On the internal mailing lists there's often a question that goes something like: I want to deploy OAM like this: Is this supported? The answer is "If you really...
On the internal mailing lists there's often a question that goes something like: I want to deploy OAM like this: Is this supported? The answer is "If you really want to do that then yes. But you probably shouldn't do it that way." Read on for why. The first thing to think about is how you are going to deploy OAM "for real". Consider a company like Oracle who uses OAM to protect basically everything. If you go to http://support.oracle.com/ to open or look at a support case, or...
On the internal mailing lists there's often a question that goes something like: I want to deploy OAM like this: Is this supported? The answer is "If you really want to do that then yes. But...
Introduction This document describes how to encapsulate OIM API calls in a Web Service for use in a custom SOA composite to be included as an approval process...
Introduction This document describes how to encapsulate OIM API calls in a Web Service for use in a custom SOA composite to be included as an approval process in a request template. We always recommend customers to follow this approach when trying to invoke OIM’s APIs inside SOA composites used as approval processes for the following reasons: A web service implementation allows the instantiation of all related APIs once at service startup as opposed to getting a remote...
Introduction This document describes how to encapsulate OIM API calls in a Web Service for use in a custom SOA composite to be included as an approval process in a request template. We...
Introduction Complexity and delay can occur during deployments of Oracle Identity and Access Management products (including the IDM build out for Fusion Apps)...
Introduction Complexity and delay can occur during deployments of Oracle Identity and Access Management products (including the IDM build out for Fusion Apps) due to the fact that certain tasks required for the build out can sometimes only be performed by individuals that are not a part of the core team doing the deployment. Main Article In many organizations IT responsibilities are very siloed. Some tasks during an IAM deployment may require assistance from individuals that...
Introduction Complexity and delay can occur during deployments of Oracle Identity and Access Management products (including the IDM build out for Fusion Apps) due to the fact that certain...
Introduction This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to...
Introduction This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is available. In an earlier post I talked about how cookies work when you're using OAM 11g server with OAM 11g WebGates. But the OAM 11g server also works with OAM 10g WebGates and there are reasons you'd deploy 10g WebGates today. But OAM 11g and 10g have fundamentally different behavior...
Introduction This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts...
Introduction In my last post I listed all of the architectural decisions that you’ll want to work through before diving into an IDM build out for Fusion Apps....
Introduction In my last post I listed all of the architectural decisions that you’ll want to work through before diving into an IDM build out for Fusion Apps. In this post, I’d like to take things one step further and put forth a checklist of tasks that you’ll want to accomplish before beginning the actual (onsite) build out. Main Article Failure to complete these items before the build out will turn what is already a fairly long and intensive process into a longer and...
Introduction In my last post I listed all of the architectural decisions that you’ll want to work through before diving into an IDM build out for Fusion Apps. In this post, I’d like to take things one...
Introduction Today I am kicking of a series of posts on planning an Oracle IDM build out for Fusion Apps. I will start by discussing a bunch of topics that...
Introduction Today I am kicking of a series of posts on planning an Oracle IDM build out for Fusion Apps. I will start by discussing a bunch of topics that should be discussed and worked through before you move forward with an IDM build out for FA. I will then continue the series with a pre-install checklist and discussion of supporting characters that will need to participate in the install. So, with that in mind I’ll dive right in to the topics for discussion: Main Article...
Introduction Today I am kicking of a series of posts on planning an Oracle IDM build out for Fusion Apps. I will start by discussing a bunch of topics that should be discussed and worked through...
I was on the phone with someone earlier today and mentioned in passing that I only need to run a simple script to turn debug logging on and off in my little...
I was on the phone with someone earlier today and mentioned in passing that I only need to run a simple script to turn debug logging on and off in my little test environment. The silence on the other end of the line told me either he didn't believe me or didn't realize how easy it is to do this sort of thing. So here it is - enableOAMLogging.py #!/home/oracle/Oracle/Middleware/Oracle_IAM1/common/bin/wlst.sh connect('weblogic', 'ABcd1234',...
I was on the phone with someone earlier today and mentioned in passing that I only need to run a simple script to turn debug logging on and off in my little test environment. The silence on the other...
I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically...
I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically doing this for use with Oracle Access Manager 11g, but the configuration steps are identical whether you are using OAM or just WebLogic. Just to redraw the diagram so we're all on the same page, this is what a real environment with OAM in it might look like: Note that I put "Apache" in front of the OAM server. That...
I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically doing this for use with Oracle Access...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture is pretty complex in that it is completely HA, separates all the IDM services into 3 tiers for maximum network security, and separate many of the services onto different physical nodes to account for load separation for high volume production environments.There are reasons one might want to simplify this for...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture is pretty complex in that it is...
