1. Billing Care Installation Guide
  2. Billing Care Preinstallation Tasks

4 Billing Care Preinstallation Tasks

Learn about prerequisite tasks, such as installing your Oracle database, that you perform before installing the Oracle Communications Billing Care software.

Topics in this document:

Overview of Production Preinstallation Tasks

In production installations, the Billing Care installer deploys Billing Care on a running Oracle Platform Security Services (OPSS) JRF-enabled domain. The installer assumes that the following required software preinstallation tasks, including applying patches and workarounds, have already been completed successfully.

Note:

A test installation without OPSS security can be performed on a basic WebLogic domain. Do not use a test installation in production.

Preinstallation tasks for Billing Care consist of the following steps:

  1. Installing and Configuring Oracle Enterprise Database

  2. Installing and Configuring Oracle WebLogic Server

  3. (Optional) Installing and Configuring Oracle Unified Directory

  4. (Optional) Installing and Configuring Oracle Access Management

  5. (Optional) Installing and Configuring Oracle Identity Governance

Installing and Configuring Oracle Enterprise Database

Billing Care requires Oracle Enterprise Database for storing authentication and authorization policies and user information. If you are using Oracle Identity Management (IDM) for user authentication and authorization, you must install the database before you install and deploy IDM components.

Oracle recommends that an experienced database administrator install and configure your database. To install and configure Oracle Database, see the Oracle Database installation documentation at: https://docs.oracle.com/en/database/.

Installing and Configuring Oracle WebLogic Server

Billing Care requires a JRF-enabled WebLogic Server domain for deploying Billing Care. You must download and install Oracle WebLogic Server using the Fusion Middleware Infrastructure installer.

If you are using IDM for user authentication and authorization, download and install WebLogic Server before installing IDM.

See Installing and Configuring Oracle WebLogic Server and Coherence for information about installing WebLogic Server.

In a production environment, Oracle recommends using the SSL protocol for sending and receiving messages

For more information about configuring SSL in WebLogic Server, see "Configuring SSL" in Administering Security for Oracle WebLogic Server.

Billing Care supports TLS versions 1.2 (all 15.0 releases) and 1.3 (Release 15.0.1 or later). For information about setting the protocol version, see "Specifying the SSL/TLS Protocol Version" in Administering Security for Oracle WebLogic Server.

Configuring the OPSS JRF-Enabled Billing Care Application Domain

You deploy Billing Care on a JRF-enabled Oracle WebLogic Server domain configured as an Oracle Platform Security Services (OPSS) client domain. Create a JRF-enabled domain in Oracle WebLogic Server and configure an application domain policy that controls access to the Billing Care application.

For creating the domain and configuring the domain policy, see in "Configuring the Oracle Fusion Middleware Infrastructure Domain" in Oracle Fusion Middleware Installing and Configuring the Oracle Fusion Middleware Infrastructure.

Installing and Configuring Oracle Unified Directory

Download and install the Oracle Unified Directory software. For more information, see "Installing the Oracle Unified Directory Software" in Oracle Fusion Middleware Installing Oracle Unified Directory.

Configuring Oracle Unified Directory as Authentication Provider

After installing OUD, configure the OPSS Administration Server to use OUD as the authentication provider.

See "Configuring Authentication Providers" in Oracle Fusion Middleware Administering Security for Oracle WebLogic Server for information on setting up OUD as your authentication provider.

See "Introduction to Oracle Unified Directory" in Oracle Fusion Middleware Administering Oracle Unified Directory for information on setting up OUD, including how to synchronize OUD with existing directories that you may already have.

Installing and Configuring Oracle Access Management

Download and install the Oracle Access Management (OAM) software. For more information, see the information about installing and configuring Oracle Access Management at:

https://docs.oracle.com/en/middleware/idm/suite/12.2.1.4/index.html

Configuring the Oracle Access Manager Billing Care Application Domain

Create a Billing Care application domain in Oracle Access Manager (OAM) and configure an application domain policy that controls access to the Billing Care application.

To create your Billing Care application domain in OAM, complete the following steps:

  1. Creating the Billing Care Application Domain

  2. Defining Billing Care Resources

  3. Configuring Billing Care Authentication Modules

  4. Creating a Billing Care Authentication Scheme

  5. Creating the Billing Care Authentication Policy and Adding Resources

  6. Creating the Billing Care Authorization Policy and Adding Resources

  7. Configuring and Restarting the Oracle HTTP Server

For more information about application domains and policies, see Oracle Fusion Middleware Administering Oracle Access Management.

Creating the Billing Care Application Domain

To create the Billing Care application domain:

  1. Log in to your OAM web console at http://hostname:port/oamconsole, where hostname and port are the server name or IP address and port for your OAM instance.

  2. Click Application Domains in the Access Manager frame.

  3. Click Create Application Domain.

  4. In the Name field, enter a name for your application domain.

  5. (Optional) Provide Description, Session Idle Timeout (minutes), Allow OAuth Token, and Allow Session Impersonation values.

  6. Click Apply.

    The Billing Care application domain is created.

See "Creating a New Application Domain" in Oracle Fusion Middleware Administering Oracle Access Management for more information.

Defining Billing Care Resources

Define the /bc**, /bc*, and /** resources for your Billing Care application domain. Repeat steps 1 through 4 for each of these resources.

To define Billing Care resources in your Billing Care application domain:

  1. Click Application Domains in the Access Manager frame.

  2. Click the link for your Billing Care application domain.

    The Summary tab for your Billing Care application domain is shown.

  3. Click the Resources tab.

  4. Enter or select the following values listed in Table 4-1.

    Table 4-1 Billing Care Protected Resource Creation Values

    Field Value

    Type

    HTTP

    Description

    (Optional) Enter text description

    Host Identifier

    IAMSuiteAgent

    Protection Level

    Protected

    Authentication Policy

    Protected Policy

    Resource URL (String)

    /bc**, /bc*, or /**

Define an excluded resource for /fav.ico.

To define the excluded resource, repeat steps 1 through 4 using the values listed in Table 4-2.

Table 4-2 Billing Care Excluded Resource Creation Values

Field Value

Type

HTTP

Description

(Optional) Enter text description

Host Identifier

IAMSuiteAgent

Protection Level

Excluded

Resource URL (String)

/favicon.ico

See "Adding and Managing Policy Resource Definitions" in Oracle Fusion Middleware Administering Oracle Access Management for more information on creating resources in OAM console.

Configuring Billing Care Authentication Modules

Create an OIMIDStore authentication model in OAM for authenticating Billing Care users.

To create the required authentication model in OAM:

  1. Click Authentication Modules in the Access Manager frame.

    The Authentication Modules node is shown.

  2. Click the Create Authentication Module menu and select Create LDAP Authentication Module.

  3. In the Name field, provide a name for your authentication module.

  4. In User Identity Store, select OIMIDStore.

  5. Click Apply.

See "Managing Native Authentication Modules" in Oracle Fusion Middleware Administering Oracle Access Management for more information on creating an authentication module in OAM console.

Creating a Billing Care Authentication Scheme

The authentication module you previously created must be added to an authentication scheme in your Billing Care application domain.

To create an authentication scheme and add the authentication module to it:

  1. Click Authentication Schemes in the Access Manager frame.

    The Authentication Schemes node is shown.

  2. Click Create Authentication Scheme.

  3. Enter or select the following values listed in Table 4-3.

    Table 4-3 Billing Care Authentication Scheme Creation Values

    Field Value

    Name

    Billing Care LDAP Scheme name

    Description

    (Optional) Enter text description

    Authentication Level

    2

    Challenge Method

    FORM

    Challenge Redirect URL

    /oam/server

    Authentication Module

    Select the authentication module created in the previous step

    Challenge URL

    /pages/login.jsp

    Context Type

    default

    Context Value

    /oam

  4. Click Apply.

See "Creating an Authentication Scheme" in Oracle Fusion Middleware Administering Oracle Access Management for more information.

Creating the Billing Care Authentication Policy and Adding Resources

Create an authentication policy that the Billing Care application domain uses to manage the resources, authentication module, and authentication scheme previously created.

To create an authentication policy:

  1. Click Application Domains in the Access Manager frame.

    The Application Domain tab is shown.

  2. In the Search field, enter the name of your Billing Care application domain and press enter.

  3. In Search Results, click the name of your Billing Care application domain.

  4. Click the Authentication Policies tab.

    The Authentication Policy node is shown.

  5. Click Create Authentication Policy.

  6. Enter or select the following values listed in Table 4-4.

    Table 4-4 Billing Care Authentication Policy Creation Values

    Field Value

    Name

    Billing Care authentication policy name

    Description

    (Optional) Enter text description

    Authentication Scheme

    Select the authentication scheme created in the previous step

  7. Click Apply.

To add your Billing Care resources to your authentication policy:

  1. In the Authentication Policy node for your previously created policy, click the Resources tab.

  2. Click Add.

  3. Select all of the Billing Care resources created in "Defining Billing Care Resources".

  4. Click Apply.

See "Defining Authentication Policies for Specific Resources" in Oracle Fusion Middleware Administering Oracle Access Management for more information on creating an authentication policy and adding resources in OAM console.

Creating the Billing Care Authorization Policy and Adding Resources

Create an authorization policy and add resources to this policy for the Billing Care application domain.

To create the Billing Care application domain authorization policy:

  1. Click Application Domains in the Access Manager frame.

    The Application Domain tab is shown.

  2. In the Search field, enter the name of your Billing Care application domain and press enter.

  3. In Search Results, click the name of your Billing Care application domain.

  4. Click the Authorization Policies tab.

  5. Enter or select the following values listed in Table 4-5.

    Table 4-5 Billing Care Authorization Policy Creation Values

    Field Value

    Name

    Billing Care authorization policy name

    Description

    (Optional) Enter text description

    Success URL

    The redirect URL to be used upon successful authorization

    Failure URL

    The redirect URL to be used upon failed authorization

  6. Click Apply.

  7. Click the Resources tab.

  8. Click Add.

  9. Select all of the Billing Care resources created in "Defining Billing Care Resources".

  10. Click Apply.

See "Creating an Authorization Policy and Specific Resources" in Oracle Fusion Middleware Administering Oracle Access Management for more information on creating an authorization policy and adding resources in OAM console.

Configuring and Restarting the Oracle HTTP Server

After configuring the required Billing Care OAM components, edit the Oracle HTTP Server (OHS) idm.conf file in your OAM instance to specify the handler, host, and port for the /bc resource. Restart your OHS instance after editing this file.

To configure the /bc resource in the OHS idm.conf file:

  1. Open a secure shell or terminal window to your OAM host as a user with administrative permissions.

  2. Change to the Middleware_home/config/OHS/OHS_Instance/moduleconf directory, where Middleware_home is the middleware home directory of the OAM WebLogic Server instance and OHS_Instance is the OHS instance where OAM is hosted.

  3. Append the following entry into the idm.conf file before the </VirtualHost> closing tag: 

    <Location /bc>
     SetHandler weblogic-handler
     WebLogicHost host name or IP address of your OPSS Administration Server
     WeblogicPort port number the WebLogic host is listening on
</Location>

  4. Save the file.

  5. Change to the OHS_home/bin directory, where OHS_home is the Oracle home directory of your OHS installation.

  6. Restart OHS with the following commands:

    ./opmnctl status

    ./opmnctl stopall

    ./opmnctl startall

See "Using the idm.conf File" in Oracle Fusion Middleware Integration Guide for Oracle Identity Management Suite for more information on the OHS idm.conf file.

Installing and Configuring Oracle Identity Governance

Download and install the Oracle Identity Governance software. For more information, see the information about installing and configuring Oracle Identity Governance at:

https://docs.oracle.com/en/middleware/idm/suite/12.2.1.4/index.html.