I was working on Identity Management for quite some time & have seen lot of changes, From Netpoint to OblixCOREid to Oracle-Oblix and now Oracle Identity Management , who knows what next. These changes in Identity Management are quite important and at same time required in rapidly changing Information era where management of Identity both from security and SoX compilance point of view is critical.

In today’s post I am going to cover installation order of Oracle Access Manager (Formerly Oblix COREid)

The order of installation is important .

Installation of Access Manager
Access Manager consist of Identity System and Access System.

Phase I – Installing Identity System (Identity Server, Web Pass)

1. First component to be installed is Identity Server
–1.1 Start the installation from /software_location/ Oracle_Access_Manager10_1_4_0_1_XXXX_Identity_Server
–1.2Specify transport security Mode (open, simple, secure)
–1.3 Identify Identity Server
–1.4 Define communication detail (between Identity Server & Directory Server)
–1.5 define directory server details

Webpass can’t be installed on same directory as of Identity Server

2. Then Install Web Pass (Each webpass should have its own webserver)
–2.1 choose install method GUI or command line and start installation from Oracle_Access_Manager_10_1_4_0_1_XXXXX_WebPass
–2.2 Specify transport security mode for webpass
–2.3 Identify web pass configuration details
–2.4 Perform automatic Web Server configuration updates

3. Next Setup Identity system
–3.1 Start setup process from browser, http://server:port/identity/oblix
–3.2 From Idm System console, Specify directory server and data location —-3.3 Specify Object Class details
–3.4 Confirm Object class changes
–3.5 Configure Master administrator
–3.6 Complete identity system setup

4. Add additional identity server instance (Optional Step, This can be done later as well)

Phase II Installing Access System (Policy Manager, Access System, Web Gate)

5. Install Policy Manager Note: Policy manager should be installed on same webserver and same directory level as WebPass
–5.1 Choose install method from GUI or command line /Oracle_Access_Manager_10_1_4_0_1XXXXX_Policy_Manager
–5.2 Identify directory server and Policy data location
–5.3 Specify transport security mode
–5.4 Update web server configuration
–5.5 Finish your Policy manager configuration

6. Next Step is Set up Policy Manager
–6.1 Start policy manager setup using http://servername:port/access/oblix –6.2 Specify directory server details to store policy data
–6.3 Configuring Authentication Schemes
–6.4 Completing policy manager setup

7. Install Access Server (Access server receives request from webgate or access gate(custom) and queries LDAP server for authentication,
authorization and auditing. Before installing access server you need to create instance for it from access console)
— 7.1 Adding an instance in access console (http://servername:port/access/oblix )
–7.2 Install access server
—-7.2.1 Start Installation in GUI or command line mode
—-7.2.2 Specify transport security mode
—-7.2.3 Define Directory server communication details
—-7.2.4 Finish Access Server Installation
—-7.2.5 Add additional access server (optional)

8. Install WebGate
Webgate is web server plug-in that communicates with Access Server for Authentication & Authorisation.
–8.1 Create WebGate Instance from Access Console
–8.2 Associate WebGate Instance with Access Server
–8.3 Install WebGate
–8.4 Update Webgate Web Server Configuration
–8.5 complete finishing task (Updating IIS Server Config, httpd.conf updates)

You can install additional optional components like

– Setting Up Access Manager with Virtual Directory
– Installing SNMP Agent- Installing Additional language
– Installing Audit-to-Database component

OblixCOREid or Oracle Access Manager Architecture and key component’s (Installed above) inter communication coming soon…

Related Posts for Access Manager

  1. Integration Steps – 10g AS with OAM (COREid)
  2. OAS – OAM (Access Manager / Oblix COREid) Integration Architecture
  3. Oblix COREid and Oracle Identity Management
  4. Installing Oracle Access Manager (Oblix COREid / Netpoint)
  5. Oracle Access Manager (Oblix COREid) Upgrade
  6. Access Manager: WebGate Request Flow
  7. Introduction to Oracle Access manager : Identity and Access System – WebPass , Webgate, Policy Manager
  8. Certified Directory Server (AD, OID, Tivoli, Novell, Sun or OVD) and their version with Oracle Access Manager
  9. Install Oracle Access Manager (OAM) Identity Server, WebPass, Policy Manager, Access Server, WebGate
  10. Multi-Language or multi-lingual Support/Documentation for Oracle Access Manager (OAM)
  11. OAM Policy Manager Setup Issue “Error in setting Policy Domain Root” : OAM with AD and Dynamic Auxiliary Class
  12. OAM Installation Part II – Indentity Server Installation
  13. OAMCFGTOOL : OAM Configuration Tool for Fusion Middleware 11g (SOA/WebCenter) Integration with OAM
  14. Oracle Access Manager Installation Part III : Install WebPass
  15. OAM : Access Server Service Missing when installing Access Manager with ADSI for AD on Windows
  16. OAM : Create User Identity – You do not have sufficient rights : Create User Workflow
  17. Password Policy in Oracle Access Manager #OAM
  18. Changes in Oracle Access Manager 11g R1 (
  19. Agents in OAM 11g (WebGate 10g/11g, OSSO/mod_osso, AccessGate IDM Domain agent) aka PEP (Policy Enforcement Points)
  20. How to install Patches in Oracle Access Manager 10g : Bundle Patch / BPXX
  21. Session Management in #OAM 11g : SME , Idle Timeout, Session Lifetime
  22. Part IX : Install OAM Agent – 11g WebGate with OAM 11g
  23. How to integrate OAM 11g with OID 11g for User/Identity Store
  24. How to install Bundle Patch (BP) on OAM – BP02 (10368022) OAM
  25. Error starting OAM on IBM AIX : AMInitServlet : failed to preload on startup oam java. lang. Exception InInitializer Error
  26. OAMCFG-60024 The LDAP operation failed. OAMCFG-60014 Oracle Access Manager is not configured with this directory
  27. How to Edit (create, delete, modify) Identity Store of OAM 11g from command line (WLST) – editUserIdentityStoreConfig
  28. OAM WebGate Registration RREG – Resource URL format is not valid
  29. Blank Screen on OAM 10g Identity Server Console : /identity/oblix
  30. Oracle 10g/11g webgate software download location
  31. How to find Webgate 10g/11g Version and Patches Applied
  32. OAM integration with OIF : Authentication Engine or Service Provider
  33. OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On
  34. OAM 11g : How to change Security Mode (OPEN, SIMPLE, CERT) – WebGate to Access Server Communication
  35. Forgot Password link on OAM Login Page
  36. OIM-OAM-OAAM integration – Account Lockout in OAM obLoginTryCount , oblockouttime, MaxRetryLimit
  37. How to identify which LDAP (OID/AD/OVD) server OAM 11g connects to and as what user ?
  38. OAM 10g WebGate installation failed with Sorry Invalid User or Invalid Group
  39. Beware if you are running OAM in SIMPLE mode with 10g WebGate : Oracle AccessGate API is not initialized
  40. Troubleshooting : 11g WebGate with OHS 11g integrated with OAM 11g : OBWebGate_AuthnAndAuthz: Oracle AccessGate API is not initialized
  41. Deploying OAM in high availability across data centres in Active Active cluster : New Feature in OAM 11gR2 PS2
  42. New OAMConsole in OAM 11gR2 PS2 : Enabling Federation, STS, Mobile & Social in Oracle Access Management Suite
  43. OAM/WebGate troubleshooting : WebGate on Apache/OHS Unable to read the configuration file
  44. Is OAM alone enough or should I also learn OIM/SOA for Apps DBA ?