Clik here to view.
Exploring OAM’s SAML Identity Assertion
Introduction OAM (Oracle Access Manager) has an interesting feature that often goes unnoticed to a considerable number of people wishing to tackle the problem of identity propagation. It’s OAM’s...
View ArticleClik here to view.
OAM Protected SPAs and Same-Origin Policy
Introduction On a previous post, I described the usage of OAM’s SAML Identity Assertion in the context of SPA (Single Page Applications) and how easy it is to take advantage of it for securely...
View ArticleIdentity and Cloud Security A-Team at Oracle Open World
I just wanted to let everyone know that Kiran and I will be presenting with our good friend John Griffith from Regions Bank at Oracle Open World next week. Our session is Oracle Identity Management...
View ArticleThe importance of “orclguid” in Oracle Virtual Directory
Introduction This post will discuss the steps to configure the orclguid within Oracle Virtual Directory (OVD). It is especially important when integrating OVD with Oracle Access Manager (OAM) and...
View ArticleOverriding default permissions in OAAM Admin Console
OAAM has a predefined set of roles that governs the OAAM Admin Console. There is no “control panel” to add/delete/enable/disable access of different features of OAAM Admin Console to users based on...
View ArticlePart 1: How To Load Test OAM11g using Apache JMeter
Introduction Exciting, it is Go Live day, the system goes online, everything seems ok for a while, and then Kerplunk! Thousands of things could have happened and everyone scrambles to figure it out....
View ArticleA first look at POST data preservation in OAM 11g R2 PS1
Introduction In this post, we have a quick look at POST data preservation, a new feature introduced in the 11g R2 PS1 (or 11.1.2.1) version of Oracle Access Manager. We’ll explain the problem that this...
View ArticleOAAM Admin Console Dashboard Update Frequency
There are three sections in the dashboard in OAAM Admin Console. The refresh time in section 1 and section 2 shown above can be configured by selecting the appropriate duration from the dropbox. There...
View ArticleWebgate Reverse Proxy Farm
Introduction Some of our larger deployments are seeing the benefits of centralizing their Webgate deployments onto a server farm. This post discusses some of the architecture and recommendation when...
View ArticleOAAM OTP code generation configuration
OAAM refers to the following properties for the One Time Password code generation bharosa.uio.default.otp.generate.code.length = 5 bharosa.uio.default.otp.generate.code.characters = 1234567890 The...
View ArticleHow to (correctly) make manual edits to oam-config.xml
Introduction Occasionally, it is necessary to make changes to OAM 11g configuration by directly updating the oam-config,xml file, rather than using the OAM console. In this post, we describe the...
View ArticleOAM WebGate connections through firewalls
Introduction In this post, we investigate a complication that can occur if you require a firewall between your WebGate agents and your OAM 11g servers within your deployment topology. We provide some...
View ArticleOAM LDAP connections through firewalls
Introduction In a previous post, we discussed some of the complications that can occur when a firewall is placed between WebGates and OAM Servers in a typical deployment. This post follows on from that...
View ArticleMulti-Data Center Implemenation in Oracle Access Manager
For obvious reasons, there is a high demand for Multi-Data Center (MDC) topology; which is now supported in Oracle Access Manager (OAM) 11g. This post discusses some of the features of MDC as well as...
View ArticleOracle Access Manager – What’s new in PS2
Introduction Oracle Access Manager 11gR2 – PS2 is now out! This post will cover some of the new features in PS2. There are six new features I will discuss: Dynamic Authentication Persistent Login...
View ArticleStrategies for managing OAAM to OAM connections in production
Many Oracle Access Management 11g customers opt to deploy a combination of Oracle Access Manager and Oracle Adaptive Access Manager using the Advanced Integration option. This combination of product...
View ArticlePart 2: Advanced Apache JMeter Stress Testing OAM and LDAP
Introduction In “Part 1: How To Load Test OAM11g using Apache JMeter” I talked about an example plan that could be used to load test OAM11g, which included some common configuration elements, some...
View ArticlePresenting the new IDM Deployment Wizard
Introduction With the recent IDM 11gR2PS2 release Oracle has developed a new deployment tool that aims to automate and reduce the time required to install and configure Oracle Identity and Access...
View ArticleHow To Display A Custom Error Page When the Access Server Is Down?
I have been asked several times over the years if there is a way to customize the following error message a User is presented in their Internet browser when the WebGate fails to contact any of the...
View ArticleIdentity Propagation from OAG to REST APIs protected by OWSM
Introduction This post describes the necessary configuration for propagating an end user identity from OAG (Oracle API Gateway) to REST APIs protected by OWSM (Oracle Web Services Manager). The...
View Article