Showing posts with label Deploy OAM11g R2PS2 Webgate on IIS7.5 Windows 2008. Show all posts
Showing posts with label Deploy OAM11g R2PS2 Webgate on IIS7.5 Windows 2008. Show all posts

Thursday, 11 December 2014

Configuring DCC Webgate 11g with IIS7.5 on Windows 2008 R2

 Pre-requisites:

  1. IIS Server Role is already added: In case not follow Configure IIS Server Role
  2. IIS Site is created: 
    1. IIS Site Global Configuration IIS
    2. New Site Creation
  3. IIS R2PS2 Webgate is installed & configured with the IIS Sites: Configure IIS R2PS2 Webgate 11g

Let's start the process:

  • Open OAM Console : http://host:port/oamconsole
  •  Create Webgate Agent Profile:
    • We need to create 2 profiles: One is the resource webgate profile & other is DCC webgate profile.
  •  Create Resource Webgate Profile: rwg-9090
Note: I have configured my OAM Server in Simple Mode, that's why security mode is chosen as 'simple'.
  • Create DCC Webgate Profile: dcc-9091
Note: Once you have created  the profile, to make it DCC we need to tick the detached credential collector flag.
    • Once done the change, click apply to reflect the changes.
  •  Now we need to add resources to with the DCC profile just created:
    • We need to add a few excluded resources, so that no authentication/authorization is made for them.
    •  Select the dcc-9091 profile:
    •  Let's create excluded resource:

    •  We have created following excluded resources:
      • /favicon.ico
      • /oamsso-bin/login.pl
      • /oamsso/** - Note this is an additional resource to be excluded as for IIS this needs to be excluded. Other wise for other servers it is not required.
  •  Now we need to create a DCC Authentication Scheme: This scheme will be used by resource webgate & dcc webgate both.



  • Now we need to attach the both created authn scheme with the profiles:





  •  You can see that i have created 2 IIS sites & webgate is already configured with both of them.
  • Now copy the artifacts to the webgate instance directory in the respective resource & dcc webgate sites.
    • In our setup: we have rwg-9090 for resource webgate & dcc-9091 for dcc webgate.
  • Once done, restart the IIS Server: using the command 'iisreset'. 
  • Now access the protected resource webgate url:
          http://host:9090/welcome.html
    • Did you noticed you get this login page, having url as http://host:9091/oamsso-bin/login.pl
    • This is the challenge url that we have mentioned in the dcc authn scheme.
    • With DCC webgate in picture, the oam server ip port is mot visible to the end user, that's why it is a detached credential collector. It has detached the credential collection process from the OAM Server.
    • Now it is the DCC which creates OAP/NAP connections with OAM Server.


This end's the DCC Webgate Configuration with IIS 7.5/8.5 on Windows 2008 R2.

Enjoy :-)

Saturday, 23 August 2014

Deploy OAM11g R2PS2 Webgate on IIS7.5 Windows 2008

Installing Webgate On IIS7.5 Windows Server 2008R2 


1)      Download the Webgate 11g R2PS2 for Windows.
2)      Extract the webgate.zip.
3)      Go to Disk1 folder present under webgate folder.
4)      Copy the path & open command prompt.
a.       Change your directory to the path copied above.
5)      Now execute the setup.exe followed by jre location

                  o   It will start the installation process.



6)      Now follow the steps:



  o   Press Next


       ·         Skip Software Updates


       ·         Perquisite Checks – Proceed Next



       ·         Installation Location: Provide the installation directory location.


       
         ·        Installation Summary: Proceed Next to start the Installation


       
         ·         Installation Started:





              
   
         ·         Installation Completed:




So we are done with the Webgate Installation... Now let's proceed to Configuration Phase.. :-)


Configure Webgate with IIS7.5 

1)      Go to the Webgate Home Directory ->

a.       It is the location where we have install the webgate.

 For Eg: Our WG Home Location
C:\oracle\product\11.1.1\as_3

b.      Go to the deployWebgate folder present under
C:\oracle\product\11.1.1\as_3\webgate\iis\tools\deployWebGate

c.       Execute deployWebGateInstance.bat script




You can see the arguments passed to the script (self-explanatory)


d.      Now we need to execute ConfigureIISWebGate.bat present under
C:\oracle\product\11.1.1\as_3\webgate\iis\tools\ConfigureIISConf




e.      Your site is now mapped with the webgate. To show this mapping. Go to your webgate home location -> lib folder -> open webgate.ini





            ·         Now we need to add artifacts to the webgate instance dir (config folder).
            ·         Restart the IIS Server.




Guys we are done with the Webgate deployment on Windows Server 2008 R2 on IIS7.5 Web Server....!!!!!


Enjoy :-)