OPSS - How to Change JDBC URL from Single DB Node Instance to the DB Scan Address in OPSS Configuration File and WLS Configuration Files
(Doc ID 2111632.1)
Last updated on MAY 17, 2023
Applies to:
Oracle Platform Security for Java - Version 11.1.2.2.0 and laterOracle WebLogic Server - Version 12.2.1.2.0 to 12.2.1.2.0 [Release 12c]
Information in this document applies to any platform.
Goal
In OAM 11.1.2.2.0 configured OAM domain security policy store associated to an Oracle Database utilizing a Multi-Datasource RAC setup. The Multi-Datasource has four different database connections.
If for any reason this particular Database instance (the one defined in the jps-config.xml) is down, the IAM/OAM servers cannot be started and won't work until we bring up the specified DATABASE Instance:
<property name ="jdbc.url" value="jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(PROTOCOL=TCP)(HOST=<HOSTNAME>)(PORT=<PORT>)))(CONNECT_DATA=(SERVICENAME=<SERVICENAME>)(INSTANCE_NAME=<INSTANCENAME>)))"/> =======> This line in particular.
<property name="oracle.security.jps.farm.name" value="cn=IAM"/>
<property name="server.type" value="DB_ORACLE"/>
<property name="oracle.security.jps.ldap.root.name" value="cn=jpsroot"/>
<property name="jdbc.driver" value="oracle.jdbc.OracleDriver"/>
<property name="bootstrap.security.principal.map" value="BOOTSTRAP_JPS"/>
<property name="bootstrap.security.principal.key" value="bootstrap_<ENCRYPTED_TEXT>"/>
<property name="datasource.jndi.name" value="jdbc/OPSSDBDS"/>
<property name="oracle.security.jps.db.useDSAdminMapKey" value="true"/>
</propertySet>
So, if OPSS repository is a RAC database, then that line can be set to the correct URL setting all corresponding scan servers.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Goal |
| Solution |