Showing posts with label Integration. Show all posts
Showing posts with label Integration. Show all posts

Friday, June 10, 2016

Highlights of OAM PS3 Integration with EBS 12.2 for Single Sign-On

Hello Readers

Here are some highlights of EBS 12.2 SSO integration with OAM 11gR2 PS3.

  1. Oracle Guide for this integration is 1576425.1
  2. EBS 12.2 is pre-packaged with Oracle WebLogic Server 10.3.6 and WebTier 11g. WebTier 11g is 11.1.1.9. 
  3. In EBS 12.2 OAM SSO integration, the need of separate WebLogic server for Access Gate and separate OHS for webgate setup has been eliminated.
  4. OAM PS3 OHS webgate needs OHS to be atleast 11.1.1.9. In case if WebTier in EBS environment is less than that version, upgrade it to 11.1.1.9 for SSO to work.
  5. OAM PS3 has be patched atleast BP03.
  6. EBS comes with 3 automation scripts for configuring required artifacts for this SSO integration.
    • This script installs webgate. 
      • txkrun.pl -script=SetOAMReg -installWebgate=yes -webgatestagedir=/u90/webgate
    • This script deploys AccessGate
      • perl $AD_TOP/patch/115/bin/adProvisionEBS.pl -ebscreate=oaea_resources -contextfile=$CONTEXT_FILE  -deployApps=accessgate -SSOServerURL=<<OAM_Managed_Server_URL>> -managedsrvname=oaea_server1  -managedsrvport=6803 -logfile=/tmp/deployeag.log
    • This script registers EBS with OAM and will also modify webgate for EBS logout URLs automatically
      • txkrun.pl -script=SetOAMReg -registeroam=yes
         7. Verify the WebGate is working first by testing http://<<ohs_host:port>>/index.html
         8.  Ensure that respective OAM Authorization policy is returning orclguid in responses. You can also test                  this by protecting cgi script in OHS directory.

Posted by 1 comment:
Labels: , , , ,

Friday, September 25, 2015

How to integrate OBIEE with OAM

OBIEE Integration with Oracle Access Manager

Demo:

Quick Demo is HERE

Prerequisites

1. Install and Configure Oracle Access Manager. Steps here
2. Install and configure OBIEE. Steps here.
3. Install and configure LDAP. Steps here
4. Install Webserver/Webgate and register webgate with Oracle Access Manager. 

Integration Steps:

1. Configure reverse proxy for OBIEE applications. In my case I am using OHS as proxy server and i have OHS webgate on top of it. 

   
2. Create required OBIEE Groups in LDAP.


3. Login to Weblogic admin console and navigate to Security realm > my realm > providers.
    Create two new providers (LDAP provider and OAM Asserter) as per the below screen shot 









4. Reorder the providers as per the below screen shot. and Restart weblogic Admin server and Managed servers.


5. Login to the http://<hostname>:<port>/em. 
6. Navigate to Weblogic domain> bifoundation_domain> Security> Security provider configuration.
7. Scroll down to Single sign on provider and click on Configure.
8. Configure as per below screen shot.


9. Login to http://<hostname>:<port>/analytics.
10. Navigate to Administration> Manage BI Publisher> Security Configuration.
11. In Authentication section do the changes as per the below screen shot.


12. Login to http://<hostname>:<port>/em
13. Click on coreapplication under Business Inteligence.
14. Perform the changes as per the below screen shot. and click on Apply and click on Activate changes.


15. Login to workspace http://<hostname>:<port>/workspace.
16. Go to Navigate> Administer> Workspace Settings> Server Settings.
17. Modify Log off URL and select Yes in Enable Single Sign on as per the below screen shot.


18. Restart Weblogic Admin server and Managed Servers.
19. Now try to access the application with proxy URL. User will get OAM login page for Authentication.

http://dev.kiran.com:7777/analytics









Hope this is helpful. 

Thanks
Kiran Pokuri
Posted by 4 comments:
Labels: , , , , , , ,

Tuesday, July 7, 2015

OAM 11GR2PS3 SAML 2.0 Integration with Dropbox

OAM 11GR2PS3 SAML 2.0 Integration with Dropbox



  • Login to the Dropbox with Admin Account. 
  • Click on Admin Console in left side panel.

  • Create users in members as below screen shot.

  • Click on authentication link and enable SSO settings.

  • Dropbox will only accept .pem file as certificates. Create signing certificate as .pem file and load in Drop box SSO settings.
  • Create New partner in Federation and give Provider ID and Assertion Consumer URL as "https://www.dropbox.com/saml_login"



  • Access the Dropbox with below URL "http://<oam_host>:<oam_port>/oamfed/idp/initiatesso?providerid=Dropbox"

  • Provide ID and Password in OAM login page. 

  • Click on continue.

  • Dropbox Home page.


Kiran Pokuri

Posted by No comments:
Labels: , , , ,
Subscribe to: Posts (Atom)