How to configure OID
Hi,
I have installed 10G AS on Windows server 2003. (Both Infrastructure and middle tier). Wehave two databases that are on two solaris servers. We want to use single sign on for our end user for all the applications.
How to I configure or register these databases on Solaris machines to OID on Windows machine so that I can create users in on place (Windows machine ) that can access all databases with one username ?
Any link to a how to doc or step by step guide will be greatly appreciated.
Thanks
See first couple of steps in http://www.oracle.com/technology/deploy/security/db_security/howtos/eus-how-to.html
regards,
--Olaf
Similar Messages
-
How to configure OID with ADS in windows 2003
Hi all,
The requirement here is I have to integrate the ADS with OID
from ADS to OID synchronization.
The users we are created in ADS has to sync with OID external authentication.
I need the installation docs to configure the above setup.
if any one has the document could you please share your knowledge with me.
Thanks in advance
Regards
RajaHere is the link
http://www.oracle.com/technology/obe/obe_as_10g/im/ads_import/import.htm
and
http://download.oracle.com/docs/cd/E10773_01/doc/oim.1014/e10528/odip_actdir.htm#CHDBBAII -
How to install and configure OID using 11g R2 installers
Hi,
I need to install and configure OID, I am having installers of Oracle Identity and Access Management 11g (11.1.2.1.0).
Please let me know how to install and configure OID.
ThanksUse the R1 IDM package. R2 is only for IAM.
-
How to configure ADF application to use OAM Identity Assertion ? web.xml
We have a web application developed using ADF (application development framework) and deployed on WebCenter 11.1.1.2 (weblogic 10.3.2)
OID Authentication and OAM identity assertion is configured in WebLogic 10.3.2 .
How to configure security in ADF application (web.xml or weblogic.xml) so that it uses OAM identity assertion (already configured as authentication providers in weblogic server)
Any pointers or documentation so that application (developed using ADF) check for identity tocken and verifies it with one of identity assertion providers.John,
I have to concur. With OAM you don't need this. OAM intercepts the calls and inserts a cookie for WLS to get user information from.
I strongly advise to go through the above mention OFM Security Guide. Esp. Chapter 10 tells you in every detail how to implement OAM SSO with WLS (with or without OHS as a proxy).
Reading this chapter saves you time and turnarounds on this topic...
--olaf -
How to configure Oracle SSO for forms and apex
Hi All,
I am trying to configure oracle SSO for forms and apex using third party external authentication. Please help me how to configure. I a have tried all possible things
from web but I am not able to do it. Is there any doc or links are much appreciated.
Info: Some reason my oiddas web link is not working it used to work fine before and also the from /pls/orasso/ link I am not able to login may be because of my oiddas issue
ThanksHi Andreas,
Thanks you for your help. I am trying to implement third party external LDAP authentication for APEX and Forms.
So I started with OID and SSO setup to create external Partner Applications. Some reason my oid and sso web login links are not working. I didn't find any errors. I need some help in finding the problem and direction, I already read docs on web but no proper direction. I appreciate your help.
Thanks -
Dear gurus,
I have configured OID 10.1.4.0.1 and MRCA 10.1.4.0.1 on database 10.2.0.3 with Oracle Application Server 10.1.3.3 (HTTP Server and OC4J Server). it went well, i could login into my oid or sso page. then i deployed a simple jar file into OAS 10.1.3.3 and i updated few lines in mod_osso.conf on midtier 10.1.3.3, so it look like this :
==================================================================================================
LoadModule osso_module libexec/mod_osso.so
<IfModule mod_osso.c>
OssoConfigFile /u01/oraias/midtier/Apache/Apache/conf/osso/osso.conf
OssoIpCheck off
OssoIdleTimeout off
# Insert Protected Resources: (see Notes below for how to protect resources)
# Notes
# 1. Here's what you need to add to protect a resource,
# e.g. <ApacheServerRoot>/htdocs/private:
# <Location /private>
# require valid-user
# AuthType Basic
# </Location>
<Location /JABSUAT>
require valid-user
AuthType Basic
</Location>
<Location /HR>
require valid-user
AuthType Basic
</Location>
</IfModule>
# If you would like to have short hostnames redirected to
# fully qualified hostnames to allow clients that need
==================================================================================================
my application faces name is HR, so i called the URL http://devel.sas.co.id:7778/HR/faces/HomeMenu.jspx, the output was sso login page, so i did login with username : orcladmin and password : oracle1 but it turned me error page on browser, it said :
=========================================================
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, [email protected] and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.
=========================================================
and i found that in /u02/oid/Apache/Apache/logs/error_log.1249430400 contains these lines :
[Wed Aug 5 09:13:33 2009] [notice] Accept mutex: fcntl (Default: sysvsem)
[Wed Aug 5 09:13:33 2009] [warn] long lost child came home! (pid 4924)
[Wed Aug 5 09:14:01 2009] [error] [client 172.16.2.14] [ecid: 1249438441:172.16.5.11:5080:0:2,0] File does not exist: /u02/oid/Apache/Apache/htdocs/favicon.ico
[Wed Aug 5 09:14:04 2009] [error] [client 172.16.2.14] [ecid: 1249438444:172.16.5.11:5068:0:3,0] File does not exist: /u02/oid/Apache/Apache/htdocs/favicon.ico
[Wed Aug 5 09:14:24 2009] [error] [client 172.16.2.14] [ecid: 1249438464:172.16.5.11:5093:0:2,0] \n[OSSO] E34: Unable to assure integrity of communication with SSO server.\n
[Wed Aug 5 09:49:36 2009] [error] [client 172.16.2.14] [ecid: 1249440576:172.16.5.11:5074:0:20,0] \n[OSSO] E34: Unable to assure integrity of communication with SSO server.\n
[Wed Aug 5 10:30:01 2009] [error] [client 172.16.2.14] [ecid: 1249443001:172.16.5.11:5096:0:25,0] \n[OSSO] E34: Unable to assure integrity of communication with SSO server.\n
[Wed Aug 5 10:34:13 2009] [error] [client 172.16.2.14] [ecid: 1249443253:172.16.5.11:5102:0:26,0] \n[OSSO] E34: Unable to assure integrity of communication with SSO server.\n
[Wed Aug 5 10:58:58 2009] [error] [client 172.16.2.14] [ecid: 1249444738:172.16.5.11:5093:0:40,0] File does not exist: /u02/oid/Apache/Apache/htdocs/favicon.ico
[Wed Aug 5 10:59:09 2009] [error] [client 172.16.2.14] [ecid: 1249444749:172.16.5.11:5093:0:41,0] \n[OSSO] E34: Unable to assure integrity of communication with SSO server.\n
Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server Server at devel.sas.co.id Port 7782
Note : 172.16.2.14 is my pc and 172.16.5.11 is OID and MRCA's IP, please need your suggestion, Many Thanks.
Regards
Edited by: andes on Aug 4, 2009 9:23 PM
Edited by: andes on Aug 4, 2009 9:28 PMDear gurus,
i have solved my problem, i re-run ssoreg.sh and re-configure mod_osso.conf, now it's working.
Regards -
How to get OIDs of indexes for class-map ?
I have policy-map configured on cisco router with some class-maps inside. I need to draw a graph traffic passing through these classes. To make a graphs I use Cacti which use SNMP query to draw the graphs (object name cbQosObjectsIndex).
How to get OIDs of class-map indexes ?
I tried to do this by following query:
#snmpwalk -c community_string -v 2c 192.168.0.252 1.3.6.1.4.1.9.9.166.1.5.1.1.1
but the answer was:
iso.3.6.1.4.1.9.9.166.1.5.1.1.1 = No Such Object available on this agent at this OID
The information i need is contained at the OID 1.3.6.1.4.1.9.9.166.1.15.1.1.7:
# snmpwalk -c community_string -v 2c 192.168.0.252 1.3.6.1.4.1.9.9.166.1.15.1.1.7
iso.3.6.1.4.1.9.9.166.1.15.1.1.7.1251.1277 = Gauge32: 0
iso.3.6.1.4.1.9.9.166.1.15.1.1.7.1251.13363 = Gauge32: 0
iso.3.6.1.4.1.9.9.166.1.15.1.1.7.1251.13383 = Gauge32: 0
iso.3.6.1.4.1.9.9.166.1.15.1.1.7.1251.13435 = Gauge32: 734000
iso.3.6.1.4.1.9.9.166.1.15.1.1.7.1251.13481 = Gauge32: 233000Because 192.168.0.252 1.3.6.1.4.1.9.9.166.1.5.1.1.1 is marked "non-accessible" according to http://tools.cisco.com/Support/SNMP/do/BrowseOID.do?local=en&translate=Translate&objectInput=cbQosObjectsIndex
You'll need to obtain the indices as explained in this blog post:
http://pierky.wordpress.com/2009/04/09/cisco-class-based-qos-snmp-mib-and-statistics-monitor-for-nms/
Joe wrote a very illustrative post on the subject of snmptables: https://supportforums.cisco.com/message/3051004#3051004
And if your IOS supports it, you would want to configure the following to keep the indices from changing after every reboot or OIR:
"snmp mib persist cbqos" -
Hi
Can anyone provide me the info on how to integrate OID with BPEL?
My requirement is to pick email ids from OID and send emails from BPEL.
Any tutorial or demo would he a great help
Regards
DeepakI am doing that as well but we are really short on time we have delivery date on 1st of August. And our man SOA guy has resigned so i had to take over without its knowledge.
I have a document called Oracle® BPEL Process Manager, shall i read Service Configuration with
Configuring the Identity Service
■ Configuring the Notification Services
■ Configuring the Workflow Service
■ Integrating Oracle BPEL Process Manager with the Oracle Application Server
Service Registry
would that enough?
Pls suggest -
Hi All,
I am new to oc4j. I have configured oid on weblogic and after that on oc4j. But i dont know how to run oid in oc4j. When i shutdown wls_ods1 in weblogic domain,oid doesnt work. So please tell me how to run oid in oc4j and how to check which managed server get deployed in oc4j,like we did in weblogic using "http://localhost:7001". Also whether it is possible to install and configure oid without using weblogic.
Thanks,OC4J is restricted to Application Server 10g only. In FMW11g, OC4J is not used at all.
When managed server wls_ods1 is not up and running, you won't be able to access the Oracle Directory Services Manager. OID itself should be fully functional as it doesn't require any WebLogic components.
You can check the status of the OID 11g components with opmn status -l, e.g.
$ opmnctl status -l
Processes in Instance: asinst_1
---------------------------------+--------------------+---------+----------+------------+----------+-----------+------
ias-component | process-type | pid | status | uid | memused | uptime | ports
---------------------------------+--------------------+---------+----------+------------+----------+-----------+------
ovd1 | OVD | 4889 | Alive | 1094295844 | 1126940 | 1753:10:~ | http:8899,ldaps:7501,ldap:6501
oid1 | oidldapd | 4942 | Alive | 1094295846 | 993124 | 1753:10:~ | N/A
oid1 | oidldapd | 4928 | Alive | 1094295845 | 439772 | 1753:10:~ | N/A
oid1 | oidmon | 4890 | Alive | 1094295843 | 826860 | 1753:10:~ | LDAPS:3131,LDAP:3060
EMAGENT | EMAGENT | 4891 | Alive | 1094295842 | 106096 | 1753:10:~ | N/AAnd you can use the ldapbind utility to check whether you can bind to the OID server :
$ $ORACLE_HOME/bin/ldapbind -h localhost -p 3060 -D "cn=orcladmin" -w welcome1
bind successfulThanks,
EJ -
Hi All
We installed OID and OAS on the same server with 2 different ORACLE_HOME . OID is up and running and I can connect successfully using the OID manager with the same user name and pass but when I try to configure OID with OAS from OAS console then I get the following error "Error occured trying to connect to OID . please verify user/pass host/port"
I verfied every thing . I pinged the host and checked the port and it is 389 and user name pass working great with OID manager . Any idea why I can not connect to OID ? I am using orcladmin as username for OID
Thanks
Message was edited by:
user599647I am having a similar issue. I am unable to run the ldifwrite command b/c is ask for the OID password and the one I'm supplying does not work. How do you reset the oidpassword if you cannot provide the old oidpassword. I'm able to login to the Oracle Directory Manager without an issue using the superuser account(cn=orcladmin), but that password does not work for the OID.
-
Step-by-step: how to install OID
Folks:
Can you please explain me step-by-step of how to install OID. I'm using Oracle DB 10gR1. I can't install AS10gR2 because I can't configure OID.
Thanks a lot.
hewjangHewjang,
if you want to use OID with an existing DB you have to create the metadata repository (within your 10.2 DB) first using repCA,
(see Oracle Application Server Repository Creation Assistant User's Guides
http://download-west.oracle.com/docs/cd/B14099_19/getstart.htm)
then use the AS10gR2 installer to install OID into this existing metadata repository. Check use existing meta data repository during the infrastructure installation.
regards,
--Olaf -
My problem is I cannot figure out HOW to install / configure OID, so that I get past the host / port screen ... there is nothing in my Programs links that indicates anything. The "DIPadmin" won't let me log in ... I am really stuck and really annoyed. Don't even know if I need OID, but can't seem to install OAS10g w/o it.
The installation guide does NOT EVEN HAVE "Internet Directory" IN THE INDEX of a 380 page document ... it devotes a WHOLE CHAPTER to how to set up users ... BUT IT SEEMS TO BE A BIG SECRET as to what the host name and port number should be.
Can ANYONE Clarify this for me??
I am trying to install 10.1.2.0.2 (I do not think I want the BEA weblogic server, at least, not yet). What I want is a server for Forms/Reports 10g, maybe BI, maybe portal ... don't know if I really need a repository. ... and also want to use ApEx via this Apache webserver config, if at all possible (can I put a DBLINK in the metadata repository, to link to the real db? do I want to?)
I will be buy-you-a-beer-at-ODTUG-grateful, if someone could clue me in as to what I am missing.
SuzanneI can see the enormous torment you got in your attempts to install OAS and because of your years of this torture, let me share you some notes here.
Let me try what could be an easy way to have an OAS installation with version 10.1.2.0.2. This will be good for a portal installation. minor changes can lead you to install BI or webcache types.
there is a whole bunch of assumptions and details that are important but they may again give problems for a new person in installing the OAS. so I am skipping them all. this installation will be a simple single system install with both infra and midtier on the same system. you can run the second part of the installation (midtier on another system too which should be connected in the network). but again, first have the simplest piece, then look for sophistication.
i can see that you are working on Windows system.
edit etc/hosts file
please beware; this assumes that you are using a clean system. that means, no other applications are critically relying on your etc/hosts file. and editing this file will not affect their functioning. also, i am assuming that this machine that you have will not be exposed behind your company's firewalls. so even by naming it www.myfirstoas.com, you won't actually be going to this URL on internet.
edit your etc/hosts file as follows, then you should be all set:
xx.x.x.xxx www.myfirstoas.com
give the ip address of your machine in this case;
Now install the Infrastructure first:
These will be the answers of the first few questions asked;
Infra Home: Infra1012
Location: D:\ORACLE\Infra1012
Confirmed that I have administrator privileges on the machine;
-- orcldefaultsubscriber=dc=myfirstoas,dc=com
automatic port assignments
go with the suggested namespace = dc=myfirstoas,dc=com
DB Name: infra.myfirstoas.com
SID : infra
using same password for:
SYS, SYSTEM, SYSMAN, DBSNMP : myfirstoas01
instance name : Infra1012
ias_admin pwd : myoasadmin01
click install
-- that should be all you need to install the Infrastructure 10.1.2.0.2.
now i would advise that you keep writing all installation info in your notes and save it. Also copy and paste the message of successful completion in it, and save it.
now reboot your system.
now install Middletier;
after reboot, rerun the OUI installer:
Midtier Home: Midtier1012
Location: D:\ORACLE\Midtier1012
Confirm that you have administrator privileges on the machine;
-- orcldefaultsubscriber=dc=myfirstoas,dc=com
-- configured with OID on
host : www.myfirstoas.com
port : 389
username: orcladmin
pwd : myoasadmin01 (note that this is the pwd for your ias_admin account for infra)
DB connect string: www.myfirstoas.com:1521:infra.myfirstoas.com:infra.myfirstoas.com
instance name: Midtier1012
ias_admin pwd: oasAdmin02 (i kept the two ias_admin pwds different to highlight that the infra and midtier instances are different)
click install
-- that should be enough to install midtier.
again, always keep all installation info in your notes and save it. Also copy and paste the message of successful completion in it, and save it.
also, always reboot your system after any installation to avoid weird transient problems.
it should all be done in about 3 hours or so.
hope that helps!
AMN -
How to configure oracle listener profile for multiple oracle database
Hi,
I am going to install solution manager system in the same server of ERP EHP4 on Windows. Both DB are oracle.
I'd like to know how to configure listener in this kind of envirnmonent.
a. use two listener and different ports
b. use same listener but different ports
c. use same listener and same port
Which is the correct mothed?
And, after installation, there seem three set of profiles of listten, one for ERP, one for SLM, and the other for OS?(%windir%system32), which one is functional?
Please advise.
Thanks a lot.
Regards,
AlexHi,
standard installation is creating new configs for listener for each instance.
I would recommend to use one listener per each instance.
YOU CAN NOT HAVE one port number for two differnet systems!
If you want to use one listener than you must adapt tnsnames.ora, listener.ora and ensure that both systems will use different port numbers.
For example PORT= 15<system number>
Peter -
How to configure one TREX host with multiple index servers ?
Hi All,
Does anyone know how to configure TREX on the one host,
with multiple index servers ?
Reason for this is to make better use of resources available on the host server(4 Gig, 4 Processor, Windows2003), to improve the search performance of
our KM content for portal users.
I am using TREX 7 and have not been able to do this,
despite reading the Single and Distributed install
documentation.
Any help would be appreciated.
Regards,
AndresHi Andres,
To make use of the RAM a Server provides you have to run two indexserver processes (each can then consume 2 GB);
Proceed like this:
1. Go to TREXdeamon.ini; check if section [indexserver2] is there (it is already provided, but not active in standard installation)
2. In TREXdeamon.ini go to
[daemon]
references sections below
programs=nameserver,preprocessor1,indexserver1,queueserver,alertserver
and add indexserver2 here. Restart TREX; second porcess is then started; can be checked in TREX monitor in Portal as well
3. To distribute existing indexes to the new process, start TREXadmintool and go to Index: Landscape
Go to the last two columns and move the indexes (move master here/secondary mouse click)
If you don't distribute the indexes the new index server process will be regarded when an new index is created.
Hope this helps!
cheers
Bettina -
How to configure request manager service for multiple website in one web application
I have set up sp 2013 as below:
web application : wa1
site collection : sc1
sp site: site1, site2
I used 2 WFE, 1 APP, how can I use request manager service to control site1 to wfe1, site2 to wfe2?
AwenThat's not what i'd describe as load balancing.
A better description would be load-isolation. In your description then if the load on site1 was large (and growing) but site2 was quiet then site1 would struggle and eventually become unable to handle the number of users but site2 would still be ok. That's
fine from a QOS point of view but it's not the norm for load balancing. It would work in simple scenarios but the out of the box load balancing tools are much better suited than that sort of approach.
This article shows how to configure the RMS and may help show how your request is difficult to configure:
http://www.harbar.net/articles/sp2013rm2.aspx
Maybe you are looking for
-
Hello, in our company we use Internet Explorer 8... (i know...) We also have a proxy and 4 DNS servers. Last weekend we suddenly had an issue where internet pages could not be loaded. When we did some testing with Wireshark we saw that it took a long
-
hi all, i have got an issue which the performance of a report is very low. its working fine in DEV ,but going to short dump in testing. there are 'RANGES' used in this report for some primary keys. i think this is the main reaosn for the slow perform
-
MY iPhone 4 after being updated to iOS7 will not download or update any apps. When i press the button on my device to download a new app the loading wheel appears then in a few seconds disappears. I dont get a terms and conditions screen or anything
-
Syncs between the Mac AB and Palm handhelds don't work???
I'm ready to change from Palm Desktop for Mac to Mac PIMs and use Missing Sync to sync. On a Mark/Space (Missing Sync) forum, I noted that people were complaining that they making changes on their Treo to a contact which was not reflected on the Mac
-
Once related to sorting my bookmarks, which does not happen as it did. An alert. TypeError: PlacesUtils.nodellsLivingmark Container is not a function Pops up constantly