Oracle Fusion Middleware

Oracle Identity & Access Management

Archive for the ‘Oracle Web Cache’ Category

Standalone Webcache Upgrade Instructions

Posted by ajaybabu007 on August 24, 2012

Webcache upgrade instructions

1) Stop the existing webcache instance
2) Create a new directory mkdir /app/backup
3) mv /app/webtier /app/backup
4) cd /app/tmp
5) Extract the software binary by unzip ofm_webtier_111120_disk1.zip
6) Ensure ORACLE_HOME and ORACLE_INSTANCE environment variables aren’t set: env | grep ORACLE
7) mkdir /app/etc if it doesn’t exists
8) Find oraInst.loc file and copy to the /app/etc folder
inventory_loc=/app/oraInventory
inst_group=oracle

9) cd /app/tmp/webcahce11120/Disk1
10) Execute the below installer command which is done through silent mode
./runInstaller -silent -invPtrLoc /etc/oraInst.loc -responeFile /app/tmp/install.rsp

11) Create a new Oralce instance for Webcache
cd /app/webtier/webcache/opmn/bin
./opmnctl createinstance -oracleInstance /app/webcacheajay -adminRegistration OFF

12) Now create the webcache components from newly created Oracle instance location
cd /app/webacacheajay/bin
./opmnctl createcomponent -componentName webache -componentType WebCache

13) As Root:
Execute ./webcache_setuser.sh setroot oracle

14) Find and Navigate to webcache.xml. Edit with the below instructions:
Under add

15) In the same file the copy and paste the contents of xml tags such as “SITE”, “HOST”,”VIRTUALHOSTMAP”,”LISTEN” sections of backed up webcache.xml to new webcache.xml
Add the below entry after MULTIPORT end tag. to disable IPV6

16) Change the location of security wallet which is referred in webcache.xml
17) Save the changes to the file
18) Start the Webcache component and test the applicaiton

19) Extract the software binary by unzip ofm_webtier_111150_disk1.zip
20) cd /app/tmp/webcahce11150/Disk1
21) Execute the below installer command which is done through silent mode
./runInstaller -silent -invPtrLoc /etc/oraInst.loc -responeFile /app/tmp/patch.rsp

22) Re-Run ./webcache_setuser.sh as root user.

23) Restart the webcache components using opmnctl utility.

install.rsp
============
[ENGINE]

Response File Version=1.0.0.0.0

[GENERIC]

INSTALL AND CONFIGURE TYPE= false

INSTALL AND CONFIGURE LATER TYPE= true

ORACLE_HOME=/app/webtier/webcache

MIDDLEWARE_HOME=/app/webtier

MYORACLESUPPORT_USERNAME=

MYORACLESUPPORT_PASSWORD=

DECLINE_SECURITY_UPDATES= true

SECURITY_UPDATES_VIA_MYORACLESUPPORT=false

PROXY_HOST=

PROXY_PORT=

PROXY_USER=

PROXY_PWD=

[SYSTEM]

[APPLICATIONS]

[RELATIONSHIPS]

patch.rsp
===========

[ENGINE]

Response File Version=1.0.0.0.0

[GENERIC]

INSTALL AND CONFIGURE TYPE= false

INSTALL AND CONFIGURE LATER TYPE= true

ORACLE_HOME=/app/webtier/webcache

MIDDLEWARE_HOME=/app/webtier

MYORACLESUPPORT_USERNAME=

MYORACLESUPPORT_PASSWORD=

DECLINE_SECURITY_UPDATES= true

SECURITY_UPDATES_VIA_MYORACLESUPPORT=false

PROXY_HOST=

PROXY_PORT=

PROXY_USER=

PROXY_PWD=

COLLECTOR_SUPPORTHUB_URL=

CONFIG_WIZARD_RESPONSE_FILE_LOCATION=0

[SYSTEM]

[APPLICATIONS]

[RELATIONSHIPS]

Posted in Oracle Web Cache | Leave a Comment »

Increase event_log verbosity Oracle WebCache

Posted by ajaybabu007 on June 13, 2011

There are many possible ways to increase event_log verbosity to DEBUG:

First, using Application Server Control Console:

  1. Navigate to Web Cache Home page
  2. Navigate to Administration tab > Properties > Web Cache > Logging.
  3. Change Logging Level to Debug
  4. Un-check Buffer in Memory check box to disable buffering when you need to see the event log results immediately.
  5. Click OK

Second, using OracleAS Web Cache Manager:

  1. In the navigator frame, select Logging and Diagnostics > Event Logs.
  2. From the Cache-Specific Event Log Configuration table, select a cache, and then click Edit Selected.
  3. In the Buffering field, select Disabled to disable buffered logging. Oracle recommends disabling buffering when you need to see the event log results immediately.
  4. from the Verbosity list, select the DEBUG level.
  5. Click Submit.
  6. In the OracleAS Web Cache Manager main window, choose Apply Changes.

Third, by editing webcache.xml file:

  1. Backup the file $ORACLE_HOME/webcache/webcache.xml
  2. Edit the file webcache.xml and change the following lines
<EVENTLOGDIR LOGDIR="ORACLE_HOME/webcache/logs/" BUFFERENABLED="YES" BUFFERSIZE="2048" FLUSHINTERVAL="10" Key="LOGDIR">
<VERBOSITY LEVEL="WARNING"/>

to be:

<EVENTLOGDIR LOGDIR="ORACLE_HOME/webcache/logs/" BUFFERENABLED="NO" BUFFERSIZE="2048" FLUSHINTERVAL="10" Key="LOGDIR">
<VERBOSITY LEVEL="DEBUG"/>

 

Posted in Oracle Web Cache | Leave a Comment »

Controlling the Server Header with Oracle HTTP Server and Oracle Web Cache 11g

Posted by ajaybabu007 on June 1, 2011

Problem:  The majority of Web Servers (whether Oracle or non-Oracle) return HTTP Header information by default can be tracked using Mozilla LiveHttpHeaders, IE HttpHeaders and so on, which includes information about the vendor and version. This issue can be detected while performing the security penetration tools.

Example “Server:” header returned by Oracle Application Server 11g Release  Oracle Web Cache used with the Oracle HTTP Server:
                    Server: Oracle-Application-Server-11g/Oracle Web-Cache-11g/11.1.1.1.0 (N;ecid=104327518477,0)

In order to avoid such kind of server header information at browser level. Please follow the below steps:

Solution:

Step 1) In Oracle HTTP Server 11g, the ServerHeader directive is no longer available. An error like the following may be seen when attempting to configure:

Syntax error on line 687 of /u01/middleware/instances/FRinst1/config/OHS/ohs1/httpd.conf:
Invalid command ‘ServerHeader’, perhaps misspelled or defined by a module not included in the server configuration

Until such time, it is recommended to use the ServerTokens in the httpd.conf as follows, where “Prod” shows the least amount of details:

ServerTokens Prod

Within the same area of concern is the ServerSignature directive, which adds a line containing the server version and virtual host name to server-generated pages (internal error documents, FTP directory listings, mod_status and mod_info output etc., but not CGI generated documents or custom error documents). Set to “EMail” to also include a mailto: link to the ServerAdmin. Set to one of: On | Off | EMail

ServerSignature Off

 Step 2) Server Header for Oracle Web Cache 11g (11.1.1): It is not possible to customize the “Server:” header information returned by Oracle Web Cache. It is possible to remove the server header. The following configuration steps are available:

a. Stop Oracle Web Cache and backup the file, ORACLE_HOME/webcache/webcache.xml

b. Open the webcache.xml in a text editor, and add a SERVERTOKENS entry within the SECURITY container xml tags, as shown below:

<SECURITY>


<HTTPREQUEST MAXTOTALHEADERSIZE=”819000″
MAXSINGLEHEADERSIZE=”8152″/>
<SERVERTOKENS LEVEL=”NONE”/>
</SECURITY>

c.Start Oracle Web Cache.

d. Use a header tool of choice (mentioned above) to view and confirm the “Server:” header is no longer passed

 

Posted in OHS Web Servers, Oracle Web Cache | 2 Comments »

SSL Termination

Posted by ajaybabu007 on January 7, 2011

For configuring  the SSL Termination communicating from Webcache (DMZ layer) to communicating with various target web servers (Presentation layer) OHS 11g, Apache 2.x versions and so on. Please add the below additional settings to the target Webserver httpd.conf and restart the same.

For OHS11g

LoadModule certheaders_module “{ORALCE_HOME}/ohs/modules/mod_certheaders.o”

AddCertHeader HTTPS

SimulateHttps On

Posted in OHS Web Servers, Oracle Web Cache | 1 Comment »

 
Follow

Get every new post delivered to your Inbox.