Enterprise User Security – Part 3

Leave a reply

Today we’re going to install Oracle Directory Services Manager (ODSM). To run ODSM we need Weblogic with Oracle Application Developer Framework (ADF). Let’s assume we have a JDK installed as shown in the previous part of this series.

Install Weblogic

Create the response file:

vi /tmp/silent_wls.xml

<?xml version="1.0" encoding="UTF-8"?>
<bea-installer> 
  <input-fields>
    <data-value name="BEAHOME" value="/u01/app/oracle/product/mdlw11119" />
    <data-value name="WLS_INSTALL_DIR" value="/u01/app/oracle/product/mdlw11119/wlserver1036" />
    <data-value name="OCP_INSTALL_DIR" value="/u01/app/oracle/product/mdlw11119/coherence1036" />
    <data-value name="COMPONENT_PATHS" value="WebLogic Server/Core Application Server|WebLogic Server/Administration Console|WebLogic Server/Configuration Wizard and Upgrade Framework|WebLogic Server/Web 2.0 HTTP Pub-Sub Server|WebLogic Server/WebLogic JDBC Drivers|WebLogic Server/Third Party JDBC Drivers|WebLogic Server/WebLogic Server Clients|WebLogic Server/WebLogic Web Server Plugins|WebLogic Server/UDDI and Xquery Support" />
    <data-value name="INSTALL_NODE_MANAGER_SERVICE" value="no" />
    <data-value name="NODEMGR_PORT" value="5556" />
    <data-value name="INSTALL_SHORTCUT_IN_ALL_USERS_FOLDER" value="no"/>
    <data-value name="LOCAL_JVMS" value="/usr/java/jdk1.7.0_85"/>
  </input-fields> 
</bea-installer>

Feed the response file to the OUD installer:

mkdir /tmp/tmpwls
unzip V29856-01.zip -d /tmp/tmpwls
cd /tmp/tmpwls

umask 0027 # pre-requisite from the WLS installation guide
java -d64 -Xmx1024m -jar wls1036_generic.jar \
  -mode=silent -silent_xml=/tmp/silent_wls.xml

rm -rf /tmp/tmpwls

 
Install ADF

Create the response file:

ADF will be installed in MW_HOME/oracle_common. If you want to specifiy the directory name add “ORACLE_HOME=/<...>” to the response file.

vi /tmp/silent_adf.rsp

[ENGINE]
Response File Version=1.0.0.0.0
[GENERIC]
SPECIFY_DOWNLOAD_LOCATION=false
SKIP_SOFTWARE_UPDATES=true
SOFTWARE_UPDATES_DOWNLOAD_LOCATION=
MIDDLEWARE_HOME=/u01/app/oracle/product/mdlw11119
APPSERVER_TYPE=WLS

[SYSTEM]
[APPLICATIONS]
[RELATIONSHIPS]

Feed the response file to the OUD installer:

mkdir /tmp/tmpadf
unzip p20996481_111190_Generic.zip -d /tmp/tmpadf
cd /tmp/tmpadf

./Disk1/runInstaller -silent \
  -responseFile /tmp/silent_adf.rsp \
  -jreLoc /usr/java/jdk1.7.0_85

rm -rf /tmp/tmpadf

 
Create the ODSM Weblogic domain

Create the response file (WLST script):

Replace following place holders in the script with your values:
=> password for the “weblogic” user
=> host name of your WLS server

vi /tmp/create_odsm_domain.py

#!/usr/bin/python
import os, sys
readTemplate(r'/u01/app/oracle/product/mdlw11119/wlserver1036/common/templates/domains/wls.jar')
cd(r'/Security/base_domain/User/weblogic')
cmo.setPassword('<WEBLOGIC_PASSWORD>')
cd(r'/Server/AdminServer')
cmo.setName('AdminServer')
cmo.setListenPort(7001) # HTTP port
cmo.setListenAddress('<HOST_NAME>')
setOption('JavaHome', '/usr/java/jdk1.7.0_85')
setOption('ServerStartMode', 'prod')
create('AdminServer','SSL')
cd(r'/Servers/AdminServer/SSL/AdminServer')
cmo.setEnabled(true)
cmo.setListenPort(7002) # HTTPS port
cmo.setHostnameVerificationIgnored(true)
cmo.setHostnameVerifier(None)
cmo.setTwoWaySSLEnabled(false)
cmo.setJSSEEnabled(true)
writeDomain(r'/u01/app/oracle/product/mdlw11119/user_projects/domains/ODSM')
closeTemplate()
exit()

Feed the scritp to WLST:

${MW_HOME}/oracle_common/common/bin/wlst.sh /tmp/create_odsm_domain.py

 
Configure the ODSM Weblogic domain

Create the response file (WLST script):

vi /tmp/configure_odsm_domain.py

#!/usr/bin/python
import os, sys
readDomain('/u01/app/oracle/product/mdlw11119/user_projects/domains/ODSM')
addTemplate(r'/u01/app/oracle/product/mdlw11119/oud11123/common/templates/applications/oracle.odsm_11.1.1.5.0_template.jar')
updateDomain()
closeDomain()
exit()

 
Feed the scritp to WLST:

${MW_HOME}/oracle_common/common/bin/wlst.sh /tmp/configure_odsm_domain.py

 
Start WLS and login to ODSM

cd /u01/app/oracle/product/mdlw11119/user_projects/domains/ODSM/bin

# if the WLS domain is deployed in production mode as we did
#   then export WLS_USER and WLS_PW before calling startWebLogic.sh
export WLS_USER=weblogic
export WLS_PW=Weblogic-1-Password

nohup ./startWebLogic.sh > wls-start.log 2>&1 &

 
Now, you can login to the OUD directory with ODSM: https://hostname:7002/odsm

odsm-login-screen
 
Welcome to ODSM…

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.