OES Authorization Policies Created in APM Not Getting Evaluated For OIM. (Doc ID 1986702.1)

Last updated on NOVEMBER 08, 2016

Applies to:

Oracle Entitlements Server - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Goal

Usecase: Have extended the domain for the OIM domain and included the administration server for OES in the domain. In the APM console, not able to find the OIM application roles directly in this APM, so assigned OID as LDAP store to the OES APM console and this way could see the roles in OIM which were LDAP synced to OID as external roles in OIM. Then created the authorization policy for a role but its does not work. There seems to be no link between the extended APM and the OIM environment. OIM seems to be still picking up authorization policies from its internal OES engine and not the installed APM. Also even tried installing client SM module on the OIM server and then extended OIM domain with OES Client server to have a new managed server related to that, but with no success:


Steps to simulate problem :

1: Install OIM and create weblogic domain selecting OES with OIM.
2: Created authorization policies in OES.
3: Tried login with user in OIM. But OES authorization policies not getting evaluated.
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms