Identity Management (MOSC)

MOSC Banner

OAM 11.1.2.2 application domain question

edited Feb 15, 2017 12:33PM in Identity Management (MOSC) 2 commentsAnswered ✓

Hello - wondering if someone could tell me if this is a possible set up. Two sites (mysite.mydomain and sso.mydomain) under one application domain. I've put the host names in the host identifiers. I'd like to go to sso.mydomain with it's own auth scheme with a higher level of authentication and authenticate, then be sent to mysite.mydomain which I should be able to navigate because it's auth scheme has a lower level of authentication.

We had already set this up, but if I authenticate at sso.mydomain then try to go to mysite.mydomain it results in a browser loop. It keeps requesting /oam/server/obrareq.cgi?encquery<string> and the string keeps changing. We were able to get the authentication level to work if we authenticate at mysite.mydomain/higherauth then go to mysite.mydomain/lowerauth, no problem. Sso and mysite are both in same domain, but they are separate "hosts" (different load balancer IPs, but proxy to same OHS (http) server). I thought OAM wouldn't care if they are in the same application domain, same web gate. Any idea what I'm missing?

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center