OES Authorization Policies Created in APM Not Getting Evaluated For OIM.
Last updated on NOVEMBER 08, 2016
Applies to:Oracle Entitlements Server - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
Usecase: Have extended the domain for the OIM domain and included the administration server for OES in the domain. In the APM console, not able to find the OIM application roles directly in this APM, so assigned OID as LDAP store to the OES APM console and this way could see the roles in OIM which were LDAP synced to OID as external roles in OIM. Then created the authorization policy for a role but its does not work. There seems to be no link between the extended APM and the OIM environment. OIM seems to be still picking up authorization policies from its internal OES engine and not the installed APM. Also even tried installing client SM module on the OIM server and then extended OIM domain with OES Client server to have a new managed server related to that, but with no success:
Steps to simulate problem :
1: Install OIM and create weblogic domain selecting OES with OIM.
2: Created authorization policies in OES.
3: Tried login with user in OIM. But OES authorization policies not getting evaluated.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms