Monday, August 10, 2015

Upgrade Oracle Identity & Access Management (IDM) to 11g R2 PS3 (11.1.2.3) from 11.1.2.2

Oracle Identity & Access Management 11g R2 PS3 (11.1.2.3) was released on 18th May 2015. It was recently certified by Oracle with E-Business suite 12.1.3 and 12.2 - Steven Chan's blog

The software components that need to be upgraded:

Oracle Fusion Middleware Web Tier utilities 11g Patch Set 7 (11.1.1.9.0) -- OHS (Download from Delivery)
OID -11.1.1.9 - Patch 20995629: ORACLE IDENTITY MANAGEMENT 11G PATCH SET 7 (11.1.1.9.0)
OAM-11.1.2.3 - Patch 20996201: ORACLE IDENTITY AND ACCESS MANAGEMENT (11.1.2.3.0)
Webgate-11.1.2.3 - Patch 20996156: ORACLE ACCESS MANAGER WEBGATES (11.1.2.3.0)

Upgrade approach:

  • Upgrade weblogic server to 10.3.6 if not at this version.
  • Upgrade oracle internet directory to 11.1.1.9
  • Upgrade the OID schema using the Patch Set Assistant utility (PSA).
  • Apply the patch Patch 20742077: TECHPLAT: THE PROVISIONING FROM OID TO APPS DOES NOT WORK IN OID 11.1.1.9 RC3
  • Upgrade Oracle Access Manager 11.1.2.3
  • Upgrade the Oracle Access Manager schema - upgrade OAM Schema, OPSS Schema and IAU Schema with PSA.
  • Upgrade the MDS schema again with the PSA
  • Upgrade the Platform Security Services
  • Un-deploy Coherence 3.7.1.1 Library
  • use the upgradeConfig to upgrade the security config.
    • There were a few errors reported while executing the command upgradeConfig.
    • Remove javax.xml.bind_2.1.1.jar file from$MW_HOME/jdk/jre/lib/endorsed/
    • Remove jar files "coherence.jar" and "tangosol.jar" from $M_HOME/iam/oam/server/lib/jmx/
    • After running the command"
    • Note: Rename the jmx folder and copy the jmx from $STAGE/Disk2/stage/Components/oracle.oam.server/11.1.2.3.0/1/DataFiles/Expanded/server/lib/jmx to $MW_HOME/iam/oam/server/lib
    • Restore the javax.xml.bind_2.1.1.jar from the backup
  • Upgrade Webgate
  • Upgrade OHS
Note: the jps_mbeans.xml was corrupted and had to be restored from the backup.

Note: Restart the server from the Unix console and not from the graphical /console.
Follow the metalink id: Oracle Access Management 11gR2 PS3 (11.1.2.3) Upgrade Advisor (Doc ID 2001106.2)
Oracle Access Manager 11gr2ps3 (OAM 11.1.2.3.0) Keberos/WNA Authentication Fails "User account is locked. Contact the Administrator" (Doc ID 2039164.1)




1 comment:

Oracle Fusion said...

This is really too useful and has more ideas from your blog. Keep sharing many techniques. We are waiting for your new blog and for useful information.
Oracle Fusion HCM Technical Online Training