OPSS - How to change JDBC url from single db node instance to the DB scan address in the jps-config.xml

(Doc ID 2111632.1)

Last updated on SEPTEMBER 05, 2017

Applies to:

Oracle Platform Security for Java - Version and later
Information in this document applies to any platform.


In OAM configured OAM domain security policy store associated to an Oracle Database utilizing a Multi-Datasource RAC setup. The Multi-Datasource has four different database connections.

If for any reason this particular DB instance (the one defined in the jps-config.xml) is down, the IAM/OAM servers cannot be started and won't work until we bring up the specified DB Instance:

<propertySet name="props.db1">
<property name ="jdbc.url" value="jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(PROTOCOL=TCP)(HOST=hostname)(PORT=port)))(CONNECT_DATA=(SERVICENAME=servicename)(INSTANCE_NAME=instancename)))"/>   =======> This line in particular.
<property name="oracle.security.jps.farm.name" value="cn=IAM"/>
<property name="server.type" value="DB_ORACLE"/>
<property name="oracle.security.jps.ldap.root.name" value="cn=jpsroot"/>
<property name="jdbc.driver" value="oracle.jdbc.OracleDriver"/>
<property name="bootstrap.security.principal.map" value="BOOTSTRAP_JPS"/>
<property name="bootstrap.security.principal.key" value="bootstrap_hk/xxxxxxxxxxxxxxx"/>
<property name="datasource.jndi.name" value="jdbc/OPSSDBDS"/>
<property name="oracle.security.jps.db.useDSAdminMapKey" value="true"/>

So, if OPSS repository is a RAC database, then that line can be set to the correct URL setting all corresponding scan servers.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms