Install Oracle Identity Management (OIM/IDM) – OID / OVD / OIF : High Level Steps

This post covers high level steps to install Oracle Identity Management (OIM) (11gR1 PS3) which covers Oracle Internet Directory (OID), Oracle Virtual Directory (OVD) and Oracle Identity Federation (OIF). For full list of all Oracle Identity Management products click here


Key Points for Oracle Identity Management Installation

1.There are two executable/installers for Oracle Identity Management
a) Oracle Identity Management (aka IDM) which is currently on version . This installer contains products OID, OVD and OIF
b) Oracle Identity and Access Management (aka IDAM) which is currently on version This installer contains products OAM, OIM (Identity Manager), OAAM, OIN and OPM 

2.IDM (containing OID, OVD and OIF) is patchset which means you must first install base release of IDM i.e.

3. IDAM (containing OAM, OIM, OAAM, OPM and OIN) is base release. To install IDAM use steps by step installation guide here

4. If you are installing IDM (OID/OVD/OIF) then SOA suite is NOT required. SOA suite is required for Oracle Identity Manager only which is product from Identity and Access Management Suite (IDAM).

5. If you are planning to install just Oracle Internet Directory (OID) then you can create schema (database schema containing OID data) either before using RCU  or during configuration stage (OID configuration stage). For OIF and OVD schema , you must create them before config using RCU

6. For Oracle Identity Management (OIM) installation you would need
a) Database – Oracle 10g , 11g R1 and 11gR2 are supported
b) WebLogic Server – only 10.3.4 (do not use lower or higher version of WebLogic)
c) RCU – (RCU is available as patch 11060956) . For list of all FMW 11g R1 PS3 patches check here
d) IDM –
e) IDM patch (patch number is (11060980)

7. If you are installing just OID (No DIP   or ODSM ) then WebLogic is NOT required.


High Level OIM Installation Steps

1. Install Database

2. Load schema using RCU (For just OID you can skip this step and create schema during config stage 5)

3. Install WebLogic 10.3.4

Install IDM (select “Install Software – Do Not configure” option)

5. Apply IDM patch (select ORACLE_HOME created in setp 3 above)

6. Configure IDM using config.bat) from $MW_HOME/Oracle_IDM1/bin   (This location is also known as Oracle Home for IDM/OIM) . More information on MW_HOME or ORACLE_HOME here


Confused or facing issues during OIM 11g installation ?? Leave a comment

Share This Post with Your Friends over Social Media!

About the Author Atul Kumar

Oracle ACE, Author, Speaker and Founder of K21 Technologies & K21 Academy : Specialising in Design, Implement, and Trainings.

follow me on:

Leave a Comment:

Paul says March 23, 2011

Hi Atul,

Just a quick question. In general how much Memory(RAM) will be required to install OAM and OIM/IDM on two seperate boxes? Any suggestion?

Thanks again for putting together this doc.

Best Regards.

Atul Kumar says March 23, 2011

@ Paul,
For OAM machine there will be two weblogic servers Admin Server and 1 managed server each usign 512 MB memory so 2 GB is enough.

For OIM/IDM If you are using with weblogic then there will be 2 weblogic servers (admin & managed) + oid ldap server so 3 GB is enough (though 2GB should just work).

Note : These settings are not for production. OAM 11g maintains user session to plan for higher memory for OAM managed server and coherence.

berniej says April 2, 2011

I am completely stuck trying to install IDM on Solaris x86 (this is the only supported version for the platform).

I have p11060980_111140_Solaris86-64 which is the patch set but this will only install as an update to an existing installation.

However, I can’t install – or any other previous version – as a starting point as Solaris x86 is not supported!

I seem to be in a catch 22 here!

Atul Kumar says April 3, 2011

@ berniej,
Good point , Yes it doesn’t make any sense to release patchset when there is no base release available. Please raise this as bug with Oracle Support.

sts says April 6, 2011

Hi Atul
I installed weblogic server 10.3.4

and installed IDM (selected “Install Software – Do Not configure” option)
Then patched into after installation finish using configured
Then when i extend my domain
in Create AsInstance step error occured

In error log Library not found: /home/webcenter/Oracle/Middleware/modules/features/weblogic.server.modules_10.3.1.0.jar

maybe it must be load weblogic.server.modules_10.3.4.0.jar

Why it try to load weblogic.server.modules_10.3.1.0.jar file already pathced 4 version

RCU version was same RCU – let me know how can resolve this issue

Atul Kumar says April 7, 2011

@ sts,
Is this on Unix ?

What is hostname and entry in /etc/hosts ?

Do you have IP assigned to server and if yes can you ping to this hostname/ip (entry defiend in /etc/hosts) ?

» Integrate Oracle ECM/UCM (Content Management) 11g with Oracle Internet Directory (LDAP Server) : Things you must know Online Apps DBA: One Stop Shop for Apps DBA’s says April 16, 2011

[…] Integrate Oracle ECM/UCM (Content Management) 11g with Oracle Internet Directory (LDAP Server) : Things you must know Posted in April 16th, 2011 byAtul Kumar in UCM, ecm, integration, oid  Print This Post This post covers things you must know when integrating Oracle Enterprise Content Management 11g with Oracle Internet Directory (OID).  OID is LDAP version 3 complaint directory server from Oracle. Latest release of OID (as of 5 April 2011) is 11gR1 PS3 For steps on how to install OID 11g click here […]

naren says April 27, 2011

Hi Atul
I installed weblogic server 10.3.4

and installed IDM (selected “Install Software – Do Not configure” option)
Then patched into after installation
i run the and try to create a new domain i choose the option of staticports i am getting an error saying my ports are invalid or in use , but i have checked all ports mentioned in the file are not being used

Please let me know how can resolve this issue


Atul Kumar says April 27, 2011

@ naren,
What all components you are selecting during OID/IDM installation ?

Update your portlist.ini you are using .

You can try sample staticports.ini from Disk1/stage/Response (uncomment ports which you want to use)

» Error starting OID 11g during configuration stage of OID installation on Windows Server “ProvisionException: Failed to start the component” Online Apps DBA: One Stop Shop for Apps DBA’s says May 17, 2011

[…] byAtul Kumar in oid, troubleshooting  Print This Post I discussed about OID 11g installation here, here and here . I also discussed OID start-up issues here, here and here(Post from Mahendra) […]

J_IDM says May 25, 2011

Hi Atul,
I have one query.

I installed OIM/OAM 11g on a single machine first. Say Machine1

Now I want to seprate the OIM and OAM. Like,I want, My OIM should be present on Machine1 and OAM on a new machine2.

Can we achieve this using existing already insalled setup?
Do i need to again install OAM on machine2?

Please let me best way to achieve this.


Atul Kumar says May 25, 2011

I would n’t recommend you to move OAM server but here is work around

1. Install WEbLogic & IDAM software on machine 2
2. Run from machine1 and select extend domain and create a OAM server , on Managed Server screen , select machine name as machine2
3. Run (with option -managed server true)
4. Move jar/zip file created by pack to machine2
5. on machine2 – This will create domain directory

6. Stop oam server on machine1 and start oam server on machine2

Hope this helps

mah284 says May 29, 2011

I would like to know few things.

I am planning to install SSO for EBS and other applications Running including the Windows Active Directory synchronization.

Can you advise what do i have install from the OFM.

1. ONly the OAM and OIM
2. OAM, OIM and OID OVD etc.

Please advise.

Atul Kumar says May 29, 2011

@MAH 284

For sso integration with EBS using OAM as SSO engine all you need is OID, DIP and OAM.

OID for user repository of OAM and DIP to synch users from AD to OID and also to provision users between OID and EBS

mah284 says May 29, 2011

Thanks for your reply, it is possible to have a document for this if available. I am running pillar to post from OFM docs to Weblogic Docs but failing evertime I am trying to install.

For your information since is avaialbe i am installing

Thanks and Best Regards

mah284 says May 29, 2011

That means I have to install

2. OAM

both the applications as above from different parts numbers (Zip files, 1115 Identity Management, and 11115 Identity Management & Access Manager)

Correct me if I am wroing.

If I have to do the above the question is do I have to install the oid and ofm in the same home or different homes (Different users) a bit confusion out here can you please clarify.

Thanks and Best Regards


Atul Kumar says May 30, 2011

@ Mah,
For doc check my post

For OAM installation check

Please note that OID, OAM is not yet certified (though it should work) hence install OID and OAM

Atul Kumar says May 30, 2011

@ Mah284

Yes OID & OAM are under two different software (search on this blog and there is plently of information on OID & OAM)

Q. Do I have to install the oid and ofm in the same home or different homes

A. If you are installing same versions then they can go in same MW_HOME (Oracle says even different version OID and OAM can go in same home but I had issues with /em application)

Q. Can they be installed using same user
A. Yes

Q. (Different users) a bit confusion out here can you please clarify.

nth1809 says May 31, 2011


I’m trying to install patchset.

I sucessfully installed, with no errors.

The patchset installer, at 10% of the installation process, throws an error “Error in writing to file /u01/Oracle/Middleware/oracle_commom/ccr/sysman/install/ – Invalid CRC entry […]”

I checked the installers that I used, and they aren’t corrupted. Same size described on Oracle’s download page.

OS: RHEL5_64bit

Maybe, a lib problem?

Thank you!

Atul Kumar says May 31, 2011

@ nth1809,
Share location and file name for and patchset.

I still suspect that this is corrupt software (download again and try)

» Oracle Access Manager 11g is now certified with E-Business Suite (Apps) R12 Online Apps DBA: One Stop Shop for Apps DBA’s says June 10, 2011

[…] . In mean time look for OAM 11g installation here , Oracle Internet Directory 11g installation here , steps on how to change OAM 11g’s Identity Store to Oracle Internet Directory here , and […]

Wes says August 18, 2011


We are trying to get OIF to work in a DMZ mode where users that are logging in to our OAM environment can access SalesForce via SAML 2.0 assertion.

Internally it all works as expected, but if we introduce a DMZ WLS proxy for /oam /fed and /obrar.cgi requests, the assertion fails. We are following the Oracle document ID 1327863.1 and have set the SSO Engine OAM Server host in OAM to the DMZ proxy over SSL. Now initially things look good, but we keep finding that the internal identity provider server is responding to some requests, while the proxy is responding to others, which makes me think our identity provider in OIF should point to the same proxy server. The question(s) is/are

1. Is there documentation available to describes what we are trying to accomplish that we can reference?

2. Do we have to use a webgate in the DMZ or would a basic Apache config with WLS proxy enabled work?

Atul Kumar says August 25, 2011

@ Wes,
Could you please share what are you trying to achieve? Are you using OIF as SP, IdP or both ? Is OIF integrated with OAM for authentication ?

Please note: We also do remote consulting and look at architecture and suggest reference architecture/deployment.

Wes says September 7, 2011


We actually got it up and running. SalesForce was the service provider and OIF was the identity provider, it tooks us a bit to understand how the setup needs to work. In order for OAM to work with OIF, you have to setup the initial IDP and SP through metadata generation, and if you are using a proxy environment so that external users can access OIF, then the end-point has to be the DMZ URL. Regarding Consulting etc. Please contact me via my email address and we can discuss your services.

bhaveshkumar.shah says November 29, 2011

Hi, I have installed Oracle Identity and Access Management( and now planning to install OID only. While creating OIAM, I already have created OID schema so during installation of OID should I refer the same schema or do I need to create separate schema?
What will happen if I will not install OVD, OIF and weblogic 10.3.4 because with OIAM i already have installed weblogic 10.3.3

Atul Kumar says November 30, 2011

@ bhaveshkumar.shah,
You can’t create two OID schema (ODS) in same database. Use same ODS schema for installing OID. If you are planning to use higher version of OID or 5 then upgrade ODS & ODSSM schema.

Other option is to drop ODS schema using RCU and use correct version of RCU to install right version of ODS schema.

Q: What will happen if I will not install OVD, OIF and weblogic 10.3.4 because with OIAM i already have installed weblogic 10.3.3
A: Though Oracle says this is certified configuration but I have seen issues in past with higher version of OID but lower version of WebLogic (around EM)

For single domain and weblogic software go with (and weblogic 10.3.5)

Mono Xio says July 24, 2012

When I installed “V18763-01-Oracle-Identity-Management11g” in “Orcle_IDM”,and later install “OID_p12395123_111150_Linux-x86-64” to the same directory, then I checked the directory “Orcle_IDM”,it is 2.0G.But when I configure OID,An error occurred:Create ASInstance failed.
How can I do?

sudhakar says August 6, 2014

is it useful for IDM Developer or for IDM Adminstrator only

Alex Alto says October 14, 2014

Hi Atul,

do you have an updated content for this overview like OAM / OID release


Add Your Reply