Home Learn the Basics View Content Add Content Create Pages Build Portlets Administer Page Groups Administer the Portal Try the Hands-On Exercises
Home
Home
Previous PageGo to page 1 of 8Go to page 2 of 8Go to page 3 of 8Go to page 4 of 8Go to page 5 of 8Go to page 6 of 8Current page 7 of 8Go to page 8 of 8Next Page
 

 

 

 

 

Configuring your "orion-application.xml" and "policy.properties" files

Windows Native Authentication

Next we need to edit the "orion-application.xml" and "policy.properties" files.

In a text editor, open the file:

$ORACLE_HOME/j2ee/OC4J_SECURITY/application-deployments/sso/ orion-application.xml

From the sample file, paste the section that relates to the orion-application.xml file under the opening tag for "orion-application deployment".

In the new section you just pasted into this file we need to make a few edits.

In the "jazn provider="LDAP" tag, put the FQDN value where your OID server is running and the port number it is running on.

Example. Change this:

ldap://directory_server.domain:port"

To read like this:

ldap://aspen.us.oracle.com:3060"

Where "aspen.us.oracle.com" is the FQDN of the server that is running OID and the port number OID is running on.

On the next line we need to set the default realm value.

Change this:

"default_realm_in_Oracle_Internet_Directory">

To look like this:

"us">

Where the value "us" is the default realm for OID. To discover what the default realm value is open the file $ORACLE_HOME/j2ee/home/config/jazn.xml

Whatever value "default-realm" is set to, this is what you need to put in your "default-realm" value in the orion-application.xml file.

Next we need to edit the kerberos-servicename. The value of this should be change from this:

value="HTTP@sso.acme.com"

To this:

value="HTTP@aspen.us.oracle.com"

Where "aspen.us.oracle.com" is the FQDN of the machine that is running the SSO server.

Finally, there may already be another "<jazn provider" tag line in this file. There can be only one. You need to delete this extra"<jazn provider" tag line if it exists.

Save this file and exit the editor

Watch a viewlet to see how its done.

 

In a text editor open the file:

$ORACLE_HOME/sso/conf/policy.properties

In this line we only need to change one thing.

The line that reads:

MediumSecurity_AuthPlugin = oracle.security.sso.server.auth.SSOServerAuth

Needs to be changed to read:

MediumSecurity_AuthPlugin = oracle.security.sso.server.auth.SSOKerbeAuth

Watch a viewlet to see how its done.

Now we need to restart the Oracle Application Server.

From the command prompt type the following commands

# opmnctl stopall

Wait about 1 minute before you start the application server. The OID server processes need this time to complete the shutdown of the OID server.

# opmnctl startall
Oracle Logo Next Page