Fusion Applications 11.1.1.5.1 Installation Part II – Configure Oracle Internet Directory
In previous post here I discussed Identity and Access Management installation for Fusion Applications and covered following steps
a) Install WebLogic Server 10.3.5 (This will create middleware Home)
b) Install OID 11.1.1.2 and apply patch 11.1.1.5 (This will create IDM Oracle Home)
c) Install OIM/OAM 11.1.1.5 (This will create IAM Oracle Home)
d) Install SOA 11.1.1.5 (This will create SOA Oracle Home, SOA is used by OIM)
e) Install OHS 11.1.1.2 and apply patch 11.1.1.5 (This will create OHS Oracle Home)
f) Create Schema in IDM database using RCU
Next step is to configure these components (OID, OIM, OAM, SOA, OHS) and then integrate
i) OID with OIM (for user/role synchronization between OIM and OID)
ii) OAM with OIM (for password management and account lock/unlock)
iii) OAM with OID (user store for OAM)
This post covers configuration of Oracle Internet Directory 11g.
a) Start OID configuration by running config.sh from IDM Oracle_Home/bin
b) Select option “Create New Domain” (This step will create WebLogic domain which will later be extended to include OIM, OAM and SOA)
c) Provide Instance Directory and Oracle Home, WebLogic Sever directory. (Instance Directory can be anywhere i.e. inside or outside Middleware Home). This step will create ORACLE_INSTANCE OID startup/shutdown, log and configuration files are under Instance Directory.
Note : OHS configuration will also create another instance directory.
d) From components list, select Oracle Internet Directory and Oracle Directory Services Manager (ODSM) (Other components like OVD, OIF, DIP are optional and are NOT used by Fusion Applications)
e) On database screen, select Use Existing Schema and provide details of database where schemas were created using RCU
f) Enter details of realm (also known as domain) and Administrator password (default user is cn=orcladmin). Realm value by default is domain name of machine on which you are installing OID. For ex. if machine names is machine1.onlineappsdba.com then installer will create default realm value as dc=onlineappsdba,dc=com (If required you can select different realm value).
Note: Users and Groups in Fusion Applications are created and stored under relam like cn=Users, <Realm> and cn=Groups, <Realm> respectively.
Note: There are two orcladmin accounts in OID i.e. cn=orcladmin (Super User) and cn=orcladmin, cn=Users, <Realm> (Domain Administrator) with same password by default. Password of these two accounts can be set to different value.
g) Installer will automatically start OID and WebLogic Services (Admin Server and ODSM)
h) Verify configuration by checking
i) OID ($ORACLE_INSTANCE/bin/opmnctl status -l)
ii) Admin Server http://hostname:7001/console
iii) ODSM http://hostname:7005/odsm
Note: 7001 and 7005 are default Admin Server and ODS managed server port in WebLogic Domain .
In next post we are going to prepare OID for OIM/OAM using idmConfigTool more here and here , including what happens behind the scene when you run idmConfigTool