# Step 2: Configure the Service Provider — Oracle Access Manager (OAM) ## Configure the Service Provider — Oracle Access Manager (OAM) Oracle Access Manager (OAM) will be configured through its web-based management console, referred to as the **OAM Console**.\ You can access it via the following URL (example):\ \&#xNAN;**`http://test.public.myvcn.oraclevcn.com:7001/oamconsole`** {% hint style="info" %} Note: This URL is provided as an example. Use the actual address of your OAM Console depending on your environment. {% endhint %} To log in, use the **WebLogic administrator account** (default username: `weblogic`) and the password provided during installation. *** ## **1. Enable Federation Services** * In the OAM Console, go to **Configuration > Available Services** * Click the **"Enable Service"** button next to **Identity Federation** * Make sure the service status changes to **"Enabled"**

***

*** ### **2. Configure HTTPS settings** * Navigate to **Configuration > Settings > Access Manager** * Update the required HTTPS parameters according to your environment\ \&#xNAN;*(refer to the relevant configuration screenshot, if available)*

***

### **3. Configure Federation Settings and Export Metadata** * Go to **Configuration > Settings > Federation** * Update the federation parameters as shown in the screenshot * Click **"Export SAML 2.0 Metadata…"** and save the file {% hint style="info" %} This metadata will be imported into **Hideez Enterprise Server (HES)** during Identity Provider (IdP) configuration. {% endhint %}

*** ### **4. Create Oracle Internet Directory (OID) Identity Store** * Navigate to **Configuration > User Identity Stores** This store will be used to authenticate and authorize users in **Oracle Business Intelligence Enterprise Edition (OBIEE)**.

* Click **"Create"** and provide the necessary connection details for **Oracle Internet Directory (OID)**

***

### **5. Create SAML 2.0 Service Provider** * Go to **Federation > Service Provider Management** * Click **"Create"** and fill in the required fields * Click **"Browse"** and select the **IdP metadata file** downloaded from HES * Click **"Authentication Scheme and Module"** to finalize the configuration

*** ### **6. Create OAM Agent and Application Domain for OBIEE** * Open an SSH session to the OAM host * Navigate to the following directory:\ `$OAM_HOME/idm/oam/server/rreg/input` * Create a file named `bi_sso.xml` with the required configuration (provided in the next section) ```xml http://test.public.myvcn.oraclevcn.com:7001 TEST_BI_HostId TEST_BI_OAM http://test.public.myvcn.oraclevcn.com:7777 TEST_BI_OAM open /analytics/saw.dll?Logoff /aps/SmartView/** /aps/SmartView/* /cds/** /cds/* /va/** /va* /dv/** /dv* /mobile/.../* /mobile/** /mobile* /bisearch/** /bisearch* /bicomposer/** /bicomposer* /mapviewer/mcsadmin/** /mapviewer/mcsadmin* /mapviewer/mapadmin/** /mapviewer/mapadmin* /mapviewer/console/** /mapviewer/console* /mapviewer/** /mapviewer* /xmlpserver/** /xmlpserver* /bicontent/** /bicontent* /analytics/jbips/** /analytics/jbips* /analytics/saw.dll/** /analytics/saw.dll* /essbase-webservices/** /essbase-webservices/* /essbase/agent/** /essbase/agent/* /aps/Essbase/** /aps/Essbase/* /mapviewer/wmts/** /mapviewer/wmts/* /mapviewer/wms/** /mapviewer/wms/* /mapviewer/mcserver/** /mapviewer/mcserver/* /mapviewer/foi/** /mapviewer/foi/* /mapviewer/dataserver/** /mapviewer/dataserver/* /aps/JAPI/** /aps/JAPI/* /aps/** /aps/* /analytics-ws/saw.dll/** /analytics-ws/saw.dll/* /analytics/** /analytics/* /biservices /analytics-bi-adf /xmlpserver/Guest /xmlpserver/ReportTemplateService.xls /xmlpserver/report_service /xmlpserver/services /analytics/saw.dll/wsdl /analytics-ws /ws/.../* /wsm-pm /wsm-pm/.../* HidFederationScheme SSLVerfifyHostname false SSLVerifyPeerCert false ``` ### 7. Register Oracle Access Manager (OAM) in Hideez Enterprise Server (HES) After you export the **SAML 2.0 metadata** from Oracle Access Manager (OAM), you need to create a corresponding Service Provider (SP) entry in the **Hideez Enterprise Server (HES)** to establish a trust relationship. Follow these steps: 1. **Log in** to the **Hideez Enterprise Server (HES)** as an administrator. 2. **Navigate** to **Settings > Parameters** in the left panel. 3. **Click** on the **SAML** widget in the right panel. 4. **Click** the **"Add Service Provider"** button. 5. **Upload** the **SAML 2.0 metadata file** that was previously exported from OAM. 6. **Provide** any additional required configuration details if prompted. 7. **Save** the new Service Provider configuration.