Documente Academic
Documente Profesional
Documente Cultură
Prerequisites
• The user synchronization between Demantra and Oracle Identity Management / Oracle Virtual Directory
(OID/OVD) is an implementer task
• Ensure that an instance of the Oracle HTTP server was installed by the Oracle Identity Management
Suite 11g or Webcenter 11g. If not, download and install Oracle Webcenter 11g where the OAM11g is
installed.
1. Configure a new Oracle HTTP Server (OHS) instance specifically to protect the Demantra
WebLogic server. For more information about configuring a new OHS component, please
follow the steps in topic "2.3.4.3 Configuring Your Components:
Oracle® Fusion Middleware Installation Guide for Oracle Web Tier 11g Release 11.1.1,
Part Number E14260-03
7. To ensure that the global logout work properly, please use the following steps:
In the Demantra webgate profile, make sure the following parameters are set
----------------------------------------
Logout URL = /logout
Logout Target URL = <NULL>
------------------------------------------
Doc References :
Please follow: Logout Does Not Actually Log The User Out When User Originally Logged Into Demantra Via
OAM (My Oracle Support Doc ID 1907936.1)
• Add the following lines in the web.xml file or if there is already an authentication
method specified, then change it to CLIENT-CERT.
<login-config>
<auth-method>CLIENT-CERT</auth-method>
</login-config>
• Click on the Provider specific tab and give the values as mentioned below
SSO Header Name : OAM_REMOTE_USER
Access Gate Name: <name of the webgate created in step 4>
Access Gate Password: <password given for webgate created during step 4>
if no password is given and leave this field blank
Primary Access server: <oam_server_hostname:listen_port>
Secondary Access server: <provide details if you have secondary access server>
Note: Leave other fields to their defaults if you are not sure about their usage
• Come back to the list of Providers page and click the reorder button. Order the providers
in the below given order and also verify the control flag settings
/<demantra_context_url>/** HTTP Protected Protected
Resource Policy Resource Policy
• Save the changes and Click on “Release Configuration” button. Restart the server.
If you want to keep the resources prefixed with the context URL of the Demantra
application, then remove the default entry and add the below given resources to the
protected resource policy.
Administrator Login:
http://SERVER_URL/b2b/common/prelogin.jsp?loginTo=3&redirectUrl=12&loginUrl=0&source=0&component
=COMPONENT_ID&componentowner=1
Regular Login:
http://SERVER_URL/b2b/common/prelogin.jsp?
redirectUrl=13&loginUrl=1&source=0&component=COMPONENT_ID&componentowner=1
Workflow Login:
http://SERVER_URL/b2b/common/prelogin.jsp?loginTo=4&redirectUrl=18&loginUrl=9&source=0&component
=COMPONENT_ID&componentowner=1
The above links needs to be added to customer home page as a hyper link Or can use the links directly from
browser.
The parameter component (dm,sop,etc) needs to be changed accordingly in the above links.
15. To test that you have successfully configured SSO for Demantra, login to your Demantra
Collaborator Workbench/Workflow Manager/Admin Login/User management Login page,
using the links provided in point number: 14. You will be redirected to OAM login. Once
you have provided the OAM login credentials, you will be taken to the respective page
without any user/password prompts.