Tuesday, March 29, 2011

Oracle Access Manager Academy from the Fusion Security Blog

Index to the Oracle Access Manager Series from the Fusion Security Blog Team

OAM 11g was released last summer and constitutes a major upgrade/rewrite of OAM, which happens to be one of the more popular Oracle IAM products. Our goal with this series is to help everyone attempting to use and deploy the product at various stages by explaining major OAM 11g concepts, making architectural recommendations, pointing out potential pain points, and walking you through common yet non-trivial tasks such as setting up authentication to an external custom login form.

The OAM 11g Policy Model
OAM Authentication methods
OAM Integrations
OAM Concepts
Patches and Patching:


  1. Thanks for posting these blogs. Is there a good discussion or blog somewhere about the relationship between the authorization policies in OAM and those in OIM? There seems to be a bit of overlap and may be in the long run make sense to put them all in in OIM. From the way I read it OIM is used to provision 'IT resources' like databases, folders, applications etc. (See chapters 7-10 in this Oracle press book on Identity and Access Management for example: http://www.mhprofessional.com/product.php?isbn=0071741372&cat=112)

  2. Hi Brian,

    This is a wonderful blog. Thanks for sharing much valuable informations. I have a question about OAM 11g.

    Does the Oracle Access Manager 11g (OAM 11g) supports the multiple cookie domain configuration in it.

    For example, I have the applications to be protected in following domains in my customer environments are .abcsolutions.com;.abc.com;.abc-travel.com;.abc-solutions.com would all these domains be configured in the same OAM 11g server ? Is it possible. If not what would be the best approach to deal with it.

    Your response is much appreciated.


  3. Ashok,

    OAM 11g inherently supports cross cookie domain SSO. Unlike with OAM 10g, there really isn't any additional configuration required. Chris did an excellent post a while back explaining how SSO in 11g works and from that post you'll see what I mean.



Note: Only a member of this blog may post a comment.