Section 9.5 – Oracle B32100-01 User Manual

Page 165

Advertising
background image

Installing an OracleAS Cluster (Identity Management) Configuration

Installing in High Availability Environments: OracleAS Cluster (Identity Management)

9-7

HTTP Load Balancer: Port

: Enter the port number that the HTTP virtual server listens

on. This will be the value of the Port directive in the httpd.conf file.
Enable SSL

: Select this option.

Note that in this configuration, the load balancer must have SSL acceleration
capabilities, or you must add a separate SSL Accelerator. The conversion from HTTPS
to HTTP happens before Oracle HTTP Server receives the request. The SSL accelerator
must be properly configured prior to installation. The installer does not check for this.

The installer will change the following lines:

In opmn.xml, the installer sets the ssl-enabled line in the Oracle HTTP Server
section to true.

In httpd.conf, the installer adds the following lines:

LoadModule certheaders_module libexec/mod_certheaders.so

SimulateHttps on

Example

9.5 Installing an OracleAS Cluster (Identity Management) Configuration

In this configuration, you need an existing database that is already running in a
configuration supported by the OracleAS RepCA. Oracle recommends running the
database in a high availability environment, such as a Real Application Clusters
database. You also need additional nodes (at least two nodes) to run Oracle Identity
Management components. In this configuration, Oracle Internet Directory, OracleAS
Single Sign-On, and Oracle Delegated Administration Services run on each node. If
you want to distribute these components, see

Section 9.6, "Installing a Distributed

OracleAS Cluster (Identity Management) Configuration"

.

These nodes are accessed through a load balancer. See

Figure 9–1

.

You install the OracleAS Metadata Repository in your existing database, then install
Oracle Identity Management components against this database.

Oracle Directory Integration Platform Is Started on the First Node Only

The installer starts Oracle Directory Integration Platform only on the first node, even
though you selected it on subsequent nodes as well. On subsequent nodes, the
installer configures Oracle Directory Integration Platform, but does not start it.

If You Want Oracle Internet Directory to Listen on SSL Ports Only

If you want Oracle Internet Directory to listen on SSL ports only, perform this
configuration after you have installed Oracle Identity Management. You need Oracle

Table 9–3

Example for Case 3

Values in Screen

Resulting Values in Configuration Files

HTTP Listener: Port: 9000

Enable SSL: Unchecked

HTTP Load Balancer: Port: 443

Enable SSL: Checked

In httpd.conf:

Port 443

Listen 9000

In ssl.conf:

Port <default port number assigned by installer>

Listen <default port number assigned by installer>

Advertising
Popular Brands
Popular manuals