Thursday, July 03, 2008

Oracle AS 10.1.3 : Use Oracle AS 10.1.2 SSO

I was trying to configure Oracle Application Server 10.1.3.x to to use Oracle Application Server 10.1.2 Single Sign On.

I wanted to use Oracle Application Server 10.1.2 Single Sign On to protect an application deployed on Oracle Application Server 10.1.3.x. I checked out the available documents & Googled around a lot & collected this information. The information presented here isn't something new, but just a collection of information from various sources & my own experience.

The steps to achieve this are quite straight forward :-

0. Ensure that you have oss013 script in your Oracle App Server 10.1.3

You need to have the osso1013 script under the folder $ORACLE_HOME_1013/Apache/Apache/bin.

You will have this script only if you had selected the SOA Suite Advanced Instlallation type & opted for "J2EE and Web server"

1. Generate the Oracle AS Single Sign On Configuration File.

You can do this by running the ssoreg script present in the $ORACLE_HOME_1012/sso/bin. The syntax of the command is :-

ssoreg.bat
-oracle_home_path $ORACLE_HOME_1012
-config_mod_osso TRUE
-site_name Any_Name_for_your_application
-remote_midtier
-config_file .conf
-mod_osso_url http://your_1013_app_server_home_page:port
You can open a command window / terminal & execute this command from $ORACLE_HOME_1012/sso/bin.

You have completed this step successfully, if you see this message on your command window / terminal :-

Check /$ORACLE_HOME_1012/sso/log/ssoreg.log for details of this registration
SSO registration tool finished successfully.

After this step, you should see Any_Name_for_your_application_osso.conf at $ORACLE_HOME/sso/bin.

You should also see your application registered as a Partner Application in the Oracle SSO Administration Page at :-

http://Your_1012_http_server_hostname:http_port/pls/orasso


The key points to remember at this step are :-

a. Ensure that the is Oracle Application Server 10.1.3 Home Page and not URL for your application
b. Always check the generated Log File to ensure that there are no errors.

2. Copy the generated Oracle AS Single Sign On Configuration File to the 10.1.3 Server.

You need to copy the generated Any_Name_for_your_application_osso.conf to your Oracle Application Server 10.1.3 system.

You can copy this to your $ORACLE_HOME_1013/Apache/Apache/bin folder.

3. Register the 10.1.3 Server with the 10.1.2 SSO.

You can navigate to the $ORACLE_HOME_1013/Apache/Apache/bin folder, open a command window / terminal and execute this command:

osso1013 Any_Name_for_your_application_osso.conf

You have completed this step successfully if you see this message on your command window / terminal :-

$ORACLE_HOME_1013/Apache/Apache/conf/httpd.conf successfully updated.
$ORACLE_HOME_1013/Apache/Apache/conf/mod_osso.conf successfully updated.
4. Protect your Application

You can now open mod_osso.conf under $ORACLE_HOME_1013/Apache/Apache/conf and add an entry to protect your application :-

<
Location /Your_app_context
>

require valid-user
AuthType Basic
>

5. Restart the HTTP Server

That's it !

You can now enter your application's URL & you can see the Single Sign On Page asking your to enter the credentials.

No comments: