All posts by Mahendra
OAM/OIM schema passwords expired
I have OAM/OIM/ODSM 11g in my environment. While logging into sqlplus as ODS or OAM or OIM users it throws the error as shown in below screenshot. So I have logged into DB as sys user and verified the status of ODS, OAM and OIM schema users. In my case, the schema users are ODS, […]
Read More“Error: Single Sign Off didn’t take place” while logging out of OAM Admin console
I have logged into OAM 11g Admin console as weblogic user and performed some operations such as Creating Agents etc., and clicked logout. It redirected to the page showing “Sign off did not place”. See the below screenshot for complete error message. Notice the URL it is redirected to OAM_HOST:port/oamsso/logout.html?end_url=/oamconsole/faces/pages/PolicyManager.jspx. The IDMDomainAgent is the webgate […]
Read MoreExporting and importing of policies in OAM 11g
This post talks about the command used to export and importing of OAM 11g policies. OAM 11g provides this functionality through WLST scripting tool. This is the only possible approach to automatically export all policies from OAM 11g. The below steps are appropriate in linux env for exporting policies. Goto $ORACLE_HOME/common/bin. Run ./wlst.sh connect(‘weblogic’,’password’,’t3://weblogic_host:port’) […]
Read MoreHow to set and get session attributes in OAM 11g
Session & session attributes are newly introduced in OAM 11g. OAM 11g maintains a session at server side the sessionIds are managed by Session Management Engine SME. How to retrieve session IDs from OAM server are explained in post. So this post will give a sample code snippet to set and retrieve session attributes from […]
Read MoreUsername based authentication using OAM 11g
I have worked on a OAM 11g requirement that needs to do authentication based on only username. There is a OOTB authentication scheme available in OAM 11g called LDAPNoPasswordValidationScheme. This authentication scheme uses the Authentication module LDAPNoPasswordAuthModule and that in turn points to Embedded Weblogic identity store by default. I have to perform all this […]
Read MoreHow to read session Ids of a user from OAM 11g
We are extensively using OAM 11g API in our project out of which there is a requirement to set session attributes for a OAM user session. Session attributes is a concept newly introduced in OAM 11g (not there in 10g). So once OAM session is created we can retrieve the session Ids by using the […]
Read MoreHow to read OAM ObSSOCookie through java script
We have a shindig application protected by OAM 11g using an Apache 10g WebGate. Please refer my previous post on how to protect Apache Shindig application using OAM 11g. It is very common to pass on user attributes in authorization actions as headers or cookies. However we have a requirement to get the ObSSOCookie that […]
Read MoreHow to protect Apache Shindig application using Oracle Access Manager 11g
Apache shindig is one of the famous gadget applications used accross various social sites. The technology used in the backend for this shindig application is XML/JS/CSS/HTML. The front end application page will be html and gadgets are available in the format of XML embedded in html. The shindig application URL looks like http://host:port/ShindigApp/index.htm. The Shindig […]
Read MorePrevent disabled users to login to application protected by Oracle Access Manager
Hi All, I am working in 11g environment involving products OIM/OAM/OID/OVD. The user management is happening through OIM – for eg., disable user. There is an application protected in OAM and using OVD Authentication Module. OVD Auth Module uses OID in the backend. OIM is talking to OID using OID connector. Now the point is […]
Read MoreHow to create new realm in OID 11g?
I have had the opportunity to create a new realm in OID 11g and in this post I would like to provide the steps to achieve this. Export the ORACLE_HOME environment variable. Run the ldapsearch command to list the existing default subscriber. $ORACLE_HOME/bin/ldapsearch -h ldap_host -p port -D cn=orcladmin -w password -b “cn=common, cn=oraclecontext”-s base […]
Read More