SSO Setup With OAM - SSPI - WLS
Hi,
I thought of posting an individual thread for this rather than include in my previous thread (Which is not relevent). Anyway, I am following section 10.2.2 in following link (Authentication for Web-Only Resources);
http://download.oracle.com/docs/cd/E10761_01/doc/oam.1014/e10356/weblogic.htm#BHCJAHAG
I am trying to follow the steps. I have already deployed Proxy server for WebLogic (using Apache 2.2 as proxy) and created a WebGate in Access Server configuration to protect (intercept) this proxy server requests and challenge user for authentication. I can successfully access my WLS console on following link
http://localhost:8080/console --> and gets logged in using OAM credentials.
But :( I think I need some assistance in policy creation and challenge redirection. I am using SSPI to authenticate user for WLS, so I already have an authentication schemes defined for basic authentication for Admin access and an Anonymus access;
Name OAM WebLogic Server Basic Authentication
Description Used to authenticate users who access WebLogic resources
Level 1
Challenge Method Basic
Challenge Parameter
realm:Oracle Access and Identity
SSL Required No
Challenge Redirect <--- Empty
Enabled Yes
Now above scheme is to authenticate users who want to access WLS. There is no challenge redirect URL defined and its empty. My questions are;
1) First of all, Do I have to use external proxy server like Apache etc etc..Or should I use OHS server which is already hosting my Oracle Access Manager by adding mod_wl_22.so module and same configuration I used in Apache to redirect my request to WLS.
2) Do I have to create new authentication scheme or I can use above scheme straight away. If I can use above...then how????
3) How Access Gate will verify that resource is protected by OAM??? Must be using authentication scheme??? If yes then that authentication scheme should be defined in my SSPI configuration for WLS???
Please help me setting up the environment. :)
Thanks
--
SJunejo