SSO/OID integration in R12

I happen to integrate R12 new environment with OID/SSO recently, Here is the information on that. In R12 the registration of R12 with SSO/OID becomes much simple.

Prerequisites:

* R12 Environment
* 10g R2 AS server Infrastructure - standalone installation (not 10.1.2/10.1.3 ORACLE HOMES come with R12, its a separate installation)

Metalink Note to be followed:

376811.1

Steps:

Since SSO integration patch is part of R12 (maintenance pack - 4440000 patch), you need not have to apply any patch in Linux based environment. (Please check for other platforms before carrying out integration)

step 1) Register ORACLE_HOME

$FND_TOP/bin/txkrun.pl \
-script=SetSSOReg \
-registerinstance=yes

  • Registers AS 10.1.3 Oracle Home in OID before SSO or OID registration.
  • 10.1.3 Oracle Home registration will happen only once per E-Business Suite deployment including multinode deployments. In multi node configuration it can be done on any node.


step2)
Register with SSO as partner application

$FND_TOP/bin/txkrun.pl \
-script=SetSSOReg \
-registersso=yes
  • Creates a single SSO partner application
  • Listener Token is set to the site level value of profile option, Applications Database ID (APPS_DATABASE_ID)

step
3) Register with OID

$FND_TOP/bin/txkrun.pl \
-script=SetSSOReg \
-registeroid=yes

  • Registers E-Business Suite with OID using the ProvBiDirection.tmp provisioning profile. This will enable Bidirectional user synchronization with user creation.
What you need to know in AS?

1) LDAP host (where infrastructure presents)
2) LDAP Port (both SSL/non SSL)
3) orcladmin password
4) AS Version must be 10.1.2.0.2

Metalink note is clear and concise.

I have done the integration in cloned instance. I had issues doing the integration. Remove References section of the note helped me to resolve the issue.

$FND_TOP/bin/txkrun.pl \
-script=SetSSOReg \
-removereferences=Yes

  • It validates the arguments
  • It removes the Oracle Home Instance preferences, SSO Preferences and Site level profiles, and OID preferences from E-Business Database.
R12 made Apps DBA's job easier. Stay Tuned for the next update in R12.

7 comments:

Anonymous said...

Nice one Suresh. I commented on your earlier post too. Continue your efforts.

Thanks,
Arun

Anonymous said...

Nice info Suresh,

All the Best

Yusuf

Sandeep Kancharla said...

hi,
we are planning to implement SSO/OID in 11i.
DO we need a seperate database to implement SSO for EBS 11i & R12 as well... please let me know..Thank You.

Suresh Lakshmanan said...

Hi Sandeep,

Yes, you would need to have infra tier database(MDR db).
i have seen impletations having separate OID database.

Suresh

Anonymous said...

Hi Suresh.
Thanks for ur effort.Keep updating the blog always.All your posts are really very helpfull.We have faced a issue on de registering SSO like javax.naming.CommunicationException: returnInitialLdapContext() times out after 10000 ms - JNDI initialization method not returning
at oracle.ldap.util.jndi.ConnectionUtil.returnInitialLdapContext(ConnectionUtil.java:483)
at oracle.ldap.util.jndi.ConnectionUtil.getDefaultDirCtx(ConnectionUtil.java:134)in R12.
Can u please help me out of this.

Suresh Lakshmanan said...

Please create oracle SR. I haven't seen this error before.

Mike said...

Great Post!!! I have read your blog and it's very informative & really impressed .Thanks for sharing it. Keep continue your post... We are planning to implement Oracle EBS LDAP SSO Integration, Any recommendations pls...