[Editor: This is the third in a multi-part series from Nirzari Raichura, a senior member of our ATG Certification team, on essential Fusion Middleware concepts and tools for the EBS sysadmin] Oracle Identity Management (OIM) 11gR1 is part of Fusion Middleware 11gR1.   Oracle Identity Management 11gR1 provides the following components as part of its default installation:
Oracle Directory Services Components
  • OID – Oracle Internet Directory
  • DIP –  Oracle Directory Integration Platform
  • OVD – Oracle Virtual Directory
Oracle Identity Federation Components
  • OIF – Oracle Identity Federation
Management Components
  • EM – Enterprise Manager
  • ODSM – Oracle Directory Service Manager
 
oim_architecture.png
In order to use Oracle Identity Management 11gR1 with E-Business suite, you need OID and DIP products at a minimum.  Oracle Identity Management 11gR1 doesn’t contain Oracle Single Sign-on.  You have the choice of either of the following two tools for for authentication: 
  • Oracle Single Sign-On 10gR3
  • Oracle Access Manager 10gR3

Oracle Access Manager 10gR3 is the preferred authentication solution going forward.  However, if you have plans to integrate any other products like Oracle Portal, Forms, Reports or Discoverer with E-Business Suite, you must select the Oracle Single Sign-On 10gR3 option. These products have hard dependencies on Oracle Single Sign-On 10gR3 and cannot be authenticated directly by Oracle Access Manager (you can do so indirectly, but that’s a topic for a future article). If you have already integrated your E-Business Suite environment with Oracle Single Sign-On and Oracle Internet Director 10gR3, you can upgrade Oracle Internet Directory 10gR3 to Oracle Internet Directory 11gR1 (which is part of Oracle Identity Management 11gR1). Your existing integration remains intact after the upgrade.

 

Oracle Identity Management 11gR1 Integration with E-Business Suite using OSSO 10gR3 Unlike Oracle Internet Directory 10g, which is tightly integrated with with Oracle Application Server 10g and and the Oracle database (to store its metadata repository), Oracle Identity Management 11gR1 provides various integration options. 

There is an option to manage it through the Oracle Fusion Middleware management framework by registering it with a local or a remote WebLogic Server administration domain.  You can do this during installation or via the command-line after installation. As I mentioned in my previous blog article, you can also install and configure it without WebLogic Server. In that case, you can manage Oracle Internet Directory using command-line tools and ODSM.

This table describes the components required for Oracle Identity management 11gR1 installation:

fmw_table.png
Useful Tools to administer and manage OIM 11gR1  

OIM11gR1

Tool

Default Value

Oracle Enterprise Manager Fusion Middleware Control

http://host:port/em

Oracle Directory Services Manager (ODSM)

http://host:port/odsm

Oracle WebLogic Server Administrative Console

http://host:port/console/

Command-Line Utilities

OPMN

$ORACLE_INSTANCE/bin/opmnctl

Standard LDAP utilities

ORACLE_HOME/ldap

OIDPASSWD

WebLogic Scripting Tool (wlst)

ORACLE_HOME/common/bin/wlst.sh

OIDCTL For backward compatibility

 

References

Related Articles