How to configure Single Sign-On Webagent for OHS 12c manually
Article ID: 44111
Updated On:
Products
CA Single Sign On Secure Proxy Server (SiteMinder)
CA Single Sign On SOA Security Manager (SiteMinder)
CA Single Sign-On
Issue/Introduction
We've installed a Web Agent on OHS and we'd like to know if there are
manual steps to follow to make it working with the Oracle HTTP Server
(OHS) on Linux ?
Environment
Web Agent 12.52SP1 opn Oracle HTTP Server 12c on RedHat 7
Resolution
Following guide explains the steps required to configure OHS 12c
manually in the supported Single Sign-On Web Agent release.
Step 1.
Changes to httpd.conf file at <Instance Directory>\instance1\config\OHS\ohs1
1. Add LoadModule entry to the DSO Support Section
The following line(s) are added to the Dynamic Shared Object (DSO)
Support configuration section, which precedes the Main server
configuration section of the file.
LoadModule sm_module "<web_agent_home>/bin/libmod_sm24.so"
e.g.
LoadModule sm_module "/home/siteminder/CA/webagent/bin/libmod_sm24.so"
Note: As OHS 12c is based on Apache 2.4 , libmod_sm24.so needs to be
loaded, other library files will not work.
2. Add SmInitFile Entry
This entry is placed after the LoadModule entry that you added in
(1). A full path is used, not a relative path.
SmInitFile "<Path_To_The_Component_Directory>/OHS/<component_name>/WebAgent.conf"
e.g.
SmInitFile "/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/WebAgent.conf"
Note :
In the above example , ohs1 is the component/instance name.
3. Alias Entries Added
In the Aliases section of the file, following entries are added to
enable SiteMinder features.
Note:
The Alias /siteminderagent/ "<web_agent_home>/samples/"? entry must come after all other aliases in the Aliases section.
Alias /siteminderagent/nocert/[0-9]+/(.*) "/<web_agent_home>/$1"
<Directory "/<web_agent_home>/$1">
Options Indexes MultiViews
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/pwcgi/ "/<web_agent_home>/pw/"
<Directory "/<web_agent_home>/pw/">
Options Indexes MultiViews ExecCGI
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/pw/ "/<web_agent_home>/pw/"
<Directory "/<web_agent_home>/pw/">
Options Indexes MultiViews ExecCGI
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/ "/<web_agent_home>/samples/"
<Directory "/<web_agent_home>/samples/">
e.g.
Alias /siteminderagent/nocert/[0-9]+/(.*) "/home/siteminder/CA/webagent/$1"
<Directory "/home/siteminder/CA/webagent/$1">
Options Indexes MultiViews
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/pwcgi/ "/home/siteminder/CA/webagent/pw/"
<Directory "/home/siteminder/CA/webagent/pw/">
Options Indexes MultiViews ExecCGI
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/pw/ "/home/siteminder/CA/webagent/pw/"
<Directory "/home/siteminder/CA/webagent/pw/">
Options Indexes MultiViews ExecCGI
AllowOverride None
Require all granted
</Directory>
Alias /siteminderagent/ "/home/siteminder/CA/webagent/samples/"
<Directory "/home/siteminder/CA/webagent/samples/">
Step 2.
Create WebAgent.conf file with the following content and copy it in
"<Path_To_The_Component_Directory>/OHS/<component_name>"
directory
e.g. "/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/WebAgent.conf"
# WebAgent.conf - configuration file for SiteMinder Web Agent
# Web Agent Version = 12.52, Build = 2112, Update = 1.5
LOCALE=en-US
HostConfigFile="/<web_agent_home>/config/SmHost.conf"
AgentConfigObject="<name_of_aco>"
EnableWebAgent="Yes"
ServerPath="<Path_To_The_Component_Directory>/OHS/<component_name>"
LoadPlugin="/<web_agent_home>/bin/libHttpPlugin.so"
AgentIdFile="<Path_To_The_Component_Directory>/OHS/<component_name>/AgentId.dat"
e.g.
# WebAgent.conf - configuration file for SiteMinder Web Agent
# Web Agent Version = 12.52, Build = 2112, Update = 1.5
LOCALE=en-US
HostConfigFile="/home/siteminder/CA/webagent/config/SmHost.conf"
AgentConfigObject="aco_ohs"
EnableWebAgent="Yes"
ServerPath="/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1"
LoadPlugin="/home/siteminder/CA/webagent/bin/libHttpPlugin.so"
AgentIdFile="/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/AgentId.dat"
(Note : If SmHost.conf is not already created, you can create one by
registering the agent with the policy server using smreghost.sh
script)
Step 3.
Create AgentId.dat file with the following content and copy it in
<Path_To_The_Component_Directory>/OHS/<component_name> directory
e.g. "/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/AgentId.dat"
GUID=##############
(Specify unique GUID value for each of the Agent Instance )
Step 4.
Change ohs.plugins.nodemanager.properties file at
<Path_To_The_Component_Directory>/OHS/<component_name> directory
e.g. "/home/siteminder/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/ohs.plugins.nodemanager.properties"
Adding following entries right below the line where it says "#Environment variable configuration"
environment.NETE_WA_PATH = /<web_agent_home>/bin
environment.NETE_WA_ROOT = /<web_agent_home>
environment.append.1.PATH = $NETE_WA_PATH
environment.append.1.LD_LIBRARY_PATH = $NETE_WA_PATH
environment.CAPKIHOME = /<web_agent_home>/CAPKI
e.g.
environment.NETE_WA_PATH = /home/siteminder/CA/webagent/bin
environment.NETE_WA_ROOT = /home/siteminder/CA/webagent
environment.append.1.PATH = $NETE_WA_PATH
environment.append.1.LD_LIBRARY_PATH = $NETE_WA_PATH
environment.CAPKIHOME = /home/siteminder/CA/webagent/CAPKI
Feedback
Yes
No
Powered by
