#OracleIdM 11g : Step by Step Installation of OAM, OIM, OAAM, OAPM, OIN (11.1.1.3.0) – Part I : Load Schema

[…] Management 11g R1 PS2 (11.1.1.3.0) for OIM, OAM, OAAM, OAPM & OIN . Part I of this series  here covers software & location and steps to load schema in […]

[…] Management (OAM, OIM, OAAM, OAPM & OIN). For Part I Download Software and create Schema click here and for Part II Install WebLogic Server 10.3.3  click […]

[…] For Part I Download Software and create Schema click here  […]

[…] For Part I Download Software and create Schema click here  […]

[…] For Part I Download Software and create Schema click here  […]

[…] Policy Enforcement Points (known as Agents) in OAM 11g. For Step by Step installation of OAM 11g click here and to know about changes in Access Manager (OAM) 11g click […]

[…] This post covers key points related to Session Management in Oracle Access Management (OAM) 11g. For step by step installation of OAM 11g click here […]

[…] For Part I Download Software and create Schema click here  […]

I am trying to install Oracle Access manager. Folowing your post for the same. I am stuck at the point b of executing the RCU. I could not locate the version 11.1.1.3.2.
I downloaded the RCU version 11.1.1.3.3. On executing the run.bat I am getting the following error :

Error: JVM is not installed on the Database.

at oracle.sysman.assistants.rcu.backend.task.PrereqTask.execute(PrereqTask.java:76)
at oracle.sysman.assistants.rcu.backend.task.ActualTask.run(TaskRunner.java:306)
at java.lang.Thread.run(Thread.java:619)

Kindly suggest a solution . I have installed Oracle database XE 10g and have already tried executing the 11.1.1.3.0 RCU . It got installed without any issue.

@ Sayama,
JVM (in database) is required so install this with Database EE (Enterprise Edition) which comes with JVM

[…] For Part I Download Software and create Schema click here […]

[…] For Part I Download Software and create Schema click here […]

Atul,

Is it easy to upgrade OIM to 11g from 9.1?

Can you please refer some documents on how to upgrade OIM from 9.1 to 11g?

@ Arun Rajendran,
There is no upgrade path for OIM 9.1 to OIM 11g yet (as of 09 Feb 2011)

how to use the existing database data of OIM 9.1 when we use the OIM 11g?

@ Ravi,
Please correct me if I am wrong, your requirement is that you have an existing OIM 9.1 database and wish to use data in that for OIM 11g database.

This is currently not supported , wait for OIM upgrade support.

Oracle has stated that OAM11g is solely for upgrading from OSSO to OAM11g. We are currently at OAM 10.1.4.3 and want to use kerberos with our SSO, but kerberos is not supported — at least not very well — in 10.1.4.3.

Since there is no “upgrade” to 11g, I have tried to follow all the steps you have listed here to create a brand new install — not an upgrade — but have 2 issues. 1) When installing IDM, the “Testing Component Schema” screen wants to test the APM_APM and APM_MDS users which is not created within RCU or the setup; 2) If I ignore #1 and continue — during IDM configuration it fails on OIM Server config. Error is “Exception occurred while encrypting the configuration” and we cannot go any further.

Your website and examples have been a lifesaver more than once — Oracle… not so much.

Thank you

@ TCarlson,

Q1; 1) When installing IDM, the “Testing Component Schema” screen wants to test the APM_APM and APM_MDS users which is not created within RCU or the setup;

XXXX_APM comes when you select Authorization Policy Component of OIM . Please check that you selected this component during RCU to create schema

Q2: If I ignore #1 and continue — during IDM configuration it fails on OIM Server config. Error is “Exception occurred while encrypting the configuration”

A2: Which screen is this ? Is this one of screens above or any one in series created by me. XXXX_MDS is required for OIM , Check your RCU logs to see if there were any issues during schema creation .

Also check “username” column from “dba_users” table in database to see if you have these schemas.

Q1) The Authorization Policy Manager creates the user DEV_APM which connects without an issue, but not the APM_XXXX users.

Q2) The config screen in question is the Configuration Progress screen (Part VI) which is not in your list of screen prints. The only thing it is configuring is the OIM server.

The usernames do not exist in the dba_users table.

@ TCarlson,
Do you remeber creating one using RCU ?

If not create them using RCU (note that if you need just OIM then XXX_APM is not required. Just create XXX_MDS )

As far as just needing OIM, I was just following the examples you have in this series. When I got to the config screen, it only listed OIM.

Regarding the creation of the APM_XXXX users, are you saying to simply change the prefix when running rcu and then select only the Policy Manager?

@ TCarlson,
This post is to insall IDAM (Identity and Access Management components) which includes

OAM – Oracle Access Manager
OIM – Oracle Identity Manager
OIN – Oracle Identity Navigator
APM – Oracle Authorization Policy Manager
OAAM – Oracle Adaptive Access Manager.

If you need all these components then follow this guide to the point (including version numbers).

If you hit any issue then update URL you were using and screen (or image number) on which you are hitting issue.

As per my understanding your isntallation failed because of missing schema, if this is the case then yes start RCU again and select missing schema (select new prefix) and create schema in database. Once done go back to configuration screen and select newly installed schema.

After reverting to a snapshot and rerunning rcu for both DEV and APM, all the schemas exist and in Step V, they pass the “Test Component Schema” screen.

Within the “Select Optional Configuration” screen your example has nothing selected. In previous versions, we have selected AdminServer and ManagedServer and did so again here. Once completed, WLS came up without error, and the WLS console displays exactly what you have in your screen prints.

We then initiated OIM Server config (Step VI). The components to configure screen only had OIM Server checked, we followed the same screens as you have them listed… but again received the error in the Configuration Progress screen that an “Exception occured while encrypting the configuration”. This error does not appear in the config log listed.

But an error does appear in the corresponding .out file: “Caused By: oracle.security.jps.service.credstore.CredStoreException: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException: PKI-02002: Unable to open the wallet. Check password.”

@ TCarlson,
This could be because of failed OIM configuration or using wrong wallet password (different from previous configuration)

http://onlineappsdba.com/index.php/2010/08/23/part-vi-configure-identity-manager-oim-oracleidm-11g-step-by-step-installation-of-oam-oim-oaam-oapm-oin/

Sixth screen on above link (Keystore Password).

by the way… thank you for your responses, although we have not figured out this issue, I do appreciate your help and your time.

Regarding the passwords… for the installation, we use the same password for literally everything in order to just make the installation simpler. Once we get the installation down consistently, we will be a bit more security minded about it. So unless there is something we are missing in the install prior to this, the passwords are correct.

As far as the OIM Config, if this refers to the $MW_HOME/idm/bin/config.sh… there isn’t a lot to that configuration. Just the database, wls, and oim inputs which are mostly just passwords… which as I said are all the same for now.

Is it possible to install SOA and OIM on two physically different servers?

btw… the issue ended up being the /tmp folder. For some reason, the subfolders needed to be chmod’d to 777? Or probably one in particular, but never figured that the /tmp folder was the culprit.

Thanks again though for your help. Like I said, this blog has been a lifesaver often while getting used to installing/working with IDM.

For some reason… I think I may have been reading too much into the “IDM” name on this. I keep seeing IDM as part of the filenames, etc for our original installs when we did OAM 10.1.4.3 and then for OAM11g they said that we should not download Identity Manager but should download the Identity Manager/Access Manager Suite. Which made me think that OID and OVD were part of that download.

Have I over-thought this?

@ TCarlson,
You are not alone here, I had same confusion .

Here is my take on this .

In Oracle Identity Management 11g there are twi softwares

1. Identity Management (covers OID, OIF, OVD) – This is 11.1.1.2 as base version and 111.1.1.3 and 11.1.1.4 are patchset (patchset can be applied on top of base). You can directly go from 11.1.1.2 to 11.1.1.4

2. Identity and Access Management (covers OAM, OIM, OIN, OAAM, OPM) –
This is 11.1.1.3 as base version , I have not seen 11.1.1.4 patchset for this product yet.

Do let me know if this helps.

@ skulkarny,
Q: Is it possible to install SOA and OIM on two physically different servers?

A: Interesting question, I have not configured SOA & OIM on different machine and not seen anyone deploying soa (used by OIM for workflow) into different machine.

I would suggest you to raise an SR with architetcure team and see if there are any issues.

Refer them this link http://download.oracle.com/docs/cd/E17904_01/core.1111/e12035/whatis_im.htm#CHDHBAGI

Yes… thanks… As I tell many people when I try to discuss with them Identity Management…

it appears that Oracle ran out of words to use to name this product. Identity Manager, Identity Server, Identity Manager Suite, …

Again, thanks.

ANyone geting this error on IDAM install? I get this error when trying to start the services.

There are 1 nested errors:
weblogic.management.ManagementException: [Management:141223]The server name oam_server1 specified with -Dweblogic.Name does not exist. The configuration includes the following servers {AdminServer}.
at weblogic.management.provider.internal.RuntimeAccessImpl.(RuntimeAccessImpl.java:149)
at weblogic.management.provider.internal.RuntimeAccessService.start(RuntimeAccessService.java:41)
at weblogic.t3.srvr.ServerServicesManager.startService(ServerServicesManager.java:461)
at weblogic.t3.srvr.ServerServicesManager.startInStandbyState(ServerServicesManager.java:166)
at weblogic.t3.srvr.T3Srvr.initializeStandby(T3Srvr.java:880)
at weblogic.t3.srvr.T3Srvr.startup(T3Srvr.java:570)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:467)
at weblogic.Server.main(Server.java:71)
>

@ cbompart

Message “The server name oam_server1 specified with -Dweblogic.Name does not exist.” indicates that Managed Server information is missing in Domain Configuration file $DOMAIN_HOME/config/config.xml

Check configuration or recreate domain and ensure that you select “Oracle Access Manager with Database Policy Store…”

[…] 3. IDAM 11.1.1.3 (containing OAM, OIM, OAAM, OPM and OIN) is base release. To install IDAM use steps by step installation guide here […]

Hi,

i want to install idam in mylocal machine. what are the system specifications.

Thanks,
Shyam.

I am getting these errors in RCU Creating Table spaces
ORA 1119 error in creating database file
OSD 040008 WriteFIle() failure unable to write to file
O/S error OS112 not enough space
ORA-27044 unable to write the header block

@ Shyam,

Check FMW 11g certification matrix and select 6th tab “FMW on WLS – Id & Access”

http://www.oracle.com/technetwork/middleware/downloads/fmw-11gr1certmatrix.xls

@ Vidya,
There is not enough space left on device where database stores its datafile.

Check free space left on machine where you are running database.

[…] Identity and Access Manager 11g for Administrators . In mean time look for OAM 11g installation here , Oracle Internet Directory 11g installation here and steps on how to change OAM 11g’s […]

can u send me how to upgrade from OIM 10g to OIM 11g data base

@ MohanKumar,
As of today there is no upgrade path yet from OIM 10g to OIM 11g

Hi Atul,

Is it possible to install the SOA 11g and OIM 11g in seperate machines(box) and integrate them??
I have a sevre already SOA11g installed and I need to integrate that with OIM 11g. Is it possbile. If so can you please suggest with some links.

Thanks is adavance.

Regards,

Kumar

@ Kumar,
Though I have not seen any option to use existing SOA during OIM install time but I know that you can change SOA callback URLs to exisitng SOA later via /em (managed mbeans for application)

Indeed – this site is very helpful!
We are experiencing exactly the same encryption error (for the last two weeks) while configuring OIM TCarlson had, but chmod -R 777 /tmp did not help….
If TCarlson recalls what else have been done to fix that error?

Hi Atul,
I am facing issues after registering partner application (OSSO Agent) in OAM.

This is what steps i followed ,
1) Installed DB 11g
2) Installed RCU 11.1.1.3
3) IAM Suite 11.1.1.3
4) Ran Config.sh
5) Login in to /oamconsole Added User identity store –Registered OID and set as primary
6) /oamconsole Under Authentication Module Changed the “LDAP” to newly added user identity store
7) Registered partner application (:7777/analytics) in OSSO Agent
8) copied the genertaed osso.conf file under Mod OSSO folder–Bounced apache
9) Tried accessing the application –getting error on single sign-on page of OAM “Action failed, please try again”

please let me know if i have missed any steps

@ Sanjeev,
For point 7) How did you register partner application in OSSO agent ?

What application is this ?

Did you register/provision OSSO with OAM and if yes then how ?

Did you create application domain, authentication policy, protected/public resource (automatically during OSSO agent registration or manually ) ?

Hi Atul,
Thanx for Reply

1) How did you register partner application in OSSO agent ?
we used oamreg.sh script which accepts an XML file as input

2) What application is this ?
This is an OBIEE Application

3) Did you register/provision OSSO with OAM and if yes then how ?

Not sure about this

4) Did you create application domain, authentication policy, protected/public resource (automatically during OSSO agent registration or manually ) ?

Yes this got automatically done after registration

We further investigated and found that there was a Bug in earlier releases of OAM of having SSO TOKEN Version number format, we made that as “3” as it was 3.0 , after we bounced the services it worked for us.

Thanx
Sanjeev

Hi,

I am trying to implement SSO between an ADF Application and J2EE application. From the blog i understood that i need to install and configure the following.

1. Database
2. Weblogic Server
3. RCU
4. OAM (Not sure about the list of components that needs to be installed as part of OAM)

I am planning to install the latest version 11.1.1.5.0

Is my understanding correct and could you provide me some pointers or links that can help me in installing and configuring the required components.

Hi Atul, any idea/solution/suggestion for this error while trying to run the EditHttpConf to configure my httpd.conf filer (Linux 5, x86-64bit) (the whole thing as part of my full OAM 11g setup.
Error wile running the EditHttpConf file with -w and -oh as parameters:
./EditHttpConf: error while loading shared libraries: libclntsh.so.11.1: cannot open shared object file: No such file or directory

appreciate any inputs/comments.

@ SKP,
Is this during webgate configuration as explained in http://onlineappsdba.com/index.php/2011/01/10/part-ix-install-oam-agent-11g-webgate-with-oam-11g/ ?

Please confirm if LD_LIBRARY_PATH variable is set ?

Hi Atul, Thanks for reply. Yes its while configuration of Webgate post a successful installaiton.
Yes I set the LD_LIBRARY_PATH …used the setenv as below:

setenv LD_LIBRARY_PATH ${LD_LIBRARY_PATH}:/scratch//app/idmapp/wlshome/Oracle_WT1/lib

should i use export instead of setenv?

I crosschecked the LD_LIBRARY_PATH is set to the correct lib location under WT1

@ SKP

Update output of

echo $ORACLE_HOME

echo $LD_LIBRARY_PATH

$echo $LD_LIBRARY_PATH
/usr/openwin/lib:/usr/dt/lib:/scratch//app/idmapp/wlshome/Oracle_WT1/lib
$ echo $ORACLE_HOME
ORACLE_HOME: Undefined variable.

But do we need to define the ORACLE_HOME? Should this point to the WebTier installation or OAM/OID installation?

I defined the ORACLE_HOME, now the output for ORACLE_HOME is:
/scratch/USERID/app/runtime/wlshome/Oracle_IDM1
but yet the error while running the EditHttpConf

./EditHttpConf: error while loading shared libraries: libclntsh.so.11.1: cannot open shared object file: No such file or directory

Atul do you suspect any other reason or have any other comments?

@ SKP,

All EditHttpConf does in include webgate.conf in httpd.conf

1. Take backup of httpd.conf
2. Include webgate.conf in httpd.conf (webgate.conf should be in webgate directory under directory in which httpd.conf exists)

Hi!

I have installed a weblogic 10.3.5, an OID 11.1.1.6, and an Oracle Access manager 11.1.1.5.1
OID and OAM are in a same domain.
I have a Error in this step:
http://docs.oracle.com/cd/E24269_01/doc.11120/e23960/install_screens.htm#BABIDJAJ

The weblogic and the OAM server are running, but i can’t connect to OAM. The error message is:
“INST-07539: Could not retrieve OAM information with the given credentials.
Verify the credentials. Make sure that hostname, port and password are correct”

I can access to OAM in firefox: myhost.mydomain.com:7001/oamconsole (weblogic/weblogic1)

What can be a problem?

Regards, Jani

@ Jani,
If OAM is 11.1.1.5 and OID is 11.1.1.6 then you should create two MW_HOME one with 10.3.5 weblogic (for oam 11.1.1.5) and second with weblogic 10.3.6 (for OID 11.1.1.6)

Create two domain, one for OID and second for OAM.

If you want to keep single weblogic home then go for OID 11.1.1.5.

Note: Above solution is to avoid issues with enterprise maanger control (/em)

For OID/OAM installation and integration you can also look at our eBook http://onlineappsdba.com/index.php/book/

Please share on which screen you are hitting this error as link you mentioned in generic URL

Hi Atul!

This screen hit that error: http://docs.oracle.com/cd/E24269_01/doc.11120/e23960/img/access_control.gif

Regards, Jani

@ Jani,
Did you try accessing oamconsole from machine where you are running forms & reports configuration screen.

Try this

telnet myhost.mydomain.com 7001

Do you get telnet connection or it just hangs ?

Hi Atul!

The forms config is running and:
myhost.mydomain.com:7001/oamconsole is working
telnet myhost.mydomain.com 7001 and
telnet myhost.mydomain.com 14100 also working.

Any idea?

Regards, Jani

I found something in install log install.out:
/middleware/Oracle_FRHome/oam/server/rreg/client/cmdToexecute.sh: /tmp/OraInstall2012-03-21_03-45-04PM/jre/bin/java: not found
/tmp/OraInstall2012-03-21_03-45-04PM/jre
/opt/oracle/app/oracle/product/middleware/Oracle_FRHome/oam/server/rreg/client
resultset.getStatus() : false

I made a symbolic link in /tmp/OraInstall2012-03-21_03-45-04PM/ for the real jreLoc and the config step is good now, but after there is in log:

Setting current page standalone validations to true
/tmp/OraInstall2012-03-21_04-25-46PM/jre
/middleware/Oracle_FRHome/oam/server/rreg/client
————————————————
Welcome to OAM Remote Registration Tool!
Parameters passed to the registration tool are:
Mode: agentvalidate
Agent name: 120321042907_RREG_OSSO_VALIDATE
Enter your server address (http(s)://FQDN:port):Server Address: http://myhost.mxdomain.com:7001
Enter admin username:Username: weblogic
Your validate request is being sent to the Admin server at: http://myhost.mxdomain.com:7001
—————————————-

Mar 21, 2012 4:29:17 PM oracle.security.am.engines.rreg.client.RegController processAgentValidation
SEVERE: Server side error occurred. Specific error messages are:agentvalidate mode failed. Agent does not exist.
The rMar 21, 2012 4:29:17 PM oracle.security.am.engines.rreg.client.RegClient main
SEVERE: Exception encountered: RemoteAgentRegistrationException. Specific exception:Error message passed from server is:agentvalidate mode failed.
Agent does not exist. oracle.security.am.engines.rreg.common.RemoteAgentRegistrationException: Error message passed from server is:agentvalidate mode failed.
Agent does not exist.
emote registration process did not succeed! Please find the specific error message below.
Error message passed from server is:agentvalidate mode failed. Agent does not exist.
resultset.getStatus() : true

I hope, this will be working fine now.

Hi Atul!

I found something in the install.out:

Setting current page standalone validations to true
/middleware/Oracle_FRHome/oam/server/rreg/client/cmdToexecute.sh: /tmp/OraInstall2012-03-21_03-45-04PM/jre/bin/java: not found
/tmp/OraInstall2012-03-21_03-45-04PM/jre
/middleware/Oracle_FRHome/oam/server/rreg/client
resultset.getStatus() : false

I made a symbolic link in the /tmp/OraInstall2012-03-21_03-45-04PM/ for the real jre location and now it is working fine.

I don’t know why, because I started the config with this:
./config.sh -jreLoc /JDK/jre

regards, Jani

Hi

happens to me appears to me the same error.

you could fix it?

tk

@ favilaj13,
What error ?

Welcome to OAM Remote Registration Tool!
Parameters passed to the registration tool are:
Mode: agentvalidate
Agent name: 120424011320_RREG_OSSO_VALIDATE
Enter your server address (http(s)://FQDN:port):Server Address: http://bachue.dnp.ad:7007
Enter admin username:Username: weblogic
Enter admin password: Enter admin password: Your validate request is being sent to the Admin server at: http://bachue.dnp.ad:7007
—————————————-

24/04/2012 01:13:22 PM oracle.security.am.engines.rreg.client.RegController processAgentValidation
GRAVE: Server side error occurred. Specific error messages are:Fallo de modo agentvalidate. El agente no existe.
The remote registration process did not succeed! Please find the specific error message below.
Error message passed from server is:Fallo de modo agentvalidate. El agente no existe.
24/04/2012 01:13:22 PM oracle.security.am.engines.rreg.client.RegClient main
GRAVE: Exception encountered: RemoteAgentRegistrationException. Specific exception:Error message passed from server is:Fallo de modo agentvalidate. El agente no existe. oracle.security.am.engines.rreg.common.RemoteAgentRegistrationException: Error message passed from server is:Fallo de modo agentvalidate. El agente no existe.
resultset.getStatus() : false

Hi

the user weblogic was created in OID and added to a group administrator, the changes in OAM to point to OID.

I can login to the user weblogic oamconsole

tanks

Hi

While loading schema for OIM using RCU 11.1.1.6.0
components needed are….

metadata service
user messaging Service
SOA Infrastructure and
Oracle Identity Manger

Do we have separate RCU’s for each components ?
bcos… when I am installing RCU getting this issue..
ORA – 01917 User or Role ‘DEV_MDS’ Does not exist ..

Think this issue is coming when loading schema for metadata service ?

Appreciate any comments ?

Hi,

We installed Web logic Version 10.3.5.0 ,OID 11.1.1.6.0 and in the same server OAM 11.1.1.5.The OID is working fine and I am able to Sync with AD .After the Successful Synchronization only we realized that of OAM .Then I installed the OAM 11.1.1.5 on the same server on different domain. After installation I tried to start the Web logic of OAM (startWebLogic.cmd) ,it is not coming up and some error I could find in the log saying (The address 127.0.0.1 might be incorrect or another process is using port 7001).

Can you give some idea on this, whether we need to change to port or not. I want to open the oamconsole.

The idea is that after successful configuration of OID and OAM i would like to install Oracle Forms in the same server and configure with SSO

Thaks for the quick replay,

Yes i created 2 domains ,how do i change the port for the OAM.Since am not able to open.

@ Naj,
Change port for OID domain

@Atul
I would like to change the OAM port ,is there any xml file i can change the port from 7001 to 7006..

after a long struggle i had instlled Weblogic,oid,oam and AD Sync.

@ Naj, If all you want is to change OAM managed server port then then can be done via weblogic console and this information is stored in $DOMAIN_HOME/config/config.xml

Note that there is also OAM Proxy Port 5575, coherence local and coherence cluster port

here am confused ..after installing the OID ,OAM in diffrent diffrent domains ,i suppose to start both domain startWebLogic.cmd ..but when i am trying to start the OAM Weblogic it is not coming up giving some error related to port

Hey Atul,

How is this Product? Recently I started working on this product. I am working in oracle.
Could you please tell me how is this product outside? I want to go in admin level.

Hello Experts!

Has any one implemented Smart Card/CAC authentication with Oracle Access Manager 11g?
if so, Could you please throw some inputs? Thanks in Advance!

Siva

Can anyone help with this error please?

I’m running config.bat after installing OIM 11.1.2.1 with SOA 11.1.1.6 and keep getting the following in the log .out file:

Modify JAR :true
updated the soaconfigplan.xml & CertificationProcess_cfgplan.xml files in the composite jar sca_CertificationProcess_rev1.0.jar
Updated the SOA Mbean with OIM JPS-CONTEXT Successfully.
Updated the UMS Mbean with OIM JPSCONTEXTName Successfully.
The Domain is already configured.Read keystore password from cwallet.sso/mbean
java.lang.NoClassDefFoundError: weblogic/security/service/PrivilegedActions
at oracle.security.jps.wls.internal.idstore.WlsLdapIdStoreConfigProvider.(WlsLdapIdStoreConfigProvider.java:64)
at java.lang.Class.forName0(Native Method)
at java.lang.Class.forName(Class.java:249)
at oracle.security.jps.internal.idstore.ldap.LdapIdentityStoreProvider.getIdStoreConfig(LdapIdentityStoreProvider.java:187)
at oracle.security.jps.internal.idstore.ldap.LdapIdentityStoreProvider.access$300(LdapIdentityStoreProvider.java:74)
at oracle.security.jps.internal.idstore.ldap.LdapIdentityStoreProvider$NoLibOvd.getInstance(LdapIdentityStoreProvider.java:246)
at oracle.security.jps.internal.idstore.ldap.LdapIdentityStoreProvider.getInstance(LdapIdentityStoreProvider.java:118)
at oracle.security.jps.internal.idstore.ldap.LdapIdentityStoreProvider.getInstance(LdapIdentityStoreProvider.java:74)
at oracle.security.jps.internal.core.runtime.ContextFactoryImpl.findServiceInstance(ContextFactoryImpl.java:139)
at oracle.security.jps.internal.core.runtime.ContextFactoryImpl.getContext(ContextFactoryImpl.java:170)
at oracle.security.jps.internal.core.runtime.ContextFactoryImpl.getContext(ContextFactoryImpl.java:191)
at oracle.security.jps.internal.core.runtime.JpsContextFactoryImpl.getContext(JpsContextFactoryImpl.java:132)
at oracle.security.jps.internal.core.runtime.JpsContextFactoryImpl.getContext(JpsContextFactoryImpl.java:159)
at oracle.security.jps.internal.core.runtime.JpsContextFactoryImpl.getContext(JpsContextFactoryImpl.java:165)
at oracle.as.install.oim.config.util.UpdateJPSCredStore.getPaswordFromCSF(UpdateJPSCredStore.java:208)
at oracle.as.install.oim.config.OIMConfigManager.readKeyStorePassword(OIMConfigManager.java:1294)
at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:780)
at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:608)
at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:375)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:88)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:105)
at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:96)
at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:186)
at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:86)
at java.lang.Thread.run(Thread.java:662)
Caused by: java.lang.ClassNotFoundException: weblogic.security.service.PrivilegedActions
at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionClassLoader.loadClass(StandardConfigActionClassLoader.java:75)
at java.lang.ClassLoader.loadClass(ClassLoader.java:247)
… 27 more

Many thanks,
Bernie

[…] steps are more or less same as 11gR1 or 11gR2 (including PS1) with following additional […]

Hi Experts,
I am not sure if this is right question to ask in this forum
Is it really feasible to integrate Oracle IDAM suite with “not-so-usual systems ” as engineering machines-like package machines-etc,My understanding is normally these would have some basic systems like SCADA/PLC and other software systems,running on a server,so can there be any way to make them communicate with IDAM suite-to implement access control/SSO for such systems?

Thanks
sundas7

we faced an issue while installing RCU 11.1.1.8, it failed on Oracle Identity Manager and Oracle Access Manager…
Could it be because of the RCU version? how can i download the lower version of RCU e.g. the exact version that you mentioned in the guide 11.1.1.3.2?

I think that the .dbf files regarding the OIM , OAM does not existed! I share the error log as below . I appreciated if you can help me.

2014-04-08 14:17:35.254 ERROR rcu: oracle.sysman.assistants.rcu.backend.task.PrereqTask::execute: Prereq Evaluation Failed
oracle.sysman.assistants.rcu.backend.validation.PrereqException: RCU-6083:Failed – Check prerequisites requirement for selected component:OIM
Please refer to RCU log at C:\Users\roya.basiri\Downloads\Compressed\V38997-01\rcuHome\rcu\log\logdir.2014-04-08_14-07\rcu.log for details.
at oracle.sysman.assistants.rcu.backend.validation.PrereqEvaluator.executePrereqTask(PrereqEvaluator.java:663)
at oracle.sysman.assistants.rcu.backend.task.PrereqTask.execute(PrereqTask.java:68)
at oracle.sysman.assistants.rcu.backend.task.ActualTask.run(TaskRunner.java:306)
at java.lang.Thread.run(Thread.java:662)

Dear Kumar,

Thanks a lot for your attention. I am trying to install OIM 11.1.1.7.0.
So according to you, I must create schema with RCU 11.1.1.7, Does it true?

Regards,
Nima

@Dear Atul Kumar
thanks a lot. I’ve check it with another version 11.1.1.7 too, but it doesn’t work either and it failed on the OIM/OAM creation again.

@Nima,
What is the error ?

We provide consulting service and can look remotely and fix your issue .

—–

Regards
Atul Kumar
Contact Us for Consulting Services

@ Kumar

Thanks for your attention and quick reply.
I think that the .dbf files regarding the OIM , OAM does not existed! I share the error log as below . I appreciated if you can help me. At this moment there is no any possibility for remote connection.

ERROR rcu: oracle.sysman.assistants.rcu.backend.task.PrereqTask::execute: Prereq Evaluation Failed
oracle.sysman.assistants.rcu.backend.validation.PrereqException: RCU-6083:Failed – Check prerequisites requirement for selected component:OIM
Please refer to RCU log at C:\Users\roya.basiri\Downloads\Compressed\V38997-01\rcuHome\rcu\log\logdir.2014-04-08_14-07\rcu.log for details.
at oracle.sysman.assistants.rcu.backend.validation.PrereqEvaluator.executePrereqTask(PrereqEvaluator.java:663)
at oracle.sysman.assistants.rcu.backend.task.PrereqTask.execute(PrereqTask.java:68)
at oracle.sysman.assistants.rcu.backend.task.ActualTask.run(TaskRunner.java:306)
at java.lang.Thread.run(Thread.java:662)

Hi
Thanks for your attention. Could you upload earlier version of RCU ? I think there is not such issue in earlier version.

Best Regards,
Nima

Hi Atul,

I have a doubt, can you please clarify it.
Q:Shall i follow your steps in IAM 11g R2(11.1.2.X) with Weblogic 12.1.2?

[…] For installation and commands, you can refer Oracle document & blog. […]

Hi Sir,

Can you provide the version of below softeare for OIM ps3 Set up and links in windows OS

Software–
Database,
RCU,
WebLogic,
SOA,
Identity & Access Management.