Identity Manager


Integrating Oracle Identity manager 11g ps3 with CA siteminder R12


Dear All, We are trying to achieve the CA Siteminder R12 integration with OIM11g which is running on a solaris 11 sparc 64 bit architecture. The reference guide for implementation from both CA and Oracle is given below. We have also achieved this OIM11g PS2. The current architecture having some difference than the POC, now we have 2 weblogic servers. One as admin and another as managed server.The flow we are trying establish is sso to identity console /identity and /console. So expected flow is below,  Oracle general guide: https://docs.oracle.com/cd/E27559_01/admin.1112/e27149/ssoint.htm#OMADM5013 Oracle doc id: 1318938.1 CA guide which is general to weblogic level integration: https://support.ca.com/cadocs/0/CA%20SiteMinder%20Agent%20for%20WebLogic%20r12%20SP2-ENU/Bookshelf_Files/PDF/SMWebLogicA… 1) User request going to OHS server where weblogic proxy plug-in configured2) Siteminder webagent on OHS intercept, redirect to siteminder, created a Siteminder session3) OHS proxy plug-in resend the user to respected weblogic managed server:port with sm session.4) CA Application agent intercept the request, trigger the CA identity asserter and authentication provider, validate the user.5) User landed to respected /sysadmin or /identity URL.The above approach is breaking when we are going with 2 web-logic servers. CA has confirmed that we need 2 weblogic application agent, one for admin server which load the CA Identity assert-er and authentication provider, also protect the resource on the weblogic admin server. The other CA application agent on the weblogic managed server, which suppose to protect the resource on the weblogic managed servers ( example, oim resource like /identity and /sysadmin). But we are able to observe that the CA application agent on the managed server is not monitoring any of the OIM urls. We need some help on this.In order to answer our query, CA has installed a hello-word application on their weblogic managed server and able to see that its not protecting the URL by default. So they have specifically written a URL protection for achieving that. Please find the blog below. https://communities.ca.com/docs/DOC-231163795 So my query is,what exactly I may need to perform on the weblogic managed server to protect the oim urls which are /sysadmin and /identity Also some understanding on web.xml and weblogic.xml, is web.xml only part of a web application deployment?

Related Links

Approvals
OID Compatibility with LDAP v3
OIM: How to use permissions
Problem in OIM installation
OAMCM upgrade to 10.1.4.2.0
Send Emial - Approval Process
Problem opening Oracle Access Manager Identity Server Console
Urgent!!!!!! Unable to create Association in OAMCM
Provisioning OIM user using OIM APIS
OVD - ERROR - PluginManager: Could not instantiate plugin : InetAD [main]
Error updating Process Form: Same Column exist with a different variant
self registration - Request for An Account --- EXCEPTION
Self Registration Approval Details Error
custom lookup in form
Error ldapadd Users
Problem in updating First Name in AD from OIM

Categories

ORACLE DEV
Oracle Applications
Database Security
E-Business Suite Archi...
Oracle Application Exp...
Collaboration Suite Ar...
SCM - Process Manufact...
PL/SQL XML Programming
Oracle Database Archiv...
SOA & Process Manageme...
Integration - General
RDF Semantic Graph
Berkeley DB High Avail...
Content Database
Installation>MS Window...
XML Gateway (Korean)
Field Service
SCM - Asset Lifecycle ...
Developer Tools & APIs
ServerStats
SOA Governance
bea.education.weblogic...
weblogic.developer.int...
weblogic.developer.int...
jrockit.developer.inte...
aqualogic.bpm.general
Retail Data Model
版务
WebLogic Server - WebA...
PeopleSoft OVM Templates
Java Advanced Imaging ...
Server & Storage Syste...
Java EE SDK
Sun ONE Unified Develo...
ONE Application Server 6
Oracle Net (SQL*Net、Ne...
Oracle JDeveloper (Jap...
ミドルウェア
他のミドルウェア製品
JavaFX 2.0 and Later
Sun SPOT
Module Extension (Korean)
Architecture - General...
Topliners
Node.js
Code It
Eloqua10 Update Group
E10
Eloqua for Non-Profit
Web Technology Newsletter
Modern Marketing Exper...
#Java20
APAC Oracle Marketing ...
Process Manufacturing
Java SE Snapshots: Pro...
NetBeans
Coming Soon - Oracle A...
OpenStack for Oracle S...
Oracle Linux Networking
OTN at Oracle OpenWorld
JavaScript - Nashorn
Oracle Cloud Developer...
Uruguay
Trade Promotions
APEX Gruppe
Java Microservices
Oracle Insurance Polic...
Cúpula Virtual de Tecn...
Eloqua Benelux User Group
Ecuador
Application Developmen...
C++ Call Interface (OCCI)
Berkeley DB
产品
엔터프라이즈 관리자 ((Korean))
Customer Hub
Administration
Oracle VM Server for x86
中国移动Oracle技术论坛注册
tuxedo.general
User Productivity Kit ...
Transportation Management
Duke's Choice Awards

Resources

Encrypt Message



code
soft
python
ios
c
html
jquery
cloud
mobile