oracle oam install notes (HA)
This post covers installing 11.1.2.2(11gR2) Oracle Access Manager(OAM) cluster to achieve High Availability(HA)
System architect:
oam11: admin server ,oam server 1
oam12: oam server 2
shared a database on oamdb
oam12: oam server 2
shared a database on oamdb
oamc1.test.com : cluster virtual host (on oam11)
all of them are Oracle linux vm.
- install DB at oamdb
if change memory setting after install DB, need to change /etc/fstab
tmpfs /dev/shm tmpfs rw,size=6000m 0 0
- check init.ora
from
processes = 150
open_cursors=300
to
processes = 500
open_cursors= 500
alter system set open_cursors=500 scope=both;
alter system set processes=500 scope=spfile; shutdown immediate; startup;
- Create Schema in database using RCU 11.1.2.2 (use windows or linux version)
- Install JDK 1.6 on oam11 ,oam12
- Install WebLogic 10.3.6 on oam11 ,oam12
- Install IAM 11.1.2.2 on oam11 ,oam12
need to add the following package for OEL 6
yum -y install binutil*
yum -y install compat-libcap1*
yum -y install compat-libstdc*
yum -y install gcc*
yum -y install gcc-c++*
yum -y install libaio*
yum -y install libgcc*
yum -y install libstdc*
yum -y install libXext*
yum -y install openmotif*
yum -y install redhat-lsb-core*
yum -y install sysstat*
yum -y install xorg-x11-xinit*
yum -y install xterm*
*** must check oam host table contain both hostname & FQDN
- only do the config once at oam11
- Configure WebLogic Domain and select components (OAM, EM)
/home/oracle/Oracle/Middleware/Oracle_IDM1/common/bin/config.sh
- Upgrade OPSS
run <MW_HOME>/oracle_common/bin/psa
verify
SELECT VERSION, STATUS, UPGRADED FROM SCHEMA_VERSION_REGISTRY WHERE OWNER='DEV_OPSS';
- Configure Database Security Store
/home/oracle/Oracle/Middleware/oracle_common/common/bin/wlst.sh /home/oracle/Oracle/Middleware/Oracle_IDM1/common/tools/configureSecurityStore.py -d /home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain -c IAM -p admin123 -m create
if error ,re run the config process again (also need to confirm the java version == 1.7)
- Start Services
start admin & nodemanager
cd /home/oracle/Oracle/Middleware/oracle_common/common/bin
./setNMProps.sh
/home/oracle/Oracle/Middleware/wlserver_10.3/server/bin/startNodeManager.sh &
startWebLogic.sh -Dweblogic.management.username=weblogic -Dweblogic.management.password=admin123 -Dweblogic.system.StoreBootIdentity=true
cd /home/oracle/Oracle/Middleware/wlserver_10.3/common/nodemanager
vi nodemanager.properties
StartScriptEnabled=true
StopScriptEnabled=true
PropertiesVersion=10.3
SecureListener=false
StopScriptEnabled=true
PropertiesVersion=10.3
SecureListener=false
enroll domain ()
need to run on two servers
wls:/IDM_domain/serverConfig> nmEnroll('/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain','/home/oracle/Oracle/Middleware/wlserver_10.3/common/nodemanager')
Enrolling this machine with the domain directory at /home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain ...
Successfully enrolled this machine with the domain directory at /home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain.
change node manager type to Plain
if show error
SEVERE: Failed to communicate with any of configured Access Server, ensure that it is up and running
change IAMSuiteAgent password
cluster config
on server oam11
./pack.sh -domain=/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain -template=/tmp/idm_domain.jar -template_name='OAM' -managed=true
<< read domain from "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
>> succeed: read domain from "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
<< set config option Managed to "true"
>> succeed: set config option Managed to "true"
<< write template to "/tmp/idm_domain.jar"
....................................................................................................
>> succeed: write template to "/tmp/idm_domain.jar"
<< close template
>> succeed: close template
on server oam12
./unpack.sh -domain=/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain -template=/tmp/idm_domain.jar
<< read template from "/tmp/idm_domain.jar"
>> succeed: read template from "/tmp/idm_domain.jar"
<< set config option DomainName to "IDM_domain"
>> succeed: set config option DomainName to "IDM_domain"
<< write Domain to "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
...............................................................................................
>> succeed: write Domain to "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
<< close template
>> succeed: close template
if nodemanager show inactive
change username,pw
restart nodemanager
start oam by console
config for cluster
/home/oracle/Oracle/Middleware/Oracle_IDM1/common/bin/wlst.sh
wls:/IDM_domain/serverConfig> configRequestCacheType(type='COOKIE')
Request Cache type updated successfully
wls:/IDM_domain/serverConfig> displayRequestCacheType()
Request Cache type is : COOKIE
install OHS on oam11 (11.1.1.7)
install and config OHS port by staticports.ini
[OHS]
#Listen port for OHS component
OHS Port = 80
[OPMN]
#OPMN Local port no
OPMN Local Port = 6700
create oam.conf at /home/oracle/Oracle/Middleware/Oracle_WT1/instances/instance1/config/OHS/ohs1/moduleconf
NameVirtualHost *:80
<VirtualHost *:80>
ServerName oamc1.test.com:80
ServerAdmin you@your.address
RewriteEngine On
RewriteOptions inherit
<Location /oam>
SetHandler weblogic-handler
Debug ON
WLLogFile /tmp/weblogic.log
WLProxySSL ON
WLProxySSLPassThrough ON
WebLogicCluster oam11:14100,oam12:14100
</Location>
</VirtualHost>
for start OHS error (Invalid argument: setgid: unable to set group id to Group)
vi httpd.conf
add "Group oracle" like following
User oracle
Group oracle
oam load balance config
need to run on two servers
wls:/IDM_domain/serverConfig> nmEnroll('/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain','/home/oracle/Oracle/Middleware/wlserver_10.3/common/nodemanager')
Enrolling this machine with the domain directory at /home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain ...
Successfully enrolled this machine with the domain directory at /home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain.
set startup env
change node manager type to Plain
*** boot.properties will create by nodemanager startup
SEVERE: Failed to communicate with any of configured Access Server, ensure that it is up and running
change IAMSuiteAgent password
cluster config
on server oam11
./pack.sh -domain=/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain -template=/tmp/idm_domain.jar -template_name='OAM' -managed=true
<< read domain from "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
>> succeed: read domain from "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
<< set config option Managed to "true"
>> succeed: set config option Managed to "true"
<< write template to "/tmp/idm_domain.jar"
....................................................................................................
>> succeed: write template to "/tmp/idm_domain.jar"
<< close template
>> succeed: close template
./unpack.sh -domain=/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain -template=/tmp/idm_domain.jar
<< read template from "/tmp/idm_domain.jar"
>> succeed: read template from "/tmp/idm_domain.jar"
<< set config option DomainName to "IDM_domain"
>> succeed: set config option DomainName to "IDM_domain"
<< write Domain to "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
...............................................................................................
>> succeed: write Domain to "/home/oracle/Oracle/Middleware/user_projects/domains/IDM_domain"
<< close template
>> succeed: close template
on server oam12
cd /home/oracle/Oracle/Middleware/oracle_common/common/bin
./setNMProps.sh
/home/oracle/Oracle/Middleware/wlserver_10.3/server/bin/startNodeManager.sh &
cd /home/oracle/Oracle/Middleware/wlserver_10.3/common/nodemanager
vi nodemanager.properties
StartScriptEnabled=true
StopScriptEnabled=true
PropertiesVersion=10.3
SecureListener=false
StopScriptEnabled=true
PropertiesVersion=10.3
SecureListener=false
if nodemanager show inactive
change username,pw
restart nodemanager
start oam by console
config for cluster
/home/oracle/Oracle/Middleware/Oracle_IDM1/common/bin/wlst.sh
wls:/IDM_domain/serverConfig> configRequestCacheType(type='COOKIE')
Request Cache type updated successfully
wls:/IDM_domain/serverConfig> displayRequestCacheType()
Request Cache type is : COOKIE
install OHS on oam11 (11.1.1.7)
install and config OHS port by staticports.ini
[OHS]
#Listen port for OHS component
OHS Port = 80
[OPMN]
#OPMN Local port no
OPMN Local Port = 6700
NameVirtualHost *:80
<VirtualHost *:80>
ServerName oamc1.test.com:80
ServerAdmin you@your.address
RewriteEngine On
RewriteOptions inherit
<Location /oam>
SetHandler weblogic-handler
Debug ON
WLLogFile /tmp/weblogic.log
WLProxySSL ON
WLProxySSLPassThrough ON
WebLogicCluster oam11:14100,oam12:14100
</Location>
</VirtualHost>
vi httpd.conf
add "Group oracle" like following
User oracle
Group oracle
oam load balance config
留言