Installation of Oracle Identity Management (OID/OVD/ODSM/OIF) 11gR1(11.1.1.7) – Part 2

This post covers part ” of  OID/OVD 11gR1 (11.1.1.7) installation that will be used as user repository (Identity Store) for our Oracle Access Manager (OAM) 11gR2 Admin Training (training starts on 3rd May and fee is 699 USD). For first part of OID/OVD installation click here

1. Install IDM (OID/OVD/ODSM) 11.1.1.7

1.1 Start installer as cd /stage/oracle/idm/11.1.1.7.0/Disk1 (IdM 11.1.1.7 is unxipped at this location) and invoke 

./runInstaller

1.2 Select Install and configure

 

1.3 ODSM (more on ODSM here) requires Weblogic Server and WebLogic Domain.  Select create a new domain

 

1.4  Specify Installation Location

ORACLE_HOME is where OID/OVD software binaries go
ORACLE_INSTANCE is where OID/OVD binary/configuration and logs go

Note: ORACLE_HOME must be installed in MW_HOME created earlier

 

1.5  Select default on Configure Components (We are insatlling all the components)

 

1.6 On OVD configuration screen provide password of OVD superuser and click Next

 

1.7 You have option to create schema or use an schema (ODS) already created by RCU (Repository Creation Utility). For this post we are asking installer to create schema (and NOT using RCU to create ODS/ODSSM schema)

 

1.8 Set ODS & ODSSM schema password

 

1.9 Provide password for OID superuser (cn=orcladmin)

 

1.10  Specify OIF PKCS12 password

 

1.11 Provide OIF advanced attribute values

 

1.12 Click Install on installation summary screen

 

1.13 When prompted run script from root user

1.14 When configuration reaches 100 %, click Next

 

1.15 Click Finish

 

1.16 Above step will install
ORACLE_COMMON_HOME (oarcle_common) : for JRF and common files like EM
ORACLE_HOME ( Oracle_IDM1 ) for OID/OVD/OIF software/binaries
ORACLE_INSTANCE (asinst_1) for OID/OVD runtime like executables/conf/logs
DOMAIN_HOME (user_projects/domains/IDMDomain ) for hosting weblogic Admin Server and managed server for ODSM/DIP
1.17  URL’s of some entities below. ODSM console is running on Managed server on port 7005 and Federation server runs on 7499 in this case
a) http://host:7001/console (WebLogic Console)
b) http://host:7005/odsm (ODSM Console)
c) ldap://host:3060 (OID Non SSL Listen Address)
d) ldaps://host:3131 (OID SSL Listen Address)
e) ldap://host:6501 (OVD Non SSL Listen Address)
f) ldaps://host:7501 (OVD SSL Listen Address)
g) 8899 for OVD HTTPS Listener port
h) 7499 WebLogic Managed Server hosting OIF
1.18 Check which processes are running using the following command
In next part we are going to cover how to create Users in OID using ODSM, stay tuned !!
You can register for our Oracle Access Manager (OAM) 11gR2 Admin Training (Fee is 699 USD), Contact Us if you have any queries regarding training or Oracle Identity & Access Management.

Share This Post with Your Friends over Social Media!

About the Author Kalyan

Leave a Comment:

2 comments
Shirisha says April 3, 2014

Thanks for sharing detailed installation process of Oracle identity management!!!

Reply
Andrew says May 30, 2014

hay,..
in step configuration progress i had failed to create ASInstance.

this the error from log

[ERROR] [] [oracle.as.provisioning] [tid: 167] [ecid: 0000KPCpc0K4qmO5yj4EyW1JY6LQ00000A,0] [[
java.lang.ExceptionInInitializerError
at javax.crypto.Mac.getInstance(Mac.java:171)
at oracle.security.crypto.cert.PKCS12.computeMAC(PKCS12.java:299)
at oracle.security.crypto.cert.PKCS12.verify(PKCS12.java:402)
at oracle.security.pki.OracleKeyStoreSpi.engineLoad(Unknown Source)
at java.security.KeyStore.load(KeyStore.java:1214)
at oracle.security.pki.OracleWallet.getKeyStore(Unknown Source)
at oracle.security.pki.OracleWallet.createSSO(Unknown Source)
at oracle.as.config.utl.FileUtil.createSelfSignedOracleWallet(FileUtil.java:711)
at oracle.as.config.utl.FileUtil.generateWallet(FileUtil.java:633)
at oracle.as.config.utl.FileUtil.generateWallet(FileUtil.java:669)
at oracle.as.config.utl.FileUtil.generateWallet(FileUtil.java:560)
at oracle.as.config.impl.OpmnProvisioner.generateWallet(OpmnProvisioner.java:70)
at oracle.as.config.impl.OpmnProvisioner.createOpmnConfiguration(OpmnProvisioner.java:366)
at oracle.as.config.impl.OracleASInstanceImpl.createOpmnConfiguration(OracleASInstanceImpl.java:654)
at oracle.as.config.impl.OracleASInstanceImpl.create(OracleASInstanceImpl.java:108)
at oracle.as.provisioning.fmwadmin.ASInstanceProv._createInstance(ASInstanceProv.java:249)
at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstance(ASInstanceProv.java:166)
at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstanceAndComponents(ASInstanceProv.java:116)
at oracle.as.provisioning.engine.WorkFlowExecutor._createASInstancesAndComponents(WorkFlowExecutor.java:523)
at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:439)
at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
at oracle.as.idm.install.config.BootstrapConfigManager.doExecute(BootstrapConfigManager.java:1474)
at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:375)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:88)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:105)
at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:96)
at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:186)
at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:86)
at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.SecurityException: Can not initialize cryptographic mechanism
at javax.crypto.JceSecurity.(JceSecurity.java:86)
… 31 more
Caused by: java.lang.SecurityException: The jurisdiction policy files are not signed by a trusted signer!
at javax.crypto.JarVerifier.verifyPolicySigned(JarVerifier.java:289)
at javax.crypto.JceSecurity.loadPolicies(JceSecurity.java:316)
at javax.crypto.JceSecurity.setupJurisdictionPolicies(JceSecurity.java:261)
at javax.crypto.JceSecurity.access$000(JceSecurity.java:48)
at javax.crypto.JceSecurity$1.run(JceSecurity.java:78)
at java.security.AccessController.doPrivileged(Native Method)
at javax.crypto.JceSecurity.(JceSecurity.java:76)
… 31 more

is anyone in here know how to solve this error?

thanks
andrew

Reply
Add Your Reply