Oracle B32100-01 ユーザーズマニュアル
Installing an OracleAS Cluster (Identity Management) Configuration
Installing in High Availability Environments: OracleAS Cluster (Identity Management)
9-7
HTTP Load Balancer: Port
: Enter the port number that the HTTP virtual server listens
on. This will be the value of the Port directive in the httpd.conf file.
Enable SSL
Enable SSL
: Select this option.
Note that in this configuration, the load balancer must have SSL acceleration
capabilities, or you must add a separate SSL Accelerator. The conversion from HTTPS
to HTTP happens before Oracle HTTP Server receives the request. The SSL accelerator
must be properly configured prior to installation. The installer does not check for this.
capabilities, or you must add a separate SSL Accelerator. The conversion from HTTPS
to HTTP happens before Oracle HTTP Server receives the request. The SSL accelerator
must be properly configured prior to installation. The installer does not check for this.
The installer will change the following lines:
■
In opmn.xml, the installer sets the ssl-enabled line in the Oracle HTTP Server
section to true.
section to true.
■
In httpd.conf, the installer adds the following lines:
LoadModule certheaders_module libexec/mod_certheaders.so
SimulateHttps on
Example
9.5 Installing an OracleAS Cluster (Identity Management) Configuration
In this configuration, you need an existing database that is already running in a
configuration supported by the OracleAS RepCA. Oracle recommends running the
database in a high availability environment, such as a Real Application Clusters
database. You also need additional nodes (at least two nodes) to run Oracle Identity
Management components. In this configuration, Oracle Internet Directory, OracleAS
Single Sign-On, and Oracle Delegated Administration Services run on each node. If
you want to distribute these components, see
configuration supported by the OracleAS RepCA. Oracle recommends running the
database in a high availability environment, such as a Real Application Clusters
database. You also need additional nodes (at least two nodes) to run Oracle Identity
Management components. In this configuration, Oracle Internet Directory, OracleAS
Single Sign-On, and Oracle Delegated Administration Services run on each node. If
you want to distribute these components, see
These nodes are accessed through a load balancer. See
You install the OracleAS Metadata Repository in your existing database, then install
Oracle Identity Management components against this database.
Oracle Identity Management components against this database.
Oracle Directory Integration Platform Is Started on the First Node Only
The installer starts Oracle Directory Integration Platform only on the first node, even
though you selected it on subsequent nodes as well. On subsequent nodes, the
installer configures Oracle Directory Integration Platform, but does not start it.
though you selected it on subsequent nodes as well. On subsequent nodes, the
installer configures Oracle Directory Integration Platform, but does not start it.
If You Want Oracle Internet Directory to Listen on SSL Ports Only
If you want Oracle Internet Directory to listen on SSL ports only, perform this
configuration after you have installed Oracle Identity Management. You need Oracle
configuration after you have installed Oracle Identity Management. You need Oracle
Table 9–3
Example for Case 3
Values in Screen
Resulting Values in Configuration Files
HTTP Listener: Port: 9000
Enable SSL: Unchecked
HTTP Load Balancer: Port: 443
Enable SSL: Checked
In httpd.conf:
Port 443
Listen 9000
In ssl.conf:
Port <default port number assigned by installer>
Listen <default port number assigned by installer>