High Availability
10.2.6
Configure Oracle Entitlements Server Policy Information Point with High Availability
10.2.7
Configuring Oracle Entitlements Server Web Service Security Module on WebLogic High Availability
10.2.8
Configuring Oracle Entitlements Server WebLogic Security Module High Availability
10.2.9
Using RAC Datasource for Security Module in Controlled-pull Mode and Non-controlled Mode
10.2.10
Configuring Oracle Entitlements Server to Work with the Web Tier
10.2.10.1
Prerequisites
10.2.10.2
Configuring Oracle HTTP Servers to Front End the OES Managed Servers
10.2.10.3
Validate the Oracle HTTP Server Configuration
11
Configuring High Availability for Mobile and Social
11.1
Oracle Access Management Mobile and Social Component Architecture
11.1.1
Session State Information
11.1.2
Component Lifecycle
11.1.3
Component Configuration Artifacts
11.1.4
Mobile and Social Deployment Artifacts
11.2
Mobile and Social Component Characteristics
11.3
Mobile and Social High Availability Concepts
11.3.1
Mobile and Social High Availability Architecture
11.3.2
Mobile and Social High Availability and Node Failover
11.3.2.1
Load Balancing Requirements and Characteristics
11.3.2.2
Session State Replication and Failover
11.3.2.3
Client Application Startup
11.3.2.3.1
Death Detection / Restart
11.4
Configuring Mobile and Social High Availability
11.4.1
Mobile and Social High Availability Requirements
11.4.2
Modifying the WebGate Profile Configuration
11.4.3
Modifying Token Service Provider Configuration in Mobile Security
11.4.4
Modifying OAuth Service Provider Configuration in Federation
12
Configuring High Availability for Oracle Privileged Account Manager Components
12.1
Oracle Privileged Account Manager Component Architecture
12.1.1
Runtime Processes
12.1.2
Process Lifecycle
12.1.3
Session State
12.1.4
External Dependencies
12.1.5
Deployment Artifacts
12.1.6
Log File Locations
12.2
Oracle Privileged Account Manager High Availability Concepts
12.3
Oracle Privileged Account Manager High Availability Architecture
12.3.1
Starting and Stopping the Cluster
12.4
Oracle Privileged Account Manager High Availability and Node Failure
12.5
Oracle Privileged Account Manager High Availability Configuration
12.5.1
Appropriate Development Environment
12.5.2
Components Deployed
12.5.3
Dependencies
12.5.4
High Availability Configuration Procedure
12.5.4.1
Configuring Oracle Identity and Access Management on OPAMHOST1
12.5.4.1.1
Configuring the Database Security Store
12.5.4.1.2
Starting Administration Server on OPAMHOST1
12.5.4.2
Starting OPAMHOST1
12.5.4.2.1
Starting Oracle Privileged Account Manager on OPAMHOST1
12.5.4.3
Configuring OPAM on OPAMHOST2
12.5.4.4
Starting OPAMHOST2
12.5.5
OHS Load Balancer Configuration
12.5.5.1
Configure SSL
12.5.5.2
Update the Oracle HTTP Server Configuration
12.5.5.3
Restart the Oracle HTTP Server
13
Configuring High Availability for Oracle Mobile Security Suite
13.1
About Oracle Mobile Security Suite High Availability
13.2
Oracle Mobile Security Suite High Availability Architecture
13.3
Required Installations for Oracle Mobile Security Suite
13.4
Configuring High Availability for Oracle Mobile Security Manager
13.4.1
Configuring Oracle Mobile Security Manager on OAMHOST1
13.4.2
Starting OAMHOST1
13.4.3
Starting Oracle Mobile Security Manager on OAMHOST1
13.4.4
Configuring Oracle HTTP Server
13.4.5
Starting Managed Servers and Node Manager on OAMHOST2
13.5
Configuring High Availability for Oracle Mobile Security Access Server
13.5.1
High Availability Requirements
13.5.2
Starting OMSM Managed Server
13.5.3
Configuring Physical MSAS Instances
13.5.4
Starting MSAS Instances
13.5.5
Configuring the Load Balancer for MSAS
13.5.5.1
Requirements
13.5.5.2
Updating the MSAS SSL Certificate
13.5.5.3
Configuring Load Balancing
14
Oracle Unified Directory
Part III Appendices
A
Setting Up Auditing with an Oracle RAC Database Store
A.1
Using WebLogic Server to Configure Audit Data Sources and Multi Data Sources
A.2
Configuring the JDBC String for the Audit Loader
B
Recommended Multi Data Sources
B.1
JDBC Multi Data Source-0
B.2
JDBC Data Source-0 (non-XA)
B.3
JDBC Data Source-0 (XA)
C
Oracle Identity Management Workbook
C.1
Workbook Tables for Oracle Identity Management
D
ascrsctl Online Help
D.1
start
D.2
stop
D.3
status
D.4
switch
D.5
delete
D.6
create/disk
D.7
update/disk
D.8
create/vip
D.9
update/vip
D.10
create/dblsnr
D.11
update/dblsnr
D.12
create/db
D.13
update/db
D.14
create/as
D.15
update/as
E
Configuring Distributed Notifications for MDS
Scripting on this page enhances content navigation, but does not change the content in any way.