I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically...
I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically doing this for use with Oracle Access Manager 11g, but the configuration steps are identical whether you are using OAM or just WebLogic. Just to redraw the diagram so we're all on the same page, this is what a real environment with OAM in it might look like: Note that I put "Apache" in front of the OAM server. That...
I recently had to revisit the subject of SSL offloading and WebLogic server to include the ability to do client certificate authentication. I was specifically doing this for use with Oracle Access...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture is pretty complex in that it is completely HA, separates all the IDM services into 3 tiers for maximum network security, and separate many of the services onto different physical nodes to account for load separation for high volume production environments.There are reasons one might want to simplify this for...
Introduction In my last post, I discussed the reference architecture for the Identity and Access Management build out of Fusion Apps.The reference architecture is pretty complex in that it is...
Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be...
Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be created through a prescribed build out of Oracle’s IAM stack. The guide for the build out is the Enterprise Deployment Guide for Identity Management (Fusion Apps Edition), which we will refer to now simply as the ‘EDG’ for short. The first chapter of the EDG includes a good diagram and description of Oracle’s...
Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be created through a prescribed build out...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very simple JDeveloper project that includes a custom login form and an OAM plug-in that demonstrates the basics of using the interface. I'm going to get that blog post out eventually, but for right now I need to talk about logging inside your plug-in. OAM uses the Java Logger (java.util.logging.Logger and related classes)...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very simple JDeveloper project that includes...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to talk specifically, but still at a high level, about how the the Oracle IDM products fit in Fusion Apps. To review, here I’m talking specifically about OID, OVD, OAM, OIM, and optionally OIF. Main Article Active Participants If you are going to take anything away from what I have written or will write about Fusion Apps...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to talk specifically, but still at a high...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a LDAP connector? Since earlier versions, OIM provides connectors for the most popular LDAP systems: Oracle Internet Directory (OID), Oracle Directory Server EE (formerly Sun Java Directory/iPlanet), Novell eDirectory and Microsoft Active Directory (AD). With OIM 11g, a new feature called LDAP synchronization was...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a LDAP connector? Since earlier versions,...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion Middleware Security”. We all work in the Fusion Middleware team on Fusion Middleware but even back then we saw Fusion Applications coming down the pipe and after all Fusion Apps is a set of big business applications whose principal distinction (in my opinion) is that it is the first set of business applications to be built on a...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion Middleware Security”. We all work in the Fusion...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We really appreciate your interest in our posts and hope to be truly contributing to your daily work. With that said… Did you guys know Weblogic implements a WS-Trust client? Did you also know that WS-Trust client can interoperate with web services protected by OWSM policies requiring message protection (signing and...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We really appreciate your interest in...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the OAM documentation can be daunting. So I put together my own integration document/Blog. Not to re-invent the wheel, this post utilizes what we already have in terms of documentation. Think of this as a checklist and the steps that I implemented to get my own internal environment working. Main Article Prerequisites 1)...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the OAM documentation can be daunting. So I...
