Which components are affected?
OAM, WebGate, EndpointsWhat is OAP/NAP Tunneling in OAM?
WebGate makes a Http Request to OAM using an OAP/NAP Call to OAM Proxy.How OAP/NAP Tunneling Works?
- The Tunneled URLs are configured on WebGate profile.
- This URL will be mapped to a servlet or JSP page in OAM server.
- On accessing the Tunneled URL, WebGate will intercept the request and the http request will be converted to a OAP request and will be forwarded to OAM server.
- OAM server (OAM proxy) will receive the OAP request and pass it to the Tunnel proxy.
- Tunnel proxy will convert the OAP request to HTTPServletRequest and invoke the servlet (compiled Servlet from JSP file in case of JSP).
- The response will be converted back to OAP message and will be passed back to OAP end point.
- WebGate converts the OAP message back to HTTP response.
- WebGate will provide the HTTP response to the caller (browser).
How do I configure NAP/OAP Tunneling in OAM?
Prerequisite: OAM R2PS2 WebGate or higher must be installed and configured with OAM R2PS2 or higher. The OAM endpoint(application) must be deployed on OAM Server.
- Install and configure OAM and WebGate.
- Deploy an endpoint (application JSP/Servlet) on OAM Server.
- Add user defined parameter in WebGate from OAM admin console, set TunneledUrls=/MyApp,MyApp1
- Set Public resource policy for /MyApp,MyApp1 urls (Tunneled urls) Authn and Authz in Application domain.
- You are now set, you can access the tunnel url using <WebGate Webserver Host>:<port>/MyApp.
Where can I use OAP/NAP Tunneling?
It can be used in DCC webGate for tunneling the ECC login servlets. It can be achieved by Setting TunneledUrls=/oam and Set Public resource policy for /oam url (Tunneled urls) Authn and Authz in Application domain. Update the DCC Authentication Scheme, set CHallenge redirect url with http://<DCC Host Name>:<Port>/oam/server/ and set Challenge Url with /pages/login.jsp.
Inetgration of OAM & OAAM, OAM OIM & OAM OIF using DCC.
Isn't it correct to say OAM tunnelling is a proxy?
Yes, it has limited proxy capability.Tunneling vs Proxy?
In my opinion, You should go for Tunneling if you have integration env of Oracle components like, OAAM,OIM, OIF.Proxy if you have your custom apps as endpoint.