Sunday 4 October 2015

Configuring OAM WebGate On OHS 12c

 

In last blog I discussed on installation of IDM 11.1.2.3.0 http://shrikworld.blogspot.in/2015/10/install-idm-111230-on-windows.html. Today I’ll go through the steps of configuring WebGate on OHS 12c .

Before get started find the certification matrix and glance through , https://www.google.co.in/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0CBwQFjAAahUKEwiso8ys0qjIAhWHj44KHU7rC10&url=http%3A%2F%2Fwww.oracle.com%2Ftechnetwork%2Fmiddleware%2Fid-mgmt%2Fdocumentation%2Fidentity-access-111230certmatrix-2539086.xlsx&usg=AFQjCNFZeqnxjd92TXI3GCZJ3ib8Zh40Hg&sig2=02zhQRh1Zt7oJIAR1R1mVw&bvm=bv.104317490,d.c2E.

You need to download only Oracle HTTP Server 12.1.3 from http://www.oracle.com/technetwork/middleware/webtier/downloads/index-jsp-156711.html location, NO separate WebGate installation is required as it get install along with web server.

Create a new Webtier middleware home.While installing Oracle HTTP server you need to choose one of the below 2 options,

1. Colocated HTTP Server (Managed through WebLogic server) : here Weblogic server with EMconsole extension will be installed, you can manage OHS instances from EM.

2. Standalone HTTP Server (Managed independently of WebLogic server) : Here only OHS instance and node manager will be installed.

Second options is preferred as it has less memory footprint.Once installation is done go to ORACLE_HOME\oracle_common\common\bin and start config.cmd to configure domain.select Oracle HTTP Server (Standalone) - 12.1.2.0 [ohs] and on configure node manager screen give credentials. Rest are default and complete the installation of OHS.

In my case ORACLE_HOME is C:\shrik\Apps\IDM\WebTier , to start the OHS go to C:\shrik\Apps\IDM\WebTier\user_projects\domains\wt_domain\bin and run startNodeManager.cmd.Then in separate command prompt run startComponent.cmd like startComponent ohs1 , it will prompt for nodemanager passsword like below,

image

Once done type http://localhost:7777/ and you should see OHS landing page.

As I mentioned earlier WebGate comes with OHS12c module and to configure the same follow http://docs.oracle.com/middleware/1212/webtier/WTINS/webgate.htm#WTINS1003. But I’m highlighting the commands for convenience.

To deploy WegGate,

deployWebGateInstance -w C:\shrik\Apps\IDM\WebTier\user_projects\domains\wt_domain\config\fmwconfig\components\OHS\ohs1 -oh C:\shrik\Apps\IDM\WebTier

Set the environment like set PATH=%PATH%;C:\shrik\Apps\IDM\WebTier\webgate\ohs\lib;C:\shrik\Apps\IDM\WebTier\bin

Run the EditHttpConf command by EditHttpConf -w C:\shrik\Apps\IDM\WebTier\user_projects\domains\wt_domain\config\fmwconfig\components\OHS\ohs1

Then the next step is WebGate registration ,to do that go to C:\shrik\Apps\IDM\middleware\iam_home\oam\server\rreg directory of IDM home.We’ll going to do in-band registration, under input folder you’ll get OAM11GRequest.xml template file .

Open the same and edit accordingly, like in my case

image

Then from RREG directory run \bin\oamreg.bat inband input\OAM11GRequest.xml .

image

Now go to the output folder RREG_OAM11G directory and copy cwallet.sso & ObAccessClient.xml files to C:\shrik\Apps\IDM\WebTier\user_projects\domains\wt_domain\config\fmwconfig\components\OHS\ohs1\webgate\config directory of webtier home.

Restart the ohs component and try to access http://localhost:7777/  , you will be redirected to OAM SSO login page.

You can verify the agent details from OAM console as well.

 

 

 

Saturday 3 October 2015

Install IDM 11.1.2.3.0 on Windows

 

Hello friends , today I will discuss on installing Identity Management Suite on windows 8.1 or 10 laptop , this is only for development and own RnD purpose or if you want to  show some quick demo to client , might be useful. 8GB memory is must to get started else I wouldn’t recommend you to go ahead. So guys , here are high level steps..

1. Get Installers

You can get the latest IDM suite 11.1.2.3.0 from http://www.oracle.com/technetwork/middleware/id-mgmt/downloads/oid-11gr2-2104316.html. Download Oracle Identity and Access Management 11g (11.1.2.3.0) & Oracle Fusion Middleware Repository Creation Utility 11g (11.1.1.9.0). For database download latest one 12c R1 from http://www.oracle.com/technetwork/database/enterprise-edition/downloads/index.html. Download JDK 7 (64 bit) from http://www.oracle.com/technetwork/java/javase/downloads/java-archive-downloads-javase7-521261.html. Download generic Weblogic 10.3.6 from http://www.oracle.com/technetwork/middleware/weblogic/downloads/wls-main-097127.html.

2. Configuring Database

Install DB12R1 , don’t select container option and make sure AL32UTF8 character set selected, Once done we need to tune couple of parameters to run the same on low memory footprint.

Enable Oracle Database XA

Connect with sys and run @$ORACLE_HOME/javavm/install/initxa.sql & $ORACLE_HOME/rdbms/admin/xaview.sql.  This will prevent “XATRANS Views are not installed on this Database. This is required by the OIM Schema” error while running the RCU.

Tune memory

Run below commands , obviously values are of your choice though change in sga size and pga_aggregate_target is NOT mandatory.

alter system set sga_size=900M scope=spfile;
alter system set pga_aggregate_target=180M scope=spfile;
alter system set shared_pool_size=150M;
alter system set OPEN_CURSORS=900;

Alternatively you can run CREATE PFILE='C:\shrik\Apps\DB\product\12.1.0\dbhome_1\NETWORK\ADMIN\pfile.ora' FROM SPFILE;  Give your location and then edit the pfile and run create SPFILE from PFILE='C:\shrik\Apps\DB\product\12.1.0\dbhome_1\NETWORK\ADMIN\pfile.ora';

Below are the requirements basically,

show parameters PROCESSES (should be more 300)
show parameters NLS_LENGTH_SEMANTICS  (should be BYTE)
show parameters SHARED_POOL_SIZE (should be more 147456KB)
show parameters SGA_MAX_SIZE (should be more 147456KB)
show parameters DB_BLOCK_SIZE (is greater than or equal to 8KB)
show parameters OPEN_CURSORS (should be more 800)

3. Install Java

install JDK , you can skip JRE installation.’'

4.Install Weblogic

While installing weblogic create a new middleware home. Select installation type custom and de-select coherence and evaluation database.

5.Install IAM

Select the same middleware home you created earlier and complete the installation.

6.Create a new Domain

Create a OAM or IDM domain by selecting config.cmd from  <Middleware_Home>\oracle_common\common\bin directory. After completion of the same go to setDomainEnv.cmd fle of your domain.

At first line you should see set COMMON_COMPONENTS_HOME=C:\shrik\Apps\IDM\middleware\oracle_common , note down the path.

Search for set JAVA_OPTIONS=%JAVA_OPTIONS% and change/add to                                                               set JAVA_OPTIONS=%JAVA_OPTIONS% -DDISABLE_CONFIG_ENTITY=true like below,

image

7.Create DB Security store for the Domain

This step is important , go to C:/shrik/Apps/IDM/middleware/iam_home/common/tools/configureSecurityStore.py change the directory accordingly, and edit the file configureSecurityStore.py.                                         Locate the line rcu_common_path = os.path.abspath(os.path.join(os.environ["COMMON_COMPONENTS_HOME"],"jlib","rcucommon.jar")). Replace the same with                                                                                                                               rcu_common_path = os.path.abspath(os.path.join("C:/shrik/Apps/IDM/middleware/oracle_common","jlib","rcucommon.jar"))

Here we are replacing COMMON_COMPONENTS_HOME mentioned in setDomainEnv.cmd file with value, this step require for Windows 8.1 or 10, else you will get below error while running configureSecurityStore.py.

Failed to get environment, environ will be empty: (0, 'Failed to execute command ([\'sh\', \'-c\', \'env\']): java.io.IOException: Cannot run program "sh": CreateProcess error=2, The system cannot find the file specified')
Problem invoking WLST - Traceback (innermost last):
  File "C:\shrik\Apps\IDM\middleware\iam_home\common\tools\configureSecurityStore.py", line 42, in ?
  File "C:\shrik\Apps\IDM\MIDDLE~1\wls_home\common\wlst\modules\jython-modules.jar\Lib/javaos$py.class", line 256, in __getitem__
  File "C:\shrik\Apps\IDM\MIDDLE~1\wls_home\common\wlst\modules\jython-modules.jar\Lib/UserDict$py.class", line 14, in __getitem__
  File "C:\shrik\Apps\IDM\MIDDLE~1\wls_home\common\wlst\modules\jython-modules.jar\Lib/javaos$py.class", line 256, in __getitem__
  File "C:\shrik\Apps\IDM\MIDDLE~1\wls_home\common\wlst\modules\jython-modules.jar\Lib/UserDict$py.class", line 14, in __getitem__
KeyError: COMMON_COMPONENTS_HOME

Then go to C:\shrik\Apps\IDM\middleware\oracle_common\common\bin directory and run                                                 wlst C:/shrik/Apps/IDM/middleware/iam_home/common/tools/configureSecurityStore.py -v -d C:/shrik/Apps/IDM/middleware/user_projects/domains/oam_domain -c IAM -m create -p welcome1

Change the directory accordingly and the output of that should be successful, you can validate the same by                     wlst C:/shrik/Apps/IDM/middleware/iam_home/common/tools/configureSecurityStore.py -v -d C:/shrik/Apps/IDM/middleware/user_projects/domains/oam_domain -m validate   

If you still get the above error , compile and run below java file in your windows system ,

public class OpertingSystemInfo
{
    public static void main(String[] args)
    {
        // The key for getting operating system name
        String name = "os.name";       
        // The key for getting operating system version
        String version = "os.version";       
        // The key for getting operating system architecture
        String architecture = "os.arch";
       
        System.out.println("Name: " + System.getProperty(name));
        System.out.println("Version: " + System.getProperty(version));
        System.out.println("Architecture: " + System.getProperty(architecture));
    }
}

Note the output of os.name and go to C:\shrik\Apps\IDM\middleware\wls_home\common\wlst\modules directory.

Open the jython-modules.jar in 7 Zip and locate javashell.py file within that.

Search for and edit os.name accordingly (in my case I added Windows 8.1 manually)

_osTypeMap = (
      ( "nt", ( 'nt', 'Windows NT', 'Windows NT 4.0', 'WindowsNT',
                'Windows 2000', 'Windows 2003', 'Windows XP', 'Windows CE',
                'Windows Vista', 'Windows Server 2008', 'Windows 7', 'Windows 8.1' )),
      ( "dos", ( 'dos', 'Windows 95', 'Windows 98', 'Windows ME' )),
      ( "mac", ( 'mac', 'MacOS', 'Darwin' )),
      ( "None", ( 'None', )),
      )

Save and update the Jar and try to run configureSecurityStore.py again.

8. Start WLS

Start the weblogic server and oam_server1 & oam_policy_mgr1 managed server.

imageNow you should able to access OAM console ,

image 

Hope this help you installing IDM at local laptop.