Components of Identity Management

HI,
We are planning to go with the Installation of Identity Management which is a part of Fusion Applications. So I would like to know what are the components that arise as part of Identity Management Installation and what would be the hardware requirement for the Installation of the Identity Management.
Regards,
CV

For hardware and all kinds of requirement refer certification matrix:
http://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xls
This is for Oracle identity management. Its major components include:
- Oracle database
- Java 1.6
- Weblogic server
- Oracle identity manager
- SOA server
- Repository creation utility
regards,
GP

Similar Messages

Configuring Identity Management Components - Error in starting opmn server

Hello,
I have a VM, which is being administered by VMware Lab Manager. The VM is running RHEL 5.1, and has an Oracle 11g database installed.
I am in the process of trying to install and configure Oracle Internet Directory 11g. To do this, I ran the Oracle Fusion Middleware 11g Oracle Identity Management Installer. I selected the "Install Software - Do Not Configure" installation type, and chose to "Configure without a Domain" in order to avoid having to install and administer a WebLogic domain. I set "/data1/u01/app/oracle/product/11.1.1" as the Oracle Middleware Home, and "Oracle_IDM1" as the Oracle Home Directory. (To simplify things below, let ORACLE_IDM_HOME refer to the /data1/u01/app/oracle/product/11.1.1/Oracle_IDM1" directory... understand that no environment variable exists with this name though.) The installation routine ran successfully.
But, I ran into a problem while trying to configure the Oracle Identity Management 11g components. I ran the Oracle Identity Management 11g Release 1 Configuration Wizard (ORACLE_IDM_HOME/bin/config.sh). Here are some of the key configuration values that I entered:
- Oracle Instance Location: /data1/u01/config/oracle/as_admin/asinst_1
- Oracle Instance Name: asinst_1
- Select Domain: Configure without a Domain
- Configure Components: Oracle Internet Directory
- Configure Ports: Auto Port Configuration
- Specify Schema Database: Create Schema
After entering my configuration values and hitting the Configure button, the configuration process started running. Shortly thereafter, under Bootstrap Domain Configuration, "Failed" appeared next to the "Create ASInstance" line, with the following error listed:
{code}
Error creating ASInstance asinst_1
Cause: An internal operation has failed: Error in starting opmn server
Operation aborted because of a system call failure or internal error
{code}
In case it would be helpful, here is the output from the error log for the Oracle Identity Management 11g Configuration Wizard:
{code}
oracle.as.provisioning.util.ConfigException:
Error creating ASInstance asinst_1.
Cause:
An internal operation has failed: Error in starting opmn server
Operation aborted because of a system call failure or internal error
Action:
See logs for more details.
at oracle.as.provisioning.util.ConfigException.createConfigException(ConfigException.java:123)
at oracle.as.provisioning.fmwadmin.ASInstanceProv._createInstance(ASInstanceProv.java:306)
at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstance(ASInstanceProv.java:163)
at
oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstanceAndComponents(ASInstanceProv.java:114)
at
oracle.as.provisioning.engine.WorkFlowExecutor._createASInstancesAndComponents(WorkFlowExecutor.java:533)
at
oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:437)
at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:870)
at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:824)
at oracle.as.idm.install.config.BootstrapConfigManager.doExecute(BootstrapConfigManager.java:1256)
at
oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
at
oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
at
oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
at
oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
at
oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
at
oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
at
oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:82)
at java.lang.Thread.run(Thread.java:619)
Caused by: oracle.as.management.opmn.optic.OpticException: Error in starting opmn server
Operation aborted because of a system call failure or internal error
at oracle.as.management.opmn.optic.OpmnAdmin.executeCommand(OpmnAdmin.java:255)
at oracle.as.management.opmn.optic.OpmnAdmin.startOpmnServer(OpmnAdmin.java:87)
at oracle.as.provisioning.fmwadmin.ASInstanceProv._createInstance(ASInstanceProv.java:251)
... 16 more
{code}
To get more information, I tried to manually start the opmn server (I set ORACLE_INSTANCE to "/data1/u01/config/oracle/as_admin/asinst_1" and then ran "./opmnctl start" from the ORACLE_IDM_HOME/opmn/bin directory). As expected, the server failed to start. But, I checked the opmn.out file (in the ORACLE_INSTANCE/diagnostics/logs/OPMN/opmn directory), and found the following error repeated several times:
{code}
OPMN worker process exited with status 8b. Restarting.
OPMN worker process exited with status 8b. Restarting.
OPMN worker process terminated with signal 11 7 times in 10 seconds -- aborting!
{code}
Does anyone know what this error means? I am at a loss as to what to do at this point, so any help would be greatly appreciated.
Thank you!

h1. UPDATE:
I just needed internet access to download the sysstat and compat-db packages, once installed I disconnected from the internet and re-run the installation, once again, it went fine without problems and opmn and OID are up and running. Also, I enabled the firewall which was disabled during the first installation.
Here is the list of packages needed as pre-requisites:
gcc-4.1.0-28.4, gcc-c++-4.1.0-28-4, setarch-1.6-1, libstdc++-4.1.0, libstdc++-devel-4.1.0, compat-libstdc++-2.96, control-center-2.8.0, glibc-common-2.3.4-2.9, binutils-2.16.91, make-3.80 on top of sysstat-5.0.5-1 and compat-db-4.1.25-9.
There are 3 configuration files for opmn: instance.properties, opmn.xml and ports.prop..... and for OID: component-logs.xml
h2. instance.properties:
#These properties are generally used as default values for arguments not specified on the command line. When an argument is provided on the command line, the corresponding property is overwritten in this file.
#Tue Aug 18 19:58:35 MDT 2009
oracleHome=/home/oracle/bea_default/Oracle_IDM1
registered=falseh2. opmn.xml:
<?xml version = '1.0' encoding = 'UTF-8'?>
<opmn xmlns="http://www.oracle.com/ias-instance">
 <log comp="internal;ons;pm" rotation-size="1500000"/>
 <debug comp="" rotation-size="1500000"/>
 <notification-server interface="any">
 <port local="6700" remote="6701"/>
 <ssl enabled="true" wallet-file="/home/oracle/as_admin/asinst_1/config/OPMN/opmn/wallet"/>
 </notification-server>
 <process-manager>
 <process-modules>
 <module path="$ORACLE_HOME/opmn/lib/libopmnohs">
 <module-id id="OHS2"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmncustom">
 <module-id id="CUSTOM"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnoid">
 <module-id id="OID"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnbi">
 <module-id id="BIServer"/>
 <module-id id="BIScheduler"/>
 <module-id id="BIPresentationServices"/>
 <module-id id="BIClusterController"/>
 <module-id id="BIJavaHost"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnovd">
 <module-id id="OVD"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnwc">
 <module-id id="WebCache"/>
 <module-id id="WebCache-admin"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnreports">
 <module-id id="ReportsServices"/>
 <module-id id="ReportsBridgeServices"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmndisco">
 <module-id id="Disco_ServicesStatus"/>
 <module-id id="Disco_SessionServer"/>
 <module-id id="Disco_PreferenceServer"/>
 </module>
 <module path="$ORACLE_HOME/opmn/lib/libopmnemagent">
 <module-id id="EMAGENT"/>
 </module>
 </process-modules>
 <ias-instance id="asinst_1" name="asinst_1">
 <environment>
 <variable id="TEMP" value="/tmp"/>
 <variable id="TMP" value="/tmp"/>
 </environment>
 <ias-component id="EMAGENT">
<process-type id="EMAGENT" module-id="EMAGENT">
 <process-set id="EMAGENT" numprocs="1">
 <ping interval="0"/>
 </process-set>
</process-type>
</ias-component><ias-component id="oid1" type="OID">
<process-type id="oidmon" module-id="OID">
 <process-set id="OID" numprocs="1">
 <environment>
 <variable id="TNS_ADMIN" value="/home/oracle/as_admin/asinst_1/config"/>
 <variable id="DB_CONNECT_STR" value="OIDDB"/>
 </environment>
 <module-data>
 <category id="oidmon-parameters">
 <data id="start-cmdline-opts" value="connect=$DB_CONNECT_STR opmnuid=true start"/>
 <data id="stop-cmdline-opts" value="connect=$DB_CONNECT_STR opmnuid=true stop"/>
 </category>
 </module-data>
 </process-set>
</process-type>
<process-type id="oidldapd" status="phantom">
 <process-set id="oidldapd" status="phantom" numprocs="2"/>
</process-type>
</ias-component></ias-instance>
 <rmd-definitions>
 
 <rmd name="AuditLoader" interval="315360000">
 <conditional>
 ({time}>=00:00)
 </conditional>
 
 
 <action value="exec $ORACLE_HOME/jdk/bin/java -classpath $ORACLE_HOME/modules/oracle.osdt_11.1.1/osdt_cert.jar$:$ORACLE_HOME/modules/oracle.osdt_11.1.1/osdt_core.jar$:$ORACLE_HOME/jdbc/lib/ojdbc5.jar$:$ORACLE_HOME/modules/oracle.iau_11.1.1/fmw_audit.jar$:$ORACLE_HOME/modules/oracle.pki_11.1.1/oraclepki.jar -Doracle.home=$ORACLE_HOME -Doracle.instance=$ORACLE_INSTANCE -Dauditloader.jdbcString=jdbc:oracle:thin:@%host%:%port%:%sid% -Dauditloader.username=%username% oracle.security.audit.ajl.loader.StandaloneAuditLoader" timeout="60"/>
 <exception value="exec /bin/echo PERIODICAL CALL FOR Audit Loader FAILED"/>
 </rmd>
 </rmd-definitions>
 <launch-targets>
 <launch-target id="logquery">
 <exec path="$ORACLE_HOME/jdk/bin/java"/>
 <argument value="-classpath"/>
 <argument value="$ORACLE_HOME/modules/oracle.odl_11.1.1/ojdl.jar$:$ORACLE_HOME/modules/oracle.odl_11.1.1/ojdl2.jar"/>
 <argument value="-Djava.encoding=utf-8"/>
 <argument value="oracle.as.management.logging.tools.LogQuery"/>
 <argument value="-i"/>
 <argument value="$ORACLE_INSTANCE"/>
 </launch-target>
 </launch-targets>
 </process-manager>
</opmn>h2. ports.prop:
#Tue Aug 18 19:58:35 MDT 2009
/opmn/remote_port=6701
/oid1/asinst_1_nonSSLPort=3060
/oid1/asinst_1_SSLPort=3131
/opmn/local_port=6700
/EMAGENT/emd-port=5162h2. component-logs.xml
<?xml version = '1.0' encoding = 'UTF-8'?>
<logs xmlns="http://www.oracle.com/iAS/EMComponent/ojdl">
<log path="diagnostics/logs/OID/oid1/oidldapd%NUM%s%PID%-0000.log" componentId="OID">
<logreader class="oracle.core.ojdl.reader.ODLTextLogReaderFactory">
 <property name="FilenameFormat" value="oidldapd%NUM%s%PID%-{0}.log"/>
 <property name="FileRotation" value="circular"/>
 <property name="ComponentId" value="OID"/>
</logreader>
</log>
<log path="diagnostics/logs/OID/oid1/oidmon-0000.log" componentId="OID">
<logreader class="oracle.core.ojdl.reader.ODLTextLogReaderFactory">
 <property name="FilenameFormat" value="oidmon-{0}.log"/>
 <property name="FileRotation" value="circular"/>
 <property name="ComponentId" value="OID"/>
</logreader>
</log>
<log path="diagnostics/logs/OID/oid1/oidrepld00-0000.log" componentId="OID">
<logreader class="oracle.core.ojdl.reader.ODLTextLogReaderFactory">
 <property name="FilenameFormat" value="oidrepld00-{0}.log"/>
 <property name="FileRotation" value="circular"/>
 <property name="ComponentId" value="OID"/>
</logreader>
</log>
</logs>

Confusion with a current state of Oracle Identity Management

I would like to know if anyone has successfully implemented the complete suite of IdM. If yes, please share this experience. I want to clarify the definition of "successful integration". It should include the following:
- SSO for Partner applications
- SSO for External (third parties) applications
- Provisioning and Synchronization
- Delegated Administration
- WNA with Kerberos
- SAML implementation (optional)
I would appreciate all answers on this subject

To restart from your initial question, it's quite strange because the components you mention are all included in the AS10g Enterprise Edition or in AS10g Portal, and are perfectly integrated. I know numerous customers which use Oracle Portal, for instance, and leverage on SSO (patner or external), Delegated Administration (DAS) , Synchro with AD server and Windows native authentication, without a single line of specific code. Provisioning is done automatically by DIP in the case of Portal with AD, as well, or with a Human resource system. Even the password synchro can be made betwwen AD and OID (Oracle LDAP)
Now, it's a sligthy different discussion if we consider the recent acquisitions made by Oracle, and which are sold in the so call : Oracle Identity management 10g.
OAM (previously Oblix) is a more ambitious product that Oracle SSO.
OIM (provisioning and identity management) is far more sophisticated than Oracle DIP.
The goal, for Oracle, is to unify the workflow engine and the Human interface (with ADF). This task is probably on the rails for the next year.
OVD (previously OctetSting) is an architectural component which allow virtualisation of LDAP server.
About Federation, OIF allow all existing Oracle Portal customer (using SSO) to rely on SAML tokens in order to trust partners site.
So, in my opinion, acquisitions oblige to make a substantial effort to unify human interface and make arbitration between some concepts, but it's within the Oracle means.

Help needed in installing Identity management 11.1.1.2

Hi,
I have installed Oracle Webcenter and SOA suite (11g) in single domain and also installed and conten server 10.1.3.4. All in a single machine. And I want to provide LDAP Identity store for custom applications/Spaces application with content management. I am in the process installing Identity management. I have the following issues
1. Do I need to install all the 5 components of Identity suite?
2. Due to performance reasons I want to install Idm suite on different machine. Can the webcenter application on machine1 be configured to use the identity services from machine2 ,consideing i created a new domain on machine2 that contains it identity servers with its own admin console/Fusion control?
installation guide contains lot of options which i could not understand .Please help me in this regard.
Thansk,
indra

resolved

Error in "Identity Management" in NW04s SPS09

Hello SDN,
I have installed NW04s SPS09 with all released patches for the SAP NW Portal.
When trying to use the user management administration area "Identity Management" I get the following error message. May anyone of you please help?
Thanks and best regards,
Olaf Reiss
Error Message:
java.lang.NoSuchMethodError: com.sap.tc.webdynpro.clientserver.portal.pb.IResponseResult.getPortalEventsArray()[Lcom/sap/tc/webdynpro/services/event/AbstractPortalEvent;
 at com.sap.portal.pb.PageBuilder.updateApplications(PageBuilder.java:1317)
 at com.sap.portal.pb.PageBuilder.createPage(PageBuilder.java:354)
 at com.sap.portal.pb.PageBuilder.init(PageBuilder.java:552)
 at com.sap.portal.pb.PageBuilder.wdDoInit(PageBuilder.java:191)
 at com.sap.portal.pb.wdp.InternalPageBuilder.wdDoInit(InternalPageBuilder.java:150)
 at com.sap.tc.webdynpro.progmodel.generation.DelegatingComponent.doInit(DelegatingComponent.java:108)
 at com.sap.tc.webdynpro.progmodel.controller.Controller.initController(Controller.java:215)
 at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
 at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.init(ClientComponent.java:429)
 at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.init(ClientApplication.java:362)
 at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.initApplication(ApplicationSession.java:700)
 at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:269)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:711)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:665)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:232)
 at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:152)
 at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
 at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doPost(DispatcherServlet.java:53)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
 at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
 at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
 at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
 at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
 at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
 at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
 at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
 at java.security.AccessController.doPrivileged(Native Method)
 at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
 at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)

Hi Guys,
I have done an EP - XSS Implementation.
We have configured UME in the system, Present Patch level is 13.
We are facing similar problem with one Key user id in the system,
Error Summary
While processing the current request, an exception occured which could not be handled by the application or the framework.
If the information contained on this page doesn't help you to find and correct the cause of the problem, please contact your system administrator. To facilitate analysis of the problem, keep a copy of this error page. Hint: Most browsers allow to select all content, copy it and then paste it into an empty document (e.g. email or simple text file

Correction Hints
The currently executed application, or one of the components it depends on, has been compiled against class file versions that are different from the ones that are available at runtime.
If the exception message indicates, that the modified class is part of the Web Dynpro Runtime (package com.sap.tc.webdynpro.*) then the running Web Dynpro Runtime is of a version that is not compatible with the Web Dynpro Designtime (Developer Studio or Component Build Server) which has been used to build + compile the application.
Detailed Exception Chain
java.lang.NoSuchMethodError: com.sap.tc.webdynpro.services.sal.url.api.WDURLGenerator.isSecureURL(Ljava/lang/String;)Z
 at com.sap.security.core.wd.maintainuser.MaintainUserComp.copyModelToContextUser(MaintainUserComp.java:3114)
 at com.sap.security.core.wd.maintainuser.MaintainUserComp.getAllUserDetails(MaintainUserComp.java:299)
 at com.sap.security.core.wd.maintainuser.wdp.InternalMaintainUserComp.getAllUserDetails(InternalMaintainUserComp.java:665)
 at com.sap.security.core.wd.maintainuser.ReadonlyDetailInterfaceView.onPlugDefault(ReadonlyDetailInterfaceView.java:93)
 at com.sap.security.core.wd.maintainuser.wdp.InternalReadonlyDetailInterfaceView.wdInvokeEventHandler(InternalReadonlyDetailInterfaceView.java:105)
 at com.sap.tc.webdynpro.progmodel.generation.DelegatingInterfaceView.invokeEventHandler(DelegatingInterfaceView.java:85)
 at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.navigate(ClientApplication.java:826)
 at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.navigate(ClientComponent.java:873)
 at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doNavigation(WindowPhaseModel.java:498)
 at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:144)
 at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:335)
 at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:143)
 at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:299)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:711)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:665)
 at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:232)
 at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:152)
 at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
 at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doPost(DispatcherServlet.java:53)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
 at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
 at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
 at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
 at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
 at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
 at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
 at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
 at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
 at java.security.AccessController.doPrivileged(Native Method)
 at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
 at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
With the Solution trail, if we apply patch level 9 the solution is implemented, we are on patch level 13.
Kindly assist for a solution.
Siddhartha Gupte
+91 9833888910

Getting started with identity management . . .

. . . at least I think that's what I'm asking about.
I've worked quite a number of years in the Oracle database world, but this is really my first foray into Fusion Middleware, or Identity Management, or whatever I'm looking for is called.
We are looking at tightening our user security by tying our database usernames/logons to Active Directory.   The immediate issue is that we have various people connecting to the db with each other's credentials. I know this is at least partly a management issue, but the people doing the sharing are themselves managers. And for the most part I don't think they even realize they are sharing credentials. I think most of it comes from sharing Excel spreadsheets with external data connections to the Oracle database, and their credentials are hard-coded into the connection definition. So when Bob gives a copy of a spreadsheet to Carol, he doesn't even know his personal credentials are built in and that when Carol uses her copy of the sheet, she is connecting with his credentials.
What we'd like to do is tie their database credentials to their network credentials.    At this point I'm not knowledgeable enough to know if that inherently means single-sign-on something short of that. And at this point I'm not sure I care about that distinction, but I at least want to keep the distinction visible.
Since my "home" is the database forums, I've asked around there and been given some links to various docs and MOS notes, pointing back to more docs. Mostly simply under the umbrella of 'you need to use Fusion Middleware'. which is why I am coming to this forum.   It is quickly reaching a point of "you've got to understand it all before you can understand any of it". In other words, I'm not finding a good starting point to get any traction.
Currently I'm trying to get my head around "Oracle Fusion Middleware Installation Guide for Oracle Identity Management" and still getting lost in all of the different components.
When I go to look at downloading software to try (Oracle Fusion Middleware 11g Software Downloads) , it looks like what I want is Identity Management, but I'm not sure if I've even followed the correct trail to get to that point.
When I go to the online store to get an idea of what actual product we will need to purchase (https://shop.oracle.com/pls/ostore/f?p=dstore:2:0::NO:RIR,RP,2:PROD_HIER_ID:4509956172801805720011), again, I'm not sure which product I should be looking at, or if I've even followed the correct trail to get to that point.
I'm not sure how the version numbers work and how they relate (if it matters) to the database version numbers. FWIW, my databsaes are all Standard Edition 11.2.0.4, with some on Linux and one prod/test pair on Windows. We are looking at moving to 12.1 in the next 12 to 18 months.
I know this is all rather vague, but at this point I don't even know enough to ask a more focused, intelligent question. I'm hoping someone can see what I'm after and help be get on the right track -- and cut through the forest of Fusion Middleware stuff that I don't need to be concerned with.

Hello Ed
Oracle EUS is basically what you need at this point. It enables you to address administrative and security challenges for enterprise database users. Enterprise User Security (EUS) relies on Oracle Identity Management infrastructure, which in turn uses an LDAP-compliant directory service to centrally store and manage users. The components you will need are mainly OID and/or OVD depending on your use case
Here is an excellent online doc explaining the EUS integrations
http://www.nyoug.org/Presentations/2011/December/Moulton-Sullivan_Centralize_Oracle_Database.pdf
Here's some more reading on EUS from Oracle
http://docs.oracle.com/cd/B28359_01/network.111/b28528/concepts.htm#DBIMI152
Regards Shiva

Identity management postinst.sh

Hi,
We are installing the NW Identity management server. when we are installing the Runtime components, the file postinst.sh is not getting created.
Could you please suggest what are steps to be followed to create the file.
Thanks.
Jena.

Hello,
I have the same problem.
What I did according to an old documentation (workaround):
created a group sapadm
created an user idmadm
I changed the ownership of the installed folders and files sapadm.idmadm.
Edited by: Gergely Kalydi on May 30, 2011 1:31 PM
Edited by: Gergely Kalydi on May 30, 2011 1:43 PM

Identity Management for UNIX (aka Windows Services for Unix) Adding 2012 DC to a prep'd 2003 domain.

We have been successfully using Windows Services for Unix on a 2003 domain for passwd and group maps.
I prep'd the domain to allow a 2012 R2 server to be added and then added the IdMU role/feature on this new 2012R2 DC. Now the passwd map is still OK but the group map now shows full usernames rather than short names.
i.e. what DID show with "ypcat group" as ...
"infra-shared::65550:gfer,jhug,shig", now shows as
"infra-shared::65550:Garry Ferguson,Jason Hughes,Steve Higgins"
and so is not usable. I have had to revert to local /etc/group files on all our unix machines!!
Help/comments would be really appreciated!
Garry Ferguson

Hi Gaz Ferg,
SFU 3.5 is used to installed on windows 2003 and windows XP. SFU 3.5 cannot used on Windows 2012, that makes customer cannot user NFS and user name Mapping services on Windows
2012. From windows 2003 R2, NFS is a build-in component in OS, we need to add Roles/Features to use NFS.
1. What is change in 2012R2
IDMU component, which was used to authenticate Linux users has been removed. Now a Windows server cannot play role of NIS Master server.
Passwords cannot sync to the Unix Machines. Maps can not sync between Windows and Unix computers.
2. What has not change in 2012R2
Following methods to authenticate and map a Unix user to Window user are available:-
Active Directory
Active Directory Lightweight Directory Services (AD LDS)
Username Mapping Protocol store (MS-UNMP
Local passwd and group files
Unmapped UNIX Username Access (UUUA) (applies to Server for NFS using AUTH_SYS only)
You can find more information about this here –
http://blogs.technet.com/b/filecab/archive/2012/10/09/nfs-identity-mapping-in-windows-server-2012.aspx
http://blogs.msdn.com/b/shan/archive/2006/12/13/sfu-sua-idmu-fun-with-names.aspx
More information:
Install Identity Management for UNIX Components
http://technet.microsoft.com/en-us/library/cc731178.aspx
I’m glad to be of help to you!
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place.

Oracle Identity Manager Configuration Error

Versions I have used for the Installation:
Software Version
Oracle Database 11.2.0
Repository Creation Utility 11.1.1.5.0
Web logic 10.3.6
SOA Suite 11.1.1.6.0
Fusion Middle ware Installer 11.1.1.5.0
JDK Oracle Web-logic JRockit JDK or Sun JDK 1.6.0_29
Error : Config Action Oracle Identity Manager Configuration failed
Exception waring occurs in web logic Server :
<Aug 14, 2012 11:57:53 AM GMT+05:30> <Notice> <WebLogicServer> <BEA-000360> <Ser
ver started in RUNNING mode>
<Aug 14, 2012 12:03:49 PM GMT+05:30> <Warning> <Management> <BEA-141239> <The no
n-dynamic attribute AuthenticationProviders on weblogic.management.security.Real
mMBeanImpl@581c390c([OIDM]/SecurityConfiguration[OIDM]/Realms[myrealm]) has been
changed. This may require redeploying or rebooting configured entities>
<Aug 14, 2012 12:03:49 PM GMT+05:30> <Warning> <Management> <BEA-141238> <A non-
dynamic change has been made which affects the server AdminServer. This server m
ust be rebooted in order to consume this change.>
<Aug 14, 2012 12:03:49 PM GMT+05:30> <Warning> <Management> <BEA-141239> <The no
n-dynamic attribute ControlFlag on weblogic.security.providers.authentication.De
faultAuthenticatorMBeanImpl@80d076be([OIDM]/SecurityConfiguration[OIDM]/Realms[m
yrealm]/AuthenticationProviders[DefaultAuthenticator]) has been changed. This ma
y require redeploying or rebooting configured entities>
<Aug 14, 2012 12:03:49 PM GMT+05:30> <Warning> <Management> <BEA-141238> <A non-
dynamic change has been made which affects the server AdminServer. This server m
ust be rebooted in order to consume this change.>
Please give me a solution to resolve the issue

Each version has its won libraries and certain bug fixes. It's always good to see certification matrix first for any software and proceed with installation as per certified components. Also, vendor support your project only if you are using their certified versions. :)
regards,
GP

Identity Management Installation Error

I have installed the following components on a Windows 2003 Server:
RCU: ofm_rcu_win_11.1.1.2.0_disk1_1of1.zip (ran and installed ODS and OIF schemas)
WLS: oepe111130_wls1032_win32.exe
IDM: ofm_idm_win_11.1.1.2.0_32_disk1_1of1.zip
The initial IDM setup completes, including the post install scripts and patches. The Bootstrap Domain Configuration also completes successfully. However, during the “Configure Oracle Identity Management Components” phase, in the configuration stage, the second step (“Start Oracle Internet Directory”) fails with the following error:
2010-01-04T10:10:06.469-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 Start of create component
2010-01-04T10:10:06.485-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 Action for the oid1 is START
2010-01-04T10:10:06.485-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 Trying to start the component oid1
2010-01-04T10:10:06.734-05:00 as WARNING oracle.as.config tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 Failed to start component oid1
oracle.as.config.ProvisionException: HTTP status code = 400 : No processes or applications match the specified configuration.
     at oracle.as.config.impl.OracleASComponentBaseImpl.manageProcess(OracleASComponentBaseImpl.java:942)
     at oracle.as.config.impl.OracleASComponentBaseImpl.start(OracleASComponentBaseImpl.java:1061)
     at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:153)
     at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:73)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv._createComponent(ASInstanceProv.java:401)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv.createComponent(ASInstanceProv.java:358)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstanceAndComponents(ASInstanceProv.java:136)
     at oracle.as.provisioning.engine.WorkFlowExecutor._createASInstancesAndComponents(WorkFlowExecutor.java:525)
     at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:441)
     at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
     at oracle.as.idm.install.config.IdMDirectoryServicesManager.doExecute(IdMDirectoryServicesManager.java:938)
     at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
     at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
     at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
     at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
     at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
     at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
     at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
     at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
     at java.lang.Thread.run(Thread.java:619)
2010-01-04T10:10:06.734-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 Status of component false
2010-01-04T10:10:06.734-05:00 as ERROR oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0
oracle.as.config.ProvisionException: Failed to start the component
     at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:157)
     at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:73)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv._createComponent(ASInstanceProv.java:401)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv.createComponent(ASInstanceProv.java:358)
     at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstanceAndComponents(ASInstanceProv.java:136)
     at oracle.as.provisioning.engine.WorkFlowExecutor._createASInstancesAndComponents(WorkFlowExecutor.java:525)
     at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:441)
     at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
     at oracle.as.idm.install.config.IdMDirectoryServicesManager.doExecute(IdMDirectoryServicesManager.java:938)
     at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
     at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
     at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
     at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
     at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
     at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
     at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
     at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
     at java.lang.Thread.run(Thread.java:619)
2010-01-04T10:10:06.734-05:00 as TRACE:16 oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: IdMProvisioningEventListener SRC_METHOD: onConfigurationError ENTRY 6e1df6c3-e800-4d71-b95d-d7d653f5a2b2
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError ________________________________________________________________________________
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError OOB IDM CONFIG EVENT onConfigurationError -> configGUID 6e1df6c3-e800-4d71-b95d-d7d653f5a2b2
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError OOB IDM CONFIG EVENT ErrorID: 35076
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError OOB IDM CONFIG EVENT Description:
Error creating ASComponent oid1.
Cause:
An internal operation has failed: Failed to start the component
Action:
See logs for more details.
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError ________________________________________________________________________________
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError OOB IDM CONFIG EVENT onConfigurationError -> eventResponse ==oracle.as.provisioning.engine.ConfigEventResponse@135e112
2010-01-04T10:10:06.734-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 OOB IDM CONFIG EVENT onConfigurationError -> Configuration Status: -1
2010-01-04T10:10:06.734-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 OOB IDM CONFIG EVENT onConfigurationError -> Asking User for RETRY or ABORT
2010-01-04T10:10:06.734-05:00 as NOTIFICATION oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 OOB IDM CONFIG EVENT onConfigurationError -> ActionStep:OID_START
2010-01-04T10:10:06.734-05:00 as TRACE oracle.as.provisioning tid: 20 ecid: 0000INtpdhdCwksMwiAhMG1BGVdL00000A,0 SRC_CLASS: oracle.as.idm.install.config.event.IdMProvisionEventListener SRC_METHOD: onConfigurationError OOB IDM CONFIG EVENT onConfigurationError -> wait for User Input ....
Any suggestions?
Regards,
Tom

Hello,
I have got the same problem, i am installing the same version of components you enumerated but on linux Red Hat Enterprise 5.3 x86_64.
My log says:
Trying to start the component oid1
[2010-02-24T16:42:52.258+01:00] [as] [WARNING] [] [oracle.as.config] [tid: 37] [ecid: 0000IS0Y3e8E0VYjLpyGOA1BXJK800000S,0] Failed to start component oid1[[
oracle.as.config.ProvisionException: HTTP status code = 400 : No processes or applications match the specified configuration.
at oracle.as.config.impl.OracleASComponentBaseImpl.manageProcess(OracleASComponentBaseImpl.java:942)
at oracle.as.config.impl.OracleASComponentBaseImpl.start(OracleASComponentBaseImpl.java:1061)
at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:153)
at oracle.as.provisioning.fmwadmin.ASComponentProv.createComponent(ASComponentProv.java:73)
at oracle.as.provisioning.fmwadmin.ASInstanceProv._createComponent(ASInstanceProv.java:401)
at oracle.as.provisioning.fmwadmin.ASInstanceProv.createComponent(ASInstanceProv.java:364)
at oracle.as.provisioning.fmwadmin.ASInstanceProv.createInstanceAndComponents(ASInstanceProv.java:136)
at oracle.as.provisioning.engine.WorkFlowExecutor._createASInstancesAndComponents(WorkFlowExecutor.java:525)
at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:441)
at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
at oracle.as.idm.install.config.IdMDirectoryServicesManager.doExecute(IdMDirectoryServicesManager.java:938)
at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
at java.lang.Thread.run(Thread.java:619)
So, basically it is the same error. Any conclusions by now what could be the problem? Of course there's no such thing as c or d drive in unix-like system;)
Best regards,
JK

Federated identity management on SAP IDM

Hi Guys
Does SAP IDM support federated Identity Management. If so can you give some configuration documents or how exactly it is possible?.
Please shed some lights into this.
Thank you.

Hi All,
SAP support have confirmed the following.
SAP NetWeaver has some federation capabilities with varying
support in different components (SAML 1.1) SAML 2 support
is planned in a future release.
SAP NetWeaver Identity Management does not have federation
support on its own. This could be introduced in future releases.
Does Any one know how SAML 1.1 support Federation capabilities? Which all sap netweaver platforms have them?

Architecture for Identity Management

I have to install the sun identity management platform and configure it.
Is there a recommended architecture for the installation of components in high availability?
Thanks in advance

There is some advice in the documents. I'd look through the Installation Guide and the Deployment Guide.
At a very high-level, to achieve high-availability, you want to make both the REPO (data tier) layer highly available and make the Application tier (e.g. IdM in an App Server) highly-available.
There are many questions you have to ask yourself in doing this. Are you making the solution highly-available against the loss of a Data Center, the loss of a Server or some thing else entirely. This also plays into how you want to size the servers.
Net -- I'd poke through the documents to educate yourself, but would engage someone who has "been there, done that" a few times to make sure you're approaching it correctly and such that you can make simple adjustments in the future based on load predictions.
Good Luck!

Identity Management Prod Setup

Hi All,
I wanted to design a production architecture for Identity Mgmt setup using latest 11g middleware with implementation of products OID,OAM,OIM .
I am going through all the available documentation but Can somebody help me in understanding the below:
1)Can I place all the application components under the same middleware home (OID,SOA,OIM,Weggate,Access Gate) i,e three to four oracle_homes for OH_IDM1 , OH_IDM2, OH_Web, OH_SOA and configure web logic domains for all of them under the same middleware home . What is the ideal case for a prod configuration
2) Is Installation of Webtier Utilities / Access Gates a mandatory thing for Identity Management Setup
2)Can I use a common database for all metadata schemas (OID,OAM,OIM etc...) . I understood I can but is it an ideal prod configuration
The general assumption is one host for database and another for application but having so many products here, I am looking for helpful suggestions for an efficient desgin .
Your help is greatly appreciated.

Hi All,
I wanted to design a production architecture for Identity Mgmt setup using latest 11g middleware with implementation of products OID,OAM,OIM .
I am going through all the available documentation but Can somebody help me in understanding the below:
1)Can I place all the application components under the same middleware home (OID,SOA,OIM,Weggate,Access Gate) i,e three to four oracle_homes for OH_IDM1 , OH_IDM2, OH_Web, OH_SOA and configure web logic domains for all of them under the same middleware home . What is the ideal case for a prod configuration
2) Is Installation of Webtier Utilities / Access Gates a mandatory thing for Identity Management Setup
2)Can I use a common database for all metadata schemas (OID,OAM,OIM etc...) . I understood I can but is it an ideal prod configuration
The general assumption is one host for database and another for application but having so many products here, I am looking for helpful suggestions for an efficient desgin .
Your help is greatly appreciated.

Identity Management configuration - Data link shows 2 IBM OLE DB Provider DB2

I'm configure a new Identity Manager configuration; working through the steps from MMC: SAP NW Identity Manager (right click) > New > Identity Center configuration. At the popup .. Connection String (...) the popup shows 2 IBM OLE DB Provider. I selected one and successfully with "Test Connection'; then followed the rest of the prompted screens. At the end, MMC was created but with error message " The Identity Center was unable to determine the type of database you are using. It will not possible to use Identity Center"
In the "Version Info" tab it shows "Detected DB - Unknown"
This on Windows 2008 server, IdM 7.2 and DB2 database v 10.5
Any help is gratefully appreciated.
Phuon

Hi Matt,
Thank you for your advise. Correction my environment, NW 7.31 AS Java and DB2 database is on Linux server. The Windows server runs other IdM components (Designtime, Runtime, VDS ..).
We have IDM 7.2 SP7.
The DB2 config look okay. Another thing that after IDM database was created; we overlay-ed the IC_DB on Linux (target system) with a working IC_DB database from another (source) system and adapted the table IC_OPER.MC_GLOBAL_VARIABLES to fit with our target system.
Thank you again.
Phuon
Update:
After verified the DB2 Server/Client configuration settings are correct according to Matt provided doc-link. we're still experiencing the same error.
Un-install IDM and Re-install IDM that did not help either.
Final Update:
After exhaustive checked and verification; I uninstalled IDM on Windows, cleanup all IDM directories and started from scratch. I also made sure that my id on Windows server has full administrator rights, JVM and Paths correctly set.
The re-installed completed clean and MMC configuration for IDM was successful.
Thank you all.
Phuon

URGENT: Does ALBPM support RadiantOne Identity Management?

Hi Expert,
Please help to answer this question.
1. Does ALBPM support RadiantOne Identity Management?
2. What is the standard protocol to configure to RadiantOne?
3. Any documentation on Identity Management Configuration?
Thanks

Hi All,
SAP support have confirmed the following.
SAP NetWeaver has some federation capabilities with varying
support in different components (SAML 1.1) SAML 2 support
is planned in a future release.
SAP NetWeaver Identity Management does not have federation
support on its own. This could be introduced in future releases.
Does Any one know how SAML 1.1 support Federation capabilities? Which all sap netweaver platforms have them?

Components of Identity Management

Similar Messages

Maybe you are looking for