Contents

Title and Copyright Information

Preface

• Audience
• Documentation Accessibility
• Related Documents
• Conventions

Part I Introduction and Preparation

1 Understanding Oracle Identity Management

• 1.1 What is Oracle Fusion Middleware?
  • 1.1.1 What is Oracle Enterprise Manager Fusion Middleware Control?
• 1.2 What is Oracle Identity Management?
• 1.3 Oracle Identity Management 11g Release 1 (11.1.1.5.0) Components
  • 1.3.1 Oracle Single Sign-On and Oracle Delegated Administration Services Certification for 11g Release 1 (11.1.1.5.0)
• 1.4 Oracle Identity Management 11g Release 1 (11.1.1.3.0) Components
• 1.5 What Does This Guide Cover?
  • 1.5.1 Using This Guide
  • 1.5.2 Upgrading to OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)
  • 1.5.3 Upgrading to OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)
  • 1.5.4 Installing OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0) for High Availability
  • 1.5.5 Installing OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0) for High Availability

2 Understanding the Oracle Identity Management Installation

• 2.1 Overview and Structure of Oracle Identity Management 11g Installation
  • 2.1.1 Overview
  • 2.1.2 Structure of the Installation
• 2.2 Overview of OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0) Installation
  • 2.2.1 Installation Roadmap
  • 2.2.2 Installation Types: "Install Software - Do Not Configure" vs. "Install and Configure"
    • 2.2.2.1 Understanding the "Install Software - Do Not Configure" Option
    • 2.2.2.2 Understanding the "Install and Configure" Option
  • 2.2.3 Understanding Oracle WebLogic Server Administration Domain Options
    • 2.2.3.1 Create New Domain
    • 2.2.3.2 Extend Existing Domain
    • 2.2.3.3 Expand Cluster
    • 2.2.3.4 Configure Without a Domain
  • 2.2.4 Installing Components on Separate Systems
  • 2.2.5 Executing the oracleRoot.sh Script on UNIX Platforms
  • 2.2.6 Understanding the State of Oracle Identity Management Components After Installation
    • 2.2.6.1 Default SSL Configurations
    • 2.2.6.2 Default Passwords
    • 2.2.6.3 Ports Assigned Using Auto Port Configuration
• 2.3 Overview of OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0) Installation
  • 2.3.1 Installation Roadmap
  • 2.3.2 Prerequisite Checks Performed by the Oracle Identity Management Installer
  • 2.3.3 Understanding Oracle WebLogic Server Administration Domain Options
    • 2.3.3.1 Create a New Domain
    • 2.3.3.2 Extend an Existing Domain
  • 2.3.4 Additional Configuration Using the Oracle Identity Manager 11g Configuration Wizard
  • 2.3.5 Additional 11g Release 1 (11.1.1) Deployment Information
    • 2.3.5.1 Upgrading to 11g Release 1 (11.1.1)
    • 2.3.5.2 Installing 11g Release 1 (11.1.1) for High Availability
  • 2.3.6 Silent Installation
  • 2.3.7 Installing Components on Separate Systems
  • 2.3.8 Screens in Oracle Fusion Middleware Configuration Wizard
  • 2.3.9 Understanding the State of Oracle Identity Management Components After Installation
    • 2.3.9.1 Default SSL Configurations
    • 2.3.9.2 Default Passwords

3 Preparing to Install Oracle Identity Management

• 3.1 Before Installing OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)
  • 3.1.1 System Requirements and Certification
  • 3.1.2 Installing and Configuring Java Access Bridge (Windows Only)
  • 3.1.3 Managing the Oracle WebLogic Server Node Manager Utility for Oracle Identity Management Installations
  • 3.1.4 Installing Oracle Database
  • 3.1.5 Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU)
  • 3.1.6 Optional Environment-Specific Preparation
    • 3.1.6.1 Using Symbolic Links
    • 3.1.6.2 Installing Oracle Identity Management on DHCP Hosts
    • 3.1.6.3 Installing Oracle Identity Management on a Multihomed System
• 3.2 Before Installing OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)
  • 3.2.1 Oracle Fusion Middleware Certification
  • 3.2.2 System Requirements
    • 3.2.2.1 Most Recent Information
    • 3.2.2.2 Installer Startup Requirements
    • 3.2.2.3 Memory Requirements
  • 3.2.3 Installing and Configuring Java Access Bridge (Windows Only)
  • 3.2.4 Obtaining the Latest Oracle WebLogic Server and Oracle Fusion Middleware 11g Software
  • 3.2.5 Installing Oracle WebLogic Server 10.3.3 and Creating the Oracle Middleware Home
  • 3.2.6 Installing Oracle Database
    • 3.2.6.1 Oracle Database 11.1.0.7 Patch Requirements for Oracle Identity Manager
  • 3.2.7 Creating Database Schema Using the Oracle Fusion Middleware Repository Creation Utility (RCU)
  • 3.2.8 Upgrading an Existing Database Schema
  • 3.2.9 Installing the Latest Version of Oracle SOA Suite (Oracle Identity Manager Users Only)
    • 3.2.9.1 Obtaining the Latest Oracle WebLogic Server and Oracle SOA Suite Software
    • 3.2.9.2 Installing Oracle WebLogic Server and Creating the Middleware Home
    • 3.2.9.3 Installing the Latest Version of Oracle SOA Suite
    • 3.2.9.4 Patching the Software to 11.1.1.3.0

4 Performing Common Installation Tasks

• 4.1 Common Installation Tasks for OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)
  • 4.1.1 Starting an Installation
  • 4.1.2 Creating the Inventory Directory (UNIX Only)
  • 4.1.3 Identifying Installation Directories
    • 4.1.3.1 Oracle Middleware Home Location
    • 4.1.3.2 Oracle Home Directory
    • 4.1.3.3 WebLogic Server Directory
    • 4.1.3.4 Oracle Instance Location
    • 4.1.3.5 Oracle Instance Name
  • 4.1.4 Determining Port Numbers
  • 4.1.5 Completing an Installation
  • 4.1.6 Optional: Configuring the Minimum Amount for Oracle WebLogic Server's Maximum Heap Size
  • 4.1.7 Locating Installation Log Files
• 4.2 Common Installation Tasks for OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)
  • 4.2.1 Starting an Installation
  • 4.2.2 Starting Oracle Fusion Middleware Configuration Wizard
  • 4.2.3 List of Executable Files
  • 4.2.4 Identifying Installation Directories
    • 4.2.4.1 Oracle Middleware Home Location
    • 4.2.4.2 Oracle Home Directory
    • 4.2.4.3 Oracle Common Directory
    • 4.2.4.4 Oracle WebLogic Domain Directory
    • 4.2.4.5 WebLogic Server Directory
  • 4.2.5 Determining Port Numbers
  • 4.2.6 Completing an Installation
  • 4.2.7 Locating Installation Log Files
  • 4.2.8 Optional: Updating the WebLogic Administrator Server User Name in Oracle Enterprise Manager Fusion Middleware Control (OIM Only)

Part II Installing and Configuring OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)

5 Installing OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)

• 5.1 Installing OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)
  • 5.1.1 Obtaining Oracle Fusion Middleware 11g Softwares
  • 5.1.2 Installing Oracle WebLogic Server and Creating the Middleware Home
  • 5.1.3 Installing the 11.1.1.2.0 Version of Oracle Identity Management Software
  • 5.1.4 Patching the Oracle Identity Management 11.1.1.2.0 to 11.1.1.5.0
• 5.2 Configuring OID, OVD, ODSM, ODIP, and OIF (11.1.1.5.0)

6 Configuring Oracle Internet Directory

• 6.1 OID with ODSM and Fusion Middleware Control in a New WebLogic Domain
  • 6.1.1 Appropriate Deployment Environment
  • 6.1.2 Components Deployed
  • 6.1.3 Dependencies
  • 6.1.4 Procedure
• 6.2 OID with ODIP, ODSM, and Fusion Middleware Control in a New WebLogic Domain
  • 6.2.1 Appropriate Deployment Environment
  • 6.2.2 Components Deployed
  • 6.2.3 Dependencies
  • 6.2.4 Procedure
• 6.3 OID and OVD with ODSM in a New WebLogic Domain
  • 6.3.1 Appropriate Deployment Environment
  • 6.3.2 Components Deployed
  • 6.3.3 Dependencies
  • 6.3.4 Procedure
• 6.4 Only OID in an Existing WebLogic Domain
  • 6.4.1 Appropriate Deployment Environment
  • 6.4.2 Components Deployed
  • 6.4.3 Dependencies
  • 6.4.4 Procedure
• 6.5 Only OID Without a WebLogic Domain
  • 6.5.1 Appropriate Deployment Environment
  • 6.5.2 Components Deployed
  • 6.5.3 Dependencies
  • 6.5.4 Procedure
• 6.6 Verifying OID Installation
• 6.7 Getting Started with OID After Installation

7 Configuring Oracle Virtual Directory

• 7.1 OVD with ODSM and Fusion Middleware Control in a New WebLogic Domain
  • 7.1.1 Appropriate Deployment Environment
  • 7.1.2 Components Deployed
  • 7.1.3 Dependencies
  • 7.1.4 Procedure
• 7.2 Only OVD in an Existing WebLogic Domain
  • 7.2.1 Appropriate Deployment Environment
  • 7.2.2 Components Deployed
  • 7.2.3 Dependencies
  • 7.2.4 Procedure
• 7.3 Only OVD Without a WebLogic Domain
  • 7.3.1 Appropriate Deployment Environment
  • 7.3.2 Components Deployed
  • 7.3.3 Dependencies
  • 7.3.4 Procedure
• 7.4 Verifying OVD
• 7.5 Getting Started with OVD After Installation

8 Configuring Oracle Directory Integration Platform

• 8.1 ODIP with Fusion Middleware Control in a New WebLogic Domain
  • 8.1.1 Appropriate Deployment Environment
  • 8.1.2 Components Deployed
  • 8.1.3 Dependencies
  • 8.1.4 Procedure
• 8.2 Only ODIP in an Existing WebLogic Domain
  • 8.2.1 Appropriate Deployment Environment
  • 8.2.2 Components Deployed
  • 8.2.3 Dependencies
  • 8.2.4 Procedure
• 8.3 Configuring ODIP when OID is Running in SSL Mode 2 - Server Only Authentication
• 8.4 Verifying ODIP
• 8.5 Getting Started with ODIP After Installation

9 Configuring Oracle Directory Services Manager

• 9.1 Only ODSM in a New WebLogic Domain
  • 9.1.1 Appropriate Deployment Environment
  • 9.1.2 Components Deployed
  • 9.1.3 Dependencies
  • 9.1.4 Procedure
• 9.2 Only ODSM in an Existing WebLogic Domain
  • 9.2.1 Appropriate Deployment Environment
  • 9.2.2 Components Deployed
  • 9.2.3 Dependencies
  • 9.2.4 Procedure
• 9.3 Verifying ODSM
• 9.4 Getting Started with ODSM After Installation

10 Configuring Oracle Identity Federation

• 10.1 Using the Information in This Chapter
• 10.2 Understanding OIF Deployments
• 10.3 Understanding OIF Basic and Advanced Deployments
  • 10.3.1 Basic Deployment
  • 10.3.2 Advanced Deployments
• 10.4 Configuring Oracle HTTP Server for OIF
• 10.5 Performing Basic OIF Configurations
  • 10.5.1 Appropriate Deployment Environment
  • 10.5.2 Components Deployed
  • 10.5.3 Dependencies
  • 10.5.4 Procedure
• 10.6 Performing Advanced OIF Configurations
  • 10.6.1 Appropriate Deployment Environment
  • 10.6.2 Components Deployed
  • 10.6.3 Dependencies
  • 10.6.4 Procedure
• 10.7 Advanced Example: Configuring OIF with OID in a New WebLogic Domain for LDAP Authentication, User Store, and Federation Store
  • 10.7.1 Appropriate Deployment Environment
  • 10.7.2 Components Deployed
  • 10.7.3 Dependencies
  • 10.7.4 Procedure
• 10.8 Advanced Example: Configuring OIF in a New or Existing WebLogic Domain with RDBMS Data Stores
  • 10.8.1 Appropriate Deployment Environment
  • 10.8.2 Components Deployed
  • 10.8.3 Dependencies
  • 10.8.4 Procedure
• 10.9 Verifying OIF
• 10.10 Getting Started with OIF After Installation

11 Installing Oracle Single Sign-On and Oracle Delegated Administration Services Against Oracle Internet Directory

• 11.1 Understanding the inspre11.pl Script
• 11.2 Procedure
• 11.3 Verifying Oracle Single Sign-On and Oracle Delegated Administration Services
• 11.4 Getting Started After Installation
  • 11.4.1 Getting Started with Oracle Single Sign-On Release 10g (10.1.4.3.0)
  • 11.4.2 Getting Started with Oracle Delegated Administration Services Release 10g (10.1.4.3.0)

Part III Installing and Configuring OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)

12 Installing OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)

• 12.1 Installing OIM, OAM, OAAM, OAPM, and OIN (11.1.1.3.0)
  • 12.1.1 Products Installed
  • 12.1.2 Dependencies
  • 12.1.3 Procedure
• 12.2 Understanding the Directory Structure After Installation
• 12.3 After Installing the Oracle Identity Management Software
• 12.4 Configuring Oracle Identity Management Products

13 Understanding Domain Extension Scenarios

• 13.1 Overview
• 13.2 Important Notes Before You Begin
• 13.3 Domain Extension Scenarios
  • 13.3.1 Extending an Oracle Identity Management 11.1.1.3.0 Domain to Support OIM, OAM, OAAM, OAPM or OIN on the Local Machine
  • 13.3.2 Understanding Joint Configuration and Domain Extension Scenarios for OIM, OAM, OAAM, OAPM, and OIN on the Local Machine
• 13.4 Starting the Administration Server on the Local Machine
• 13.5 Creating Managed Servers on a Remote Machine
  • 13.5.1 Installing Oracle WebLogic Server and Oracle Identity Management Suite on the Remote Machine
  • 13.5.2 Creating and Starting Managed Servers on a Remote Machine

14 Oracle Identity Management Suite-Level Installation Scenarios

• 14.1 General Prerequisites
• 14.2 Important Notes Before You Begin
• 14.3 Simultaneous configuration of OIN, OAPM, OAAM, OAM, and OIM
  • 14.3.1 Overview
  • 14.3.2 Prerequisites
  • 14.3.3 Scenario 1: OIM with LDAP Sync, OAM with LDAP, OAAM, OAPM, and OIN in a New WebLogic Domain
    • 14.3.3.1 Appropriate Deployment Environment
    • 14.3.3.2 Components Deployed
    • 14.3.3.3 Dependencies
    • 14.3.3.4 Procedure
  • 14.3.4 Scenario 2: OIM with LDAP Sync, OAM with LDAP, OAAM, OAPM, and OIN in an Existing Domain Containing OID and OVD
    • 14.3.4.1 Appropriate Deployment Environment
    • 14.3.4.2 Components Deployed
    • 14.3.4.3 Dependencies
    • 14.3.4.4 Procedure
• 14.4 OIM with LDAP Sync, and OAM
  • 14.4.1 Overview
  • 14.4.2 Prerequisites
  • 14.4.3 Scenario 1: OIM with LDAP Sync, and OAM in a New WebLogic Domain
    • 14.4.3.1 Appropriate Deployment Environment
    • 14.4.3.2 Components Deployed
    • 14.4.3.3 Dependencies
    • 14.4.3.4 Procedure
  • 14.4.4 Scenario 2: OIM with LDAP Sync, and OAM, in an Existing Domain Containing OID and OVD
    • 14.4.4.1 Appropriate Deployment Environment
    • 14.4.4.2 Components Deployed
    • 14.4.4.3 Dependencies
    • 14.4.4.4 Procedure
  • 14.4.5 Scenario 3: OIM with LDAP Sync, and OAM, in a Domain Containing OAAM, OAPM, and OIN
    • 14.4.5.1 Appropriate Deployment Environment
    • 14.4.5.2 Components Deployed
    • 14.4.5.3 Dependencies
    • 14.4.5.4 Procedure
• 14.5 OIM with LDAP Sync, OAM, and OAAM
  • 14.5.1 Overview
  • 14.5.2 Prerequisites
  • 14.5.3 Scenario 1: Configuration in a New WebLogic Domain
    • 14.5.3.1 Appropriate Deployment Environment
    • 14.5.3.2 Components Deployed
    • 14.5.3.3 Dependencies
    • 14.5.3.4 Procedure
  • 14.5.4 Scenario 2: Configuration in a Domain Containing OID and OVD
    • 14.5.4.1 Appropriate Deployment Environment
    • 14.5.4.2 Components Deployed
    • 14.5.4.3 Dependencies
    • 14.5.4.4 Procedure
  • 14.5.5 Scenario 3: Configuration in a Domain Containing OAPM and OIN
    • 14.5.5.1 Appropriate Deployment Environment
    • 14.5.5.2 Components Deployed
    • 14.5.5.3 Dependencies
    • 14.5.5.4 Procedure
• 14.6 OIM with LDAP Sync in an Existing OAM Installation with LDAP Configured
  • 14.6.1 Overview
  • 14.6.2 Prerequisites
  • 14.6.3 Scenario 1: Configuration in a New WebLogic Domain
    • 14.6.3.1 Appropriate Deployment Environment
    • 14.6.3.2 Components Deployed
    • 14.6.3.3 Dependencies
    • 14.6.3.4 Procedure
  • 14.6.4 Scenario 2: Configuration in a Domain Containing OID and OVD
    • 14.6.4.1 Appropriate Deployment Environment
    • 14.6.4.2 Components Deployed
    • 14.6.4.3 Dependencies
    • 14.6.4.4 Procedure
  • 14.6.5 Scenario 3: Configuration in a Domain Containing OAAM, OAPM, and OIN
    • 14.6.5.1 Appropriate Deployment Environment
    • 14.6.5.2 Components Deployed
    • 14.6.5.3 Dependencies
    • 14.6.5.4 Procedure
• 14.7 OIM with LDAP Sync in an Existing OAM and OAAM Installation with LDAP Configured
  • 14.7.1 Overview
  • 14.7.2 Prerequisites
  • 14.7.3 Scenario 1: Configuration in a New WebLogic Domain
    • 14.7.3.1 Appropriate Deployment Environment
    • 14.7.3.2 Components Deployed
    • 14.7.3.3 Dependencies
    • 14.7.3.4 Procedure
  • 14.7.4 Scenario 2: Configuration in a Domain Containing OID and OVD
    • 14.7.4.1 Appropriate Deployment Environment
    • 14.7.4.2 Components Deployed
    • 14.7.4.3 Dependencies
    • 14.7.4.4 Procedure
  • 14.7.5 Scenario 3: Configuration in a Domain Containing OAPM, and OIN
    • 14.7.5.1 Appropriate Deployment Environment
    • 14.7.5.2 Components Deployed
    • 14.7.5.3 Dependencies
    • 14.7.5.4 Procedure
• 14.8 OAM in an Existing OIM with LDAP Sync
  • 14.8.1 Overview
  • 14.8.2 Prerequisites
  • 14.8.3 Scenario 1: Configuration in a New WebLogic Domain
    • 14.8.3.1 Appropriate Deployment Environment
    • 14.8.3.2 Components Deployed
    • 14.8.3.3 Dependencies
    • 14.8.3.4 Procedure
  • 14.8.4 Scenario 2: Configuration in a Domain Containing OID and OVD
    • 14.8.4.1 Appropriate Deployment Environment
    • 14.8.4.2 Components Deployed
    • 14.8.4.3 Dependencies
    • 14.8.4.4 Procedure
  • 14.8.5 Scenario 3: Configuration in a Domain Containing OAPM, and OIN
    • 14.8.5.1 Appropriate Deployment Environment
    • 14.8.5.2 Components Deployed
    • 14.8.5.3 Dependencies
    • 14.8.5.4 Procedure
• 14.9 OAAM in an Existing OIM with LDAP Sync and OAAM
  • 14.9.1 Overview
  • 14.9.2 Prerequisites
  • 14.9.3 Scenario 1: Configuration in a New WebLogic Domain
    • 14.9.3.1 Appropriate Deployment Environment
    • 14.9.3.2 Components Deployed
    • 14.9.3.3 Dependencies
    • 14.9.3.4 Procedure
  • 14.9.4 Scenario 2: Configuration in a Domain Containing OID and OVD
    • 14.9.4.1 Appropriate Deployment Environment
    • 14.9.4.2 Components Deployed
    • 14.9.4.3 Dependencies
    • 14.9.4.4 Procedure
  • 14.9.5 Scenario 3: Configuration in a Domain Containing OAPM, and OIN
    • 14.9.5.1 Appropriate Deployment Environment
    • 14.9.5.2 Components Deployed
    • 14.9.5.3 Dependencies
    • 14.9.5.4 Procedure

15 Configuring Oracle Identity Navigator

• 15.1 General Prerequisites
• 15.2 Installing OIN
• 15.3 Important Notes Before You Begin
• 15.4 Configuring Only OIN in a New WebLogic Domain
  • 15.4.1 Appropriate Deployment Environment
  • 15.4.2 Components Deployed
  • 15.4.3 Dependencies
  • 15.4.4 Procedure
• 15.5 OIN with OIM, OAM, OAAM, and OAPM
  • 15.5.1 Appropriate Deployment Environment
  • 15.5.2 Components Deployed
  • 15.5.3 Dependencies
  • 15.5.4 Procedure
• 15.6 Starting the Servers
• 15.7 Verifying OIN
• 15.8 Getting Started with Oracle OIN After Installation

16 Configuring Oracle Identity Manager

• 16.1 OIM Server Configuration Workflow
• 16.2 Prerequisites
• 16.3 Important Notes Before You Start Configuring OIM
• 16.4 OIM Domain Configuration Scenarios
  • 16.4.1 OIM Without LDAP Sync in a New Domain
    • 16.4.1.1 Appropriate Deployment Environment
    • 16.4.1.2 Components Deployed
    • 16.4.1.3 Dependencies
    • 16.4.1.4 Procedure
  • 16.4.2 OIM with LDAP Sync
    • 16.4.2.1 Configuring OIM with LDAP Sync in a New WebLogic Domain
    • 16.4.2.2 OIM with LDAP Sync in an Oracle Identity Management 11.1.1.3.0 Domain Containing OID and OVD
  • 16.4.3 OIM and OIN in a New WebLogic Domain
    • 16.4.3.1 Appropriate Deployment Environment
    • 16.4.3.2 Components Deployed
    • 16.4.3.3 Dependencies
    • 16.4.3.4 Procedure
  • 16.4.4 OIM and OAM in a WebLogic Domain Containing OIN
    • 16.4.4.1 Appropriate Deployment Environment
    • 16.4.4.2 Components Deployed
    • 16.4.4.3 Dependencies
    • 16.4.4.4 Procedure
  • 16.4.5 OIM and OIN in a WebLogic Domain Containing OAM
    • 16.4.5.1 Appropriate Deployment Environment
    • 16.4.5.2 Components Deployed
    • 16.4.5.3 Dependencies
    • 16.4.5.4 Procedure
  • 16.4.6 OIM, OAM, and OIN in a New WebLogic Domain
    • 16.4.6.1 Appropriate Deployment Environment
    • 16.4.6.2 Components Deployed
    • 16.4.6.3 Dependencies
    • 16.4.6.4 Procedure
• 16.5 Starting the Servers
• 16.6 Configuring OIM Server, Design Console, and Remote Manager
  • 16.6.1 Scope of Configuration Using the Oracle Identity Manager 11g Configuration Wizard
  • 16.6.2 Scenario 1: Oracle Identity Manager Server and Design Console on Different Machines
  • 16.6.3 Scenario 2: Oracle Identity Manager Server and Remote Manager on Different Machines
  • 16.6.4 Scenario 3: Oracle Identity Manager Server, Design Console, and Remote Manager on a Single Windows Machine
• 16.7 Before Configuring OIM Server, Design Console, or Remote Manager
  • 16.7.1 Prerequisites for Configuring OIM Server
  • 16.7.2 Prerequisites for Configuring Only OIM Design Console on a Different Machine
  • 16.7.3 Prerequisites for Configuring Only OIM Remote Manager on a Different Machine
• 16.8 Starting the Oracle Identity Manager 11g Configuration Wizard
• 16.9 Configuring OIM Server
  • 16.9.1 Appropriate Deployment Environment
  • 16.9.2 Components Deployed
  • 16.9.3 Dependencies
  • 16.9.4 Procedure
  • 16.9.5 Post-Configuration Steps
• 16.10 Installing and Configuring Only OIM Design Console on Windows
• 16.11 Configuring OIM Design Console
  • 16.11.1 Appropriate Deployment Environment
  • 16.11.2 Components Deployed
  • 16.11.3 Dependencies
  • 16.11.4 Procedure
  • 16.11.5 Post-Configuration Steps
  • 16.11.6 Updating the xlconfig.xml File to Change the Port for Design Console
  • 16.11.7 Configuring Design Console to Use SSL
• 16.12 Configuring OIM Remote Manager
  • 16.12.1 Appropriate Deployment Environment
  • 16.12.2 Components Deployed
  • 16.12.3 Dependencies
  • 16.12.4 Procedure
• 16.13 Verifying the OIM Installation
• 16.14 Setting Up LDAP Synchronization
  • 16.14.1 Prerequisites
  • 16.14.2 Task 1: Running the LDAP Preconfiguration Utility
  • 16.14.3 Task 2: Configuring OVD and OID for OIM
  • 16.14.4 Task 3: Running the LDAP Post-Configuration Utility
  • 16.14.5 After Setting Up LDAP Synchronization
  • 16.14.6 Verifying the LDAP Synchronization
• 16.15 Setting Up Integration with OAM
• 16.16 List of Supported Languages
• 16.17 Using the Diagnostic Dashboard
• 16.18 Getting Started with OIM After Installation

17 Configuring Oracle Access Manager

• 17.1 Prerequisites
• 17.2 Important Notes Before You Begin
• 17.3 Installing OAM
• 17.4 Oracle Access Manager Domain Configuration Template
• 17.5 OAM in a New WebLogic Domain
  • 17.5.1 Appropriate Deployment Environment
  • 17.5.2 Components Deployed
  • 17.5.3 Dependencies
  • 17.5.4 Procedure
• 17.6 OAM and OIN in a New WebLogic Domain
  • 17.6.1 Appropriate Deployment Environment
  • 17.6.2 Components Deployed
  • 17.6.3 Dependencies
  • 17.6.4 Procedure
• 17.7 OAM in a Domain Containing OIM and OIN
  • 17.7.1 Appropriate Deployment Environment
  • 17.7.2 Components Deployed
  • 17.7.3 Dependencies
  • 17.7.4 Procedure
• 17.8 OAM in a Domain Containing OAAM and OIN
  • 17.8.1 Appropriate Deployment Environment
  • 17.8.2 Components Deployed
  • 17.8.3 Dependencies
  • 17.8.4 Procedure
• 17.9 Starting the Servers
• 17.10 Optional Post-Installation Tasks
• 17.11 Verifying the OAM Installation
• 17.12 Setting Up OAM Agents
  • 17.12.1 Setting Up Oracle HTTP Server WebGate
    • 17.12.1.1 Installing and Configuring WebGate
    • 17.12.1.2 Registering WebGate as a Partner Application
    • 17.12.1.3 Restarting Managed Servers
  • 17.12.2 Setting Up the OSSO Agent
    • 17.12.2.1 Installing mod_osso
    • 17.12.2.2 Restarting Managed Servers
• 17.13 Setting Up Integration with OIM
• 17.14 Getting Started with OAM After Installation

18 Configuring Oracle Adaptive Access Manager

• 18.1 Prerequisites
• 18.2 Important Notes Before You Begin
• 18.3 Installing OAAM
• 18.4 OAAM in a New WebLogic Domain
  • 18.4.1 Appropriate Deployment Environment
  • 18.4.2 Components Deployed
  • 18.4.3 Dependencies
  • 18.4.4 Procedure
• 18.5 OAAM in a Domain Containing OAM, OIM, and OIN
  • 18.5.1 Appropriate Deployment Environment
  • 18.5.2 Components Deployed
  • 18.5.3 Dependencies
  • 18.5.4 Procedure
• 18.6 Starting the Servers
• 18.7 Post-Installation Steps
• 18.8 Verifying the OAAM Installation
• 18.9 Migrating Policy and Credential Stores
  • 18.9.1 Creating JPS Root
  • 18.9.2 Reassociating the Policy and Credential Store
• 18.10 Getting Started with OAAM After Installation

19 OAM and OAAM Joint Domain Configuration Scenarios

• 19.1 Prerequisites
• 19.2 Important Notes Before You Begin
• 19.3 Installing Oracle Identity Management 11g Release 1 (11.1.1)
• 19.4 OAM, OIM, and OIN in a New WebLogic Domain
  • 19.4.1 Appropriate Deployment Environment
  • 19.4.2 Components Deployed
  • 19.4.3 Dependencies
  • 19.4.4 Procedure
• 19.5 OAM, OAAM, and OIN in a New WebLogic Domain
  • 19.5.1 Appropriate Deployment Environment
  • 19.5.2 Components Deployed
  • 19.5.3 Dependencies
  • 19.5.4 Procedure
• 19.6 Starting the Servers
• 19.7 Getting Started with OAM After Installation
• 19.8 Getting Started with OAAM After Installation

20 Configuring Oracle Authorization Policy Manager

• 20.1 Prerequisites
• 20.2 Important Notes Before You Begin
• 20.3 Installing OAPM
• 20.4 OAPM in a New WebLogic Domain
  • 20.4.1 Appropriate Deployment Environment
  • 20.4.2 Components Deployed
  • 20.4.3 Dependencies
  • 20.4.4 Procedure
• 20.5 OAPM in a Domain Containing OIM
  • 20.5.1 Appropriate Deployment Environment
  • 20.5.2 Components Deployed
  • 20.5.3 Dependencies
  • 20.5.4 Procedure
  • 20.5.5 Post-Configuration Steps
• 20.6 OAPM in a Domain Containing OIM, OAM, OAAM, and OIN
  • 20.6.1 Appropriate Deployment Environment
  • 20.6.2 Components Deployed
  • 20.6.3 Dependencies
  • 20.6.4 Procedure
• 20.7 Starting the Servers
• 20.8 Reassociating WebLogic Server with LDAP
• 20.9 Verifying the OAPM Installation
• 20.10 Getting Started with OAPM After Installation

21 Integration Between OIM and OAM

• 21.1 Overview
• 21.2 Important Notes Before You Begin
• 21.3 Task Roadmap
• 21.4 Prerequisites
• 21.5 Introduction to WebLogic Server Domain Agent
• 21.6 Setting Up Integration Between OIM and OAM Using the Domain Agent
• 21.7 Verifying the Configuration
• 21.8 Using Oracle HTTP Server 10g Webgate for Oracle Access Manager 11g

22 Migrating from Domain Agent to Oracle HTTP Server 10g Webgate for OAM

• 22.1 Installing and Configuring Oracle HTTP Server 11g (11.1.1.3.0)
• 22.2 Provisioning Oracle HTTP Server 10g Webgate for OAM Profile
• 22.3 Installing Oracle HTTP Server 10g Webgate for OAM
• 22.4 Configuring mod_weblogic
• 22.5 Optional: Configuring Host Identifier
• 22.6 Updating OIM Server Configuration
• 22.7 Optional: Disabling Domain Agent
• 22.8 Optional: Updating Oracle Identity Manager Configuration

23 Installing and Configuring Oracle HTTP Server 11g Webgate for OAM

• 23.1 Installation Overview
• 23.2 Preparing to Install Oracle HTTP Server 11g Webgate for Oracle Access Manager
  • 23.2.1 Oracle Fusion Middleware Certification
  • 23.2.2 Installing and Configuring OAM 11g
  • 23.2.3 Installing and Configuring Oracle HTTP Server 11g (11.1.1.2.0 or 11.1.1.3.0)
  • 23.2.4 Installing Third-Party GCC Libraries (Linux and Solaris Operating Systems Only)
  • 23.2.5 Prerequisites for 64-Bit Oracle HTTP Server 11g Webgates on Windows 2003 and Windows 2008 64-Bit Platforms
• 23.3 Installing Oracle HTTP Server 11g Webgate for Oracle Access Manager
  • 23.3.1 Launching the Installer
  • 23.3.2 Installation Flow and Procedure
• 23.4 Post-Installation Steps
• 23.5 Verifying the Oracle HTTP Server 11g Webgate for Oracle Access Manager
• 23.6 Getting Started with a New Oracle HTTP Server 11g Webgate Agent for Oracle Access Manager
  • 23.6.1 Register the New Webgate Agent
  • 23.6.2 Copy Generated Files and Artifacts to the Webgate Instance Location
  • 23.6.3 Restart the Oracle HTTP Server Instance

24 Lifecycle Management

• 24.1 How Lifecycle Events Impact Integrated Components
• 24.2 LCM for Oracle Identity Manager
• 24.3 LCM for Oracle Access Manager
• 24.4 LCM for Oracle Adaptive Access Manager
• 24.5 LCM for Oracle Identity Navigator
• 24.6 References

Part IV Appendixes

A Deinstalling and Reinstalling Oracle Identity Management

• A.1 Deinstalling Oracle Identity Management
  • A.1.1 Deinstalling the Oracle Identity Management Oracle Home
  • A.1.2 Deinstalling the Oracle Common Home
  • A.1.3 Deinstalling Applications Registered with Oracle Single Sign-On 10g Release 10.1.4.3.0
• A.2 Reinstalling Oracle Identity Management

B Starting or Stopping the Oracle Stack

• B.1 Starting the Stack
• B.2 Stopping the Stack
• B.3 Restarting Servers

C Performing Silent Installations

• C.1 What is a Silent Installation?
• C.2 Before Performing a Silent Installation
  • C.2.1 UNIX Systems: Creating the oraInst.loc File
  • C.2.2 Windows Systems: Creating the Registry Key
• C.3 Creating Response Files
  • C.3.1 OID, OVD, ODSM, ODIP, and OIF
  • C.3.2 OIM, OAM, OAAM, OAPM, and OIN
  • C.3.3 Securing Your Silent Installation
• C.4 Performing a Silent Installation
• C.5 Installer Command Line Parameters

D Troubleshooting the Installation

• D.1 General Troubleshooting Tips
• D.2 Installation Log Files
• D.3 Configuring OIM Against an Existing OIM 11g Schema
• D.4 Need More Help?

E OAAM Partition Schema Reference

• E.1 Overview
• E.2 Partition Add Maintenance
  • E.2.1 Sp_Oaam_Add_Monthly_Partition
  • E.2.2 Sp_Oaam_Add_Weekly_Partition
• E.3 Partition Maintenance Scripts
  • E.3.1 drop_monthly_partition_tables.sql
  • E.3.2 drop_weekly_partition_tables.sql
  • E.3.3 add_monthly_partition_tables.sql
  • E.3.4 add_weekly_partition_tables.sql

F Oracle Identity Management 11.1.1.3.0 Software Installation Screens

• F.1 Welcome
• F.2 Prerequisite Checks
• F.3 Specify Installation Location
• F.4 Installation Summary
• F.5 Installation Progress
• F.6 Installation Complete

G WebLogic Domain Configuration Screens

• G.1 Welcome
• G.2 Select a WebLogic Domain Directory
• G.3 Select Domain Source
• G.4 Select Extension Source
• G.5 Specify Domain Name and Location
• G.6 Configure Administrator User Name and Password
• G.7 Configure Server Start Mode and JDK
• G.8 Configure JDBC Component Schema
• G.9 Test Component Schema
• G.10 Select Optional Configuration
• G.11 Configure the Administration Server
• G.12 Configure Managed Servers
• G.13 Configure Clusters
• G.14 Assign Servers to Clusters
• G.15 Configure Machines
• G.16 Assign Servers to Machines
• G.17 Target Deployments to Clusters or Servers
• G.18 Target Services to Clusters or Servers
• G.19 Configure RDBMS Security Store Database
• G.20 Configure JMS File Stores
• G.21 Configuration Summary

H Oracle Identity Manager Configuration Screens

• H.1 Welcome
• H.2 Components to Configure
• H.3 Database
• H.4 WebLogic Admin Server
• H.5 OIM Server
• H.6 LDAP Sync and OAM
• H.7 LDAP Server
• H.8 LDAP Server Continued
• H.9 OIM Server Host and Port
• H.10 Remote Manager
• H.11 KeyStore Password
• H.12 Configuration Summary

I Software Deinstallation Screens

• I.1 Welcome
• I.2 Deinstall Oracle Home