Danışmanlık
Okunan
How to install Oracle Identity Governance (OIG 12c PS4) 12.2.1.4.0 Docker containers
0

How to install Oracle Identity Governance (OIG 12c PS4) 12.2.1.4.0 Docker containers

by Arda Eralp09 Eylül 2022

This post shows you how to install Oracle Identity Governance (OIG 12c PS4) 12.2.1.4.0 Docker containers.
Step 1:
You need OIG images and have 2 options to download them. The first option is login to oracle container registery and pull them to your docker (I choose this one), or download from Oracle Support page (document ID 2723908.1)
Step 2:
Install Docker, Docker-Compose and Helm on your machine. You can follow my other post.

Step 3:
You need Oracle DB to install it, I choose to use a Database Docker Container from Oracle Container Registry. (If you choose to use a database Docker image it must be installed on the same machine where you intend to run OIG)

Let’s start to install

Download & Pull OIG Image

[root@iam-k8s-002 opc]# docker login container-registry.oracle.com


[root@iam-k8s-002 opc]# docker login container-registry.oracle.com
Username: arda.eralp@oracle.com
Password: 
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store

Login Succeeded
[root@iam-k8s-002 opc]# 
[root@iam-k8s-002 opc]# docker pull container-registry.oracle.com/middleware/oig:12.2.1.4.0
12.2.1.4.0: Pulling from middleware/oig
245e9951308e: Pull complete 
130742f6586b: Pull complete 
396be1e069df: Pull complete 
2231fa499b3d: Pull complete 
9a11f0c3c52a: Pull complete 
779c3545d760: Pull complete 
531ef4e3d5be: Pull complete 
6ef01ee9abb3: Pull complete 
9ea40489d4d9: Pull complete 
c4531d3e3de9: Pull complete 
d345d348d173: Pull complete 
1805911a4bdb: Pull complete 
4df6e7ca9aa0: Pull complete 
Digest: sha256:a61e280dcd94c631219dd0f88203223125efd256a229a8d9ab260f735ba2acd3
Status: Downloaded newer image for container-registry.oracle.com/middleware/oig:12.2.1.4.0
container-registry.oracle.com/middleware/oig:12.2.1.4.0

Download & Pull Oracle 19c DB Image

[root@iam-k8s-002 opc]# docker pull container-registry.oracle.com/database/enterprise:19.3.0.0


[root@iam-k8s-002 opc]# docker pull container-registry.oracle.com/database/enterprise:19.3.0.0
19.3.0.0: Pulling from database/enterprise
401a42e1eb4f: Pull complete 
65b8476b3128: Pull complete 
af81ceb98316: Pull complete 
c3d438021dde: Pull complete 
849c53be28a0: Pull complete 
d7914a65be02: Pull complete 
4f4fb700ef54: Pull complete 
1890edbddfaf: Pull complete 
54609de1d7ab: Pull complete 
fc3be07ee7ab: Pull complete 
3656e6953030: Pull complete 
71025a5d174e: Pull complete 
b956969e576b: Pull complete 
67512e8a5318: Pull complete 
9097be6194a1: Pull complete 
55b40b1ceab3: Pull complete 
469490ed7583: Pull complete 
26d1304d50cc: Pull complete 
819dc6763724: Pull complete 
3e9933cd835c: Pull complete 
06094b1b4c6e: Pull complete 
7bcadbd806bc: Pull complete 
b2417a4e2c7b: Pull complete 
a020cdae1300: Pull complete 
aaffd243d518: Pull complete 
6638d2ac4815: Pull complete 
Digest: sha256:78f1966d7cdd66212a20f22ccced32a1813ebeccaa1b52ca6277f7cb9dac5fae
Status: Downloaded newer image for container-registry.oracle.com/database/enterprise:19.3.0.0
container-registry.oracle.com/database/enterprise:19.3.0.0

Download & Edit OIG Docker files from the FMW Repository

[root@iam-k8s-002 u01]# git clone https://github.com/oracle/docker-images


[root@iam-k8s-002 u01]# git clone https://github.com/oracle/docker-images
Cloning into 'docker-images'...
remote: Enumerating objects: 16032, done.
remote: Counting objects: 100% (249/249), done.
remote: Compressing objects: 100% (181/181), done.
remote: Total 16032 (delta 115), reused 165 (delta 68), pack-reused 15783
Receiving objects: 100% (16032/16032), 10.48 MiB | 17.83 MiB/s, done.
Resolving deltas: 100% (9446/9446), done.

[root@iam-k8s-002 u01]# cd docker-images/OracleIdentityGovernance/


[root@iam-k8s-002 OracleIdentityGovernance]# ll
total 8
-rw-r--r--. 1 root root 3647 Sep  8 16:55 README.md
drwxr-xr-x. 3 root root   51 Sep  8 16:55 dockerfiles
drwxr-xr-x. 3 root root   24 Sep  8 16:55 imagetool
drwxr-xr-x. 5 root root   62 Sep  8 16:55 samples
-rw-r--r--. 1 root root 2165 Sep  8 16:55 setenv.sh

[root@iam-k8s-002 OracleIdentityGovernance]# vi setenv.sh


#!/bin/sh
#
# Copyright (c) 2020 Oracle and/or its affiliates.
#
# Licensed under the Universal Permissive License v 1.0 as shown at https://oss.oracle.com/licenses/upl.
#
# Author: OIG Development
#
# Description: script to set environment for running OIG containers
#
#
# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
#
#
#===============================================
# MUST: Customize this to your local env
#===============================================
#
# Directory where all domains/db data etc are
# kept. Directories will be created here
export DC_USERHOME=/scratch/${USER}/docker/OIG

# Registry names where requisite standard images
# can be found
export DC_REGISTRY_OIG="localhost"
export DC_REGISTRY_DB="localhost"
export DC_DB_VERSION="19.3.0.0-ee"

# Proxy Environment
export http_proxy=""
export https_proxy=""
export no_proxy=""
export http_proxy=""

#===============================================
exportComposeEnv() {
  #
  export DC_HOSTNAME=`hostname -f`
  #
  # Used by Docker Compose from the env
  # Oracle DB Parameters
  #
  export DC_ORCL_PORT=1521
  export DC_ORCL_OEM_PORT=5500
  export DC_ORCL_SID=oimdb
  export DC_ORCL_PDB=oimpdb
  export DC_ORCL_SYSPWD=“xxxxxxxx”
  export DC_ORCL_HOST=oimdb
  #
  export DC_ORCL_DBDATA=${DC_USERHOME}/dbdata
  #
  # AdminServer Password
  #
  export DC_ADMIN_PWD=“xxxxxxxx”
  export OIG_IMAGE=oracle/oig:12.2.1.4.0
  #
  # RCU Common password for all schemas + Prefix Names
  #
  export DC_RCU_SCHPWD=“xxxxxxx”
  export DC_RCU_OIMPFX=OIM03
  #
  # Domain directories for the various domain types
  #
  export DC_DDIR_OIM=${DC_USERHOME}/oimdomain
}

#===============================================
createDirs() {
  mkdir -p  ${DC_DDIR_OIM}/domains/ConnectorDefaultDirectory
  chmod 777 ${DC_DDIR_OIM}
  chmod 777 ${DC_DDIR_OIM}/domains/
  chmod 777 ${DC_DDIR_OIM}/domains/ConnectorDefaultDirectory
  mkdir -p ${DC_ORCL_DBDATA}
  chmod 777 ${DC_ORCL_DBDATA}
}

#===============================================
#== MAIN starts here
#===============================================
#
echo "INFO: Setting up OIM Docker Environment..."
exportComposeEnv
createDirs
echo "INFO: Environment variables"
env | grep -e "DC_" | sort

[root@iam-k8s-002 OracleIdentityGovernance]# . ./setenv.sh


[root@iam-k8s-002 OracleIdentityGovernance]# . ./setenv.sh 
INFO: Setting up OIM Docker Environment...
INFO: Environment variables
DC_ADMIN_PWD=
DC_DB_VERSION=19.3.0.0-ee
DC_DDIR_OIM=/scratch/root/docker/OIG/oimdomain
DC_HOSTNAME=iam-k8s-002.oracle.com
DC_ORCL_DBDATA=/scratch/root/docker/OIG/dbdata
DC_ORCL_HOST=oimdb
DC_ORCL_OEM_PORT=5500
DC_ORCL_PDB=oimpdb
DC_ORCL_PORT=1521
DC_ORCL_SID=oimdb
DC_ORCL_SYSPWD=
DC_RCU_OIMPFX=OIM03
DC_RCU_SCHPWD=
DC_REGISTRY_DB=localhost
DC_REGISTRY_OIG=localhost
DC_USERHOME=/scratch/root/docker/OIG
[root@iam-k8s-002 OracleIdentityGovernance]# 

Run DB on Docker

[root@iam-k8s-002 OracleIdentityGovernance]# docker tag container-registry.oracle.com/database/enterprise:19.3.0.0 localhost/oracle/database:19.3.0.0-ee
[root@iam-k8s-002 OracleIdentityGovernance]# cd dockerfiles/
[root@iam-k8s-002 dockerfiles]# cd ..
[root@iam-k8s-002 OracleIdentityGovernance]# cd samples/
[root@iam-k8s-002 samples]# cd containerizedDB/
[root@iam-k8s-002 containerizedDB]# ll
total 4
-rw-r–r–. 1 root root 2452 Sep 8 16:55 docker-compose.yaml
[root@iam-k8s-002 containerizedDB]#
[root@iam-k8s-002 containerizedDB]#
[root@iam-k8s-002 containerizedDB]# docker-compose up -d oimdb
Creating network “containerizeddb_default” with the default driver
Creating oimdb … done
[root@iam-k8s-002 containerizedDB]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
785a58f41686 localhost/oracle/database:19.3.0.0-ee “/bin/sh -c ‘exec $O…” 23 seconds ago Up 21 seconds (health: starting) 0.0.0.0:1521->1521/tcp, :::1521->1521/tcp, 0.0.0.0:5500->5500/tcp, :::5500->5500/tcp oimdb
[root@iam-k8s-002 containerizedDB]# docker logs -f oimdb


[root@iam-k8s-002 containerizedDB]# docker logs -f oimdb
[2022:09:08 17:01:50]: Acquiring lock .OIMDB.create_lck with heartbeat 30 secs
[2022:09:08 17:01:50]: Lock acquired
[2022:09:08 17:01:50]: Starting heartbeat
[2022:09:08 17:01:50]: Lock held .OIMDB.create_lck
ORACLE EDITION: ENTERPRISE

LSNRCTL for Linux: Version 19.0.0.0.0 - Production on 08-SEP-2022 17:01:50

Copyright (c) 1991, 2019, Oracle.  All rights reserved.

Starting /opt/oracle/product/19c/dbhome_1/bin/tnslsnr: please wait...

TNSLSNR for Linux: Version 19.0.0.0.0 - Production
System parameter file is /opt/oracle/product/19c/dbhome_1/network/admin/listener.ora
Log messages written to /opt/oracle/diag/tnslsnr/785a58f41686/listener/alert/log.xml
Listening on: (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=EXTPROC1)))
Listening on: (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=0.0.0.0)(PORT=1521)))

Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC1)))
STATUS of the LISTENER
------------------------
Alias                     LISTENER
Version                   TNSLSNR for Linux: Version 19.0.0.0.0 - Production
Start Date                08-SEP-2022 17:01:50
Uptime                    0 days 0 hr. 0 min. 0 sec
Trace Level               off
Security                  ON: Local OS Authentication
SNMP                      OFF
Listener Parameter File   /opt/oracle/product/19c/dbhome_1/network/admin/listener.ora
Listener Log File         /opt/oracle/diag/tnslsnr/785a58f41686/listener/alert/log.xml
Listening Endpoints Summary...
  (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=EXTPROC1)))
  (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=0.0.0.0)(PORT=1521)))
The listener supports no services
The command completed successfully
Prepare for db operation
8% complete
Copying database files
31% complete
Creating and starting Oracle instance
32% complete
36% complete
40% complete
43% complete
46% complete
Completing Database Creation
51% complete

54% complete
Creating Pluggable Databases
58% complete
77% complete
Executing Post Configuration Actions
100% complete
Database creation complete. For details check the logfiles at:
 /opt/oracle/cfgtoollogs/dbca/OIMDB.
Database Information:
Global Database Name:OIMDB
System Identifier(SID):OIMDB
Look at the log file "/opt/oracle/cfgtoollogs/dbca/OIMDB/OIMDB.log" for further details.

SQL*Plus: Release 19.0.0.0.0 - Production on Thu Sep 8 17:16:19 2022
Version 19.3.0.0.0

Copyright (c) 1982, 2019, Oracle.  All rights reserved.


Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0

SQL> 
System altered.

SQL> 
System altered.

SQL> 
Pluggable database altered.

SQL> 
PL/SQL procedure successfully completed.

SQL> SQL> 
Session altered.

SQL> 
User created.

SQL> 
Grant succeeded.

SQL> 
Grant succeeded.

SQL> 
Grant succeeded.

SQL> 
User altered.

SQL> SQL> Disconnected from Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
The Oracle base remains unchanged with value /opt/oracle

Executing user defined scripts
/opt/oracle/runUserScripts.sh: running /opt/oracle/scripts/extensions/setup/savePatchSummary.sh

/opt/oracle/runUserScripts.sh: running /opt/oracle/scripts/extensions/setup/swapLocks.sh
[2022:09:08 17:16:23]: Releasing lock .OIMDB.create_lck
[2022:09:08 17:16:23]: Lock released .OIMDB.create_lck
[2022:09:08 17:16:23]: Acquiring lock .OIMDB.exist_lck with heartbeat 30 secs
[2022:09:08 17:16:23]: Lock acquired
[2022:09:08 17:16:23]: Starting heartbeat
[2022:09:08 17:16:23]: Lock held .OIMDB.exist_lck

DONE: Executing user defined scripts

The Oracle base remains unchanged with value /opt/oracle
#########################
DATABASE IS READY TO USE!
#########################


[root@iam-k8s-002 opc]# docker ps
CONTAINER ID   IMAGE                                   COMMAND                  CREATED          STATUS                    PORTS                                                                                  NAMES
785a58f41686   localhost/oracle/database:19.3.0.0-ee   "/bin/sh -c 'exec $O…"   15 minutes ago   Up 15 minutes (healthy)   0.0.0.0:1521->1521/tcp, :::1521->1521/tcp, 0.0.0.0:5500->5500/tcp, :::5500->5500/tcp   oimdb
[root@iam-k8s-002 opc]# 

Run Weblogic AdminServer

[root@iam-k8s-002 opc]# cd /u01/docker-images/OracleIdentityGovernance/samples/containerizedDB
[root@iam-k8s-002 containerizedDB]# docker-compose up -d oimadmin
Creating oimadmin … done
[root@iam-k8s-002 containerizedDB]# docker logs -f oimadmin


[root@iam-k8s-002 containerizedDB]# docker logs -f oimadmin
INFO: CONNECTION_STRING = oimdb:1521/oimpdb
INFO: RCUPREFIX         = OIM03
INFO: DB_PASSWORD       = xxxxxxx
*** Driver loaded
Conection created successfuly
 
CREATE VIEW d$pending_xatrans$ AS

(SELECT global_tran_fmt, global_foreign_id, branch_id

FROM sys.pending_trans$ tran, sys.pending_sessions$ sess

WHERE tran.local_tran_id = sess.local_tran_id

AND tran.state != 'collecting'

AND BITAND(TO_NUMBER(tran.session_vector),

POWER(2, (sess.session_id - 1))) = sess.session_id)

/

create synonym v$pending_xatrans$ for d$pending_xatrans$
/

CREATE VIEW d$xatrans$ AS

(((SELECT k2gtifmt, k2gtitid_ext, k2gtibid

FROM x$k2gte2

WHERE k2gterct=k2gtdpct)

MINUS

SELECT global_tran_fmt, global_foreign_id, branch_id

FROM d$pending_xatrans$)

UNION

SELECT global_tran_fmt, global_foreign_id, branch_id

FROM d$pending_xatrans$)

/

create synonym v$xatrans$ for d$xatrans$
/

####################   Some Exception Occured  ####################### 
java.sql.SQLSyntaxErrorException: ORA-00955: name is already used by an existing object

>>   CREATE VIEW d$pending_xatrans$ AS  (SELECT global_tran_fmt, global_foreign_id, branch_id  FROM sys.pending_trans$ tran, sys.pending_sessions$ sess  WHERE tran.local_tran_id = sess.local_tran_id  AND tran.state != 'collecting'  AND BITAND(TO_NUMBER(tran.session_vector),  POWER(2, (sess.session_id - 1))) = sess.session_id)  
####################   Some Exception Occured  ####################### 
java.sql.SQLSyntaxErrorException: ORA-00955: name is already used by an existing object

>>  create synonym v$pending_xatrans$ for d$pending_xatrans$ 
####################   Some Exception Occured  ####################### 
java.sql.SQLSyntaxErrorException: ORA-00955: name is already used by an existing object

>>  CREATE VIEW d$xatrans$ AS  (((SELECT k2gtifmt, k2gtitid_ext, k2gtibid  FROM x$k2gte2  WHERE k2gterct=k2gtdpct)  MINUS  SELECT global_tran_fmt, global_foreign_id, branch_id  FROM d$pending_xatrans$)  UNION  SELECT global_tran_fmt, global_foreign_id, branch_id  FROM d$pending_xatrans$)  
####################   Some Exception Occured  ####################### 
java.sql.SQLSyntaxErrorException: ORA-00955: name is already used by an existing object

>>  create synonym v$xatrans$ for d$xatrans$ 

	RCU Logfile: /tmp/RCU2022-09-08_17-46_660737400/logs/rcu.log



Processing command line ....
Repository Creation Utility - Checking Prerequisites
Checking Global Prerequisites


Repository Creation Utility - Checking Prerequisites
Checking Component Prerequisites

ERROR - RCU-6107 The database initialization parameter prerequisite check failed.
CAUSE - RCU-6107 The database initialization parameter prerequisite check failed for OPEN_CURSORS. 
Current Value is 300. It should be greater than or equal to 800.
ACTION - RCU-6107 Make sure that the database initialization parameter has the required value.
Repository Creation Utility - Creating Tablespaces
Validating and Creating Tablespaces
Create tablespaces in the repository database
Repository Creation Utility - Create
Repository Create in progress.
        Percent Complete: 10
Executing pre create operations
        Percent Complete: 25
        Percent Complete: 25
        Percent Complete: 26
        Percent Complete: 27
        Percent Complete: 28
        Percent Complete: 28
        Percent Complete: 29
        Percent Complete: 29
Creating Common Infrastructure Services(STB)
        Percent Complete: 36
        Percent Complete: 36
        Percent Complete: 44
        Percent Complete: 44
        Percent Complete: 44
Creating Audit Services Append(IAU_APPEND)
        Percent Complete: 51
        Percent Complete: 51
        Percent Complete: 59
        Percent Complete: 59
        Percent Complete: 59
Creating Audit Services Viewer(IAU_VIEWER)
        Percent Complete: 66
        Percent Complete: 66
        Percent Complete: 67
        Percent Complete: 67
        Percent Complete: 68
        Percent Complete: 68
Creating Metadata Services(MDS)
        Percent Complete: 76
        Percent Complete: 76
        Percent Complete: 76
        Percent Complete: 77
        Percent Complete: 77
        Percent Complete: 78
        Percent Complete: 78
        Percent Complete: 78
Creating Weblogic Services(WLS)
        Percent Complete: 82
        Percent Complete: 82
        Percent Complete: 83
        Percent Complete: 84
        Percent Complete: 86
        Percent Complete: 88
        Percent Complete: 88
        Percent Complete: 88
Creating User Messaging Service(UCSUMS)
        Percent Complete: 92
        Percent Complete: 92
        Percent Complete: 95
        Percent Complete: 95
        Percent Complete: 100
Creating Audit Services(IAU)
Creating Oracle Platform Security Services(OPSS)
Creating SOA Infrastructure(SOAINFRA)
Creating Oracle Identity Manager(OIM)
Executing post create operations

Repository Creation Utility: Create - Completion Summary

Database details:
-----------------------------
Host Name                                    : oimdb
Port                                         : 1521
Service Name                                 : OIMPDB
Connected As                                 : sys
Prefix for (prefixable) Schema Owners        : OIM03
RCU Logfile                                  : /tmp/RCU2022-09-08_17-46_660737400/logs/rcu.log

Component schemas created:
-----------------------------
Component                                    Status         Logfile		

Common Infrastructure Services               Success        /tmp/RCU2022-09-08_17-46_660737400/logs/stb.log 
Oracle Platform Security Services            Success        /tmp/RCU2022-09-08_17-46_660737400/logs/opss.log 
SOA Infrastructure                           Success        /tmp/RCU2022-09-08_17-46_660737400/logs/soainfra.log 
Oracle Identity Manager                      Success        /tmp/RCU2022-09-08_17-46_660737400/logs/oim.log 
User Messaging Service                       Success        /tmp/RCU2022-09-08_17-46_660737400/logs/ucsums.log 
Audit Services                               Success        /tmp/RCU2022-09-08_17-46_660737400/logs/iau.log 
Audit Services Append                        Success        /tmp/RCU2022-09-08_17-46_660737400/logs/iau_append.log 
Audit Services Viewer                        Success        /tmp/RCU2022-09-08_17-46_660737400/logs/iau_viewer.log 
Metadata Services                            Success        /tmp/RCU2022-09-08_17-46_660737400/logs/mds.log 
WebLogic Services                            Success        /tmp/RCU2022-09-08_17-46_660737400/logs/wls.log 

Repository Creation Utility - Create : Operation Completed

Initializing WebLogic Scripting Tool (WLST) ...

Welcome to WebLogic Server Administration Scripting Shell

Type help() for help on available commands

/u01/oracle/dockertools/createOIMDomain.py called with the following sys.argv array:
sys.argv[0] = /u01/oracle/dockertools/createOIMDomain.py
sys.argv[1] = -oh
sys.argv[2] = /u01/oracle
sys.argv[3] = -jh
sys.argv[4] = /u01/jdk
sys.argv[5] = -parent
sys.argv[6] = /u01/oracle/user_projects/domains
sys.argv[7] = -name
sys.argv[8] = base_domain
sys.argv[9] = -password
sys.argv[10] = xxxxxxxxxxx
sys.argv[11] = -rcuDb
sys.argv[12] = oimdb:1521/oimpdb
sys.argv[13] = -rcuPrefix
sys.argv[14] = OIM03
sys.argv[15] = -rcuSchemaPwd
sys.argv[16] = Arda#1234
sys.argv[17] = -domainType
sys.argv[18] = oim
sys.argv[19] = -hostname
sys.argv[20] = iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com
Creating Node Managers...
Creating Admin server...
Writing base domain...
Base domain created at /u01/oracle/user_projects/domains/base_domain
Extending domain at /u01/oracle/user_projects/domains/base_domain
setting server t3channel for server oim_server1
t3 channel created for server: oim_server1for address: iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com
setting server t3channel for server soa_server1
t3 channel created for server: soa_server1for address: iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com
Sep 08, 2022 5:49:08 PM oracle.security.jps.az.internal.runtime.policy.AbstractPolicyImpl initializeReadStore
INFO: Property for read store in parallel: oracle.security.jps.az.runtime.readstore.threads = null


Exiting WebLogic Scripting Tool.

pwd===> /u01/oracle/idm/server/bin
OIM Home===> /u01/oracle/idm
MW Home===> /u01/oracle
cp: omitting directory ‘/u01/oracle/idm/server/loginmodule/wls/schema’
copied jars from /u01/oracle/idm/server/loginmodule/wls/ to  /u01/oracle/wlserver/server/lib/mbeantypes/ dir
copied /u01/oracle/idm/server/loginmodule/wls/schema/* to /u01/oracle/oracle_common/lib/schematypes/ dir

Initializing WebLogic Scripting Tool (WLST) ...

Welcome to WebLogic Server Administration Scripting Shell

Type help() for help on available commands

reading Domain --> base_domainat path --> /u01/oracle/user_projects/domains/base_domain
Session started for modification.
New Token Issuer Trust document named tokenissuertrustWLSbase_domain created.
To use the new document in the domain configuration,you must run the setWSMConfiguration command where category = "TokenIssuerTrust", property name = "name" and value = "tokenissuertrustWLSbase_domain".
A new property "name" within category "TokenIssuerTrust" has been added.
The values "[tokenissuertrustWLSbase_domain]" have been added to property "name" within category "TokenIssuerTrust".
Configuration properties associated with the context "/WLS/base_domain" has been created.
Token Issuer Trust document named "tokenissuertrustWLSbase_domain" selected in the session.
New issuer - "www.oracle.com" added to the document.
The issuer and trusted DN values have been updated successfully.

Successfully configured property "keystore.type".

Successfully configured property "location".

Successfully configured property "keystore.sig.csf.key".

Successfully configured property "keystore.enc.csf.key".
The tokenissuertrust tokenissuertrustWLSbase_domain is valid.
Creating tokenissuertrust tokenissuertrustWLSbase_domain in repository.

Session committed successfully.
Seeding OWSM Policies for SCIM starts
Importing "META-INF/policies/oracle/multi_token_noauth_over_ssl_rest_service_policy"
Successfully imported "1" documents
Importing "META-INF/policies/oracle/multi_token_noauth_rest_service_policy"
Successfully imported "1" documents
Seeding OWSM Policies for SCIM ends


Exiting WebLogic Scripting Tool.

     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager updateJPSConfig
INFO: Entering updateJPSConfig() method of OIMConfigManager class
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate isJPSConfigXMLForWASAlreadyUpdated
INFO: jps-config.xml isAlreadyUpdated:false
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Entering updateJPSConfigXMLForWLS() method of JPSConfigXMLUpdate class
    > 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Changed the ID Store Provider from LDAP to OIM :          
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: jps-config.xml_new file deleted successfully.
    <
[OIM_CONFIG]The file /u01/oracle/user_projects/domains/base_domain/config/fmwconfig/jps-config.xml is updated.> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: 
[OIM_CONFIG]The file /u01/oracle/user_projects/domains/base_domain/config/fmwconfig/jps-config.xml is updated.
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Exiting updateJPSConfigXMLForWLS() method of JPSConfigXMLUpdate class
    <
Updated jps-config.xml Details.> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager updateJPSConfig
INFO: 
Updated jps-config.xml Details.
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate isJPSConfigXMLForWASAlreadyUpdated
INFO: jps-config.xml isAlreadyUpdated:false
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Entering updateJPSConfigXMLForWLS() method of JPSConfigXMLUpdate class
    > 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Changed the ID Store Provider from LDAP to OIM :          
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: jps-config.xml_new file deleted successfully.
    <
[OIM_CONFIG]The file /u01/oracle/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml is updated.> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: 
[OIM_CONFIG]The file /u01/oracle/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml is updated.
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.util.JPSConfigXMLUpdate updateJPSConfigXMLForWLS
INFO: Exiting updateJPSConfigXMLForWLS() method of JPSConfigXMLUpdate class
    <
Updated jps-config-jse.xml Details.> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager updateJPSConfig
INFO: 
Updated jps-config-jse.xml Details.
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager updateJPSConfig
INFO: Exiting updateJPSConfig() method of OIMConfigManager class
    <
[OIM_CONFIG] Copying the mbean Files> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager copyMbeanFiles
INFO: 
[OIM_CONFIG] Copying the mbean Files
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager copyMbeanFiles
INFO: Entering copyMbeanFiles() method of OIMConfigManager class
    <
Copying mbean files are successful> 
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager copyMbeanFiles
INFO: 
Copying mbean files are successful
     
Sep 08, 2022 5:51:02 PM oracle.iam.OIMPostConfigManager.config.OIMConfigManager copyMbeanFiles
INFO: Exiting copyMbeanFiles() method of OIMConfigManager class
INFO: Updating the listen address of Adminserver -> IP->172.18.0.3  DNS->iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com
/u01/oracle/oracle_common/common/bin/wlst.sh -skipWLSModuleScanning /u01/oracle/dockertools/updateListenAddress.py 172.18.0.3 AdminServer iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com
INFO: Starting the Admin Server...
INFO: Logs = /u01/oracle/user_projects/domains/base_domain/logs/as.log
     
INFO: Admin server is running
INFO: Admin server running, ready to start managed server

Run SOA Server

[root@iam-k8s-002 containerizedDB]# docker-compose up -d soams
oimadmin is up-to-date
Creating soams … done
[root@iam-k8s-002 containerizedDB]# docker logs -f soams


[root@iam-k8s-002 containerizedDB]# docker logs -f soams
INFO: Updating the listen address - 172.18.0.4  iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com for server soa_server1
/u01/oracle/oracle_common/common/bin/wlst.sh -skipWLSModuleScanning /u01/oracle/dockertools/updateListenAddressMS.py 172.18.0.4 soa_server1 iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com 7001 weblogic Arda#1234
INFO: Starting the managed server soa_server1
INFO: Waiting for the Managed Server to accept requests...

SOA Platform is running and accepting requests. Start up took 32135 ms, partition=DOMAIN
INFO: Managed Server is running
INFO: Managed server has been started

Run OIM Server

[root@iam-k8s-002 containerizedDB]# docker-compose up -d oimms
oimadmin is up-to-date
Creating oimms … done
[root@iam-k8s-002 containerizedDB]# docker logs -f oimms


[root@iam-k8s-002 containerizedDB]# docker logs -f oimms
INFO: Updating the listen address - 172.18.0.5  iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com for server oim_server1
/u01/oracle/oracle_common/common/bin/wlst.sh -skipWLSModuleScanning /u01/oracle/dockertools/updateListenAddressMS.py 172.18.0.5 oim_server1 iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com iam-k8s-002.sub09080508470.aeralpvcn01.oraclevcn.com 7001 weblogic Arda#1234
INFO: Starting the managed server oim_server1
INFO: Waiting for the Managed Server to accept requests...


     
INFO: Managed Server is running
INFO: Managed server has been started
INFO: Running SOA Mbean

Login to Consoles

WebLogic Administration Console
http://hostname:7001/console
weblogic/password
Oracle Enterprise Manager Console
http://hostname:7001/em
weblogic/password
Oracle SOA Platform
http://hostname:8001/soa-infra
weblogic/password
Oracle Identity Self Service Console
http://hostname:14000/identity
xelsysadm/password
Oracle Identity System Administration Console
http://hostname:14000/sysadmin
xelsysadm/password

About The Author
Arda Eralp
Arda Eralp
Software-Architect with 10+ years of experience in design and implementation of security & middleware integration products. 4+ years in a customer-facing technical pre-sales role, working closely with sales teams and being able to build and maintain business relationships with decision makers and influencers.
Yorumlar

Yanıt Bırak