Introduction Some of our larger deployments are seeing the benefits of centralizing their Webgate deployments onto a server farm. This post discusses some of...
Introduction Some of our larger deployments are seeing the benefits of centralizing their Webgate deployments onto a server farm. This post discusses some of the architecture and recommendation when deploying such an architecture. Main Article First, what is a Webgate farm or Webgate Reverse Proxy farm? A Webgate farm is: A series of web servers that are clustered on the basis of their protected applications. These servers protect the same set of applications. It is not...
Introduction Some of our larger deployments are seeing the benefits of centralizing their Webgate deployments onto a server farm. This post discusses some of the architecture and recommendation...
Introduction In this post, we have a quick look at POST data preservation, a new feature introduced in the 11g R2 PS1 (or 11.1.2.1) version of Oracle Access...
Introduction In this post, we have a quick look at POST data preservation, a new feature introduced in the 11g R2 PS1 (or 11.1.2.1) version of Oracle Access Manager. We'll explain the problem that this feature solves and walk through a simple example explaining how to configure and use the feature. This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is...
Introduction In this post, we have a quick look at POST data preservation, a new feature introduced in the 11g R2 PS1 (or 11.1.2.1) version of Oracle Access Manager. We'll explain the problem that...
Introduction Exciting, it is Go Live day, the system goes online, everything seems ok for a while, and then Kerplunk! Thousands of things could have happened...
Introduction Exciting, it is Go Live day, the system goes online, everything seems ok for a while, and then Kerplunk! Thousands of things could have happened and everyone scrambles to figure it out. What went wrong? My first question is, “Was a proper load test completed?” Yes, Load Test. Functionally the software may have worked, but under a heavy load issues can start bubbling up. If you have been there like I have many times you know what I am talking about. Situations...
Introduction Exciting, it is Go Live day, the system goes online, everything seems ok for a while, and then Kerplunk! Thousands of things could have happened and everyone scrambles to figure it...
Out-of-the-box, the OIM reset password functionality is available to system administrators, and to delegated administrators who have administrative privileges...
Out-of-the-box, the OIM reset password functionality is available to system administrators, and to delegated administrators who have administrative privileges on users’ accounts and have the ‘reset password’ privilege assigned to them. The data of the user who is having his/her password reset plays no role on how this functionality is presented to delegated administrators. This post shows a way of having password reset functionality behaving differently depending on the end...
Out-of-the-box, the OIM reset password functionality is available to system administrators, and to delegated administrators who have administrative privileges on users’ accounts and have the...
Introduction This post will discuss the steps to configure the orclguid within Oracle Virtual Directory (OVD). It is especially important when integrating OVD...
Introduction This post will discuss the steps to configure the orclguid within Oracle Virtual Directory (OVD). It is especially important when integrating OVD with Oracle Access Manager (OAM) and Weblogic Server (WLS). I see many customers omitting this configuration which leads to errors in OAM. Main Article All Lightweight Directory Access Protocol (LDAP) repositories contain a global unique identifier (guid) for every entry. OVD is no different; it also has a guid...
Introduction This post will discuss the steps to configure the orclguid within Oracle Virtual Directory (OVD). It is especially important when integrating OVD with Oracle Access Manager (OAM) and...
Introduction This article is the continuation of Part I which describes the architecture of a Solution that addresses the requirements of a Sample Use case...
Introduction This article is the continuation of Part I which describes the architecture of a Solution that addresses the requirements of a Sample Use case described later. In Part I, some key concepts were discussed. Below is a list of topics introduced in Part I of this post: Scoped Administrative Roles Access Policies Disconnected Application Instance Entitlements This list is intended to serve as a reminder to the audience of the concepts comprising the foundation of the...
Introduction This article is the continuation of Part I which describes the architecture of a Solution that addresses the requirements of a Sample Use case described later. In Part I, some key...
Introduction The RPD Repository file contains the metadata to create reports. This includes details of the physical data sources and connections, the business...
Introduction The RPD Repository file contains the metadata to create reports. This includes details of the physical data sources and connections, the business model mapping with joins, and the presentation layer that is presented to report writers. The RPD file is encrypted with the Repository Password. Without that password - the BI Administration tool can not open the RPD file, and the RPD file cannot be published. This article provides the steps on how to retrieve the...
Introduction The RPD Repository file contains the metadata to create reports. This includes details of the physical data sources and connections, the business model mapping with joins, and the...
1. Introduction In a recent engagement, I worked with a customer that had a business requirement where they needed to create and expose to their application two...
1. Introduction In a recent engagement, I worked with a customer that had a business requirement where they needed to create and expose to their application two computed LDAP attributes, based on the value of an existing attribute. For instance, let’s say the original attribute is "myCorpID" and its value could be something like "23451588-IT Specialist". The requirement is to have two new defined attributes: "jobCode" and "jobTitle", that would have values "jobCode=23451588"...
1. Introduction In a recent engagement, I worked with a customer that had a business requirement where they needed to create and expose to their application two computed LDAP attributes, based on the...
Introduction It is a very common requirement from customers to have a delegated administration model that is not tied to the organizations where the...
Introduction It is a very common requirement from customers to have a delegated administration model that is not tied to the organizations where the administrators are placed. Historically, OIM only supports a one-to-one relationship between Users and Organizations. However, starting with OIM 11g R2 and the introduction of the Catalog, it is possible to publish resources to one or more Organizations. This allows to limit the visibility of the resources to only the users who...
Introduction It is a very common requirement from customers to have a delegated administration model that is not tied to the organizations where the administrators are placed. Historically, OIM only...
