CONFIGURING CROSS DOMAIN SECURITY WEB LOGIC 12C
Cross domain security create trust between multiple domains in a manner that a Weblogic domain can make calls and authenticate to another domain after trust has been establish between them.
My Current Environment Preview
- I have two Weblogic Domain running on two different Hosts
- Domain names are 1st domain cross_domain & 2nd domain wlsadmin
Steps To Configure Cross Domain Security:
-Login to First Domain in my case it is cross_domain as shown in below screenshot -Click on Lock & Edit -Click on your domain(cross_domain) -Click on General -Click on Security and last check Cross Domain Security Enabled. PERFORM SAME STEPS IN 2ND DOMAIN.
Save & Activate Change <- screenshot not provided –PERFORM SAME STEPS IN 2ND DOMAIN
Now we will create cross-domain Authenticated user: -Click on Security Realms from left panel -Click on myrealm –PERFORM SAME STEPS IN 2ND DOMAIN-Click on New -PERFORM SAME STEPS IN 2ND DOMAINI have created a user here in below screenshot. PERFORM SAME STEPS IN 2ND DOMAIN. The cross-domain Authenticated user you will create in 2nd domain doesn’t have to be same name as created in first domain. Now once we have created user, add the user to CrossDomainConnectors group as shown. Click on The user you just created in my case “cross_domain_user”. -PERFORM SAME STEPS IN 2ND DOMAINSelect Group Tab -PERFORM SAME STEPS IN 2ND DOMAINNow move the CrossDomainConnectors using arrow key to from left panel to the right as shown in below screenshot. -PERFORM SAME STEPS IN 2ND DOMAIN .save your changes -PERFORM SAME STEPS IN 2ND DOMAINNow in wlsadmin witch is my 2nd domain do credential mapping with the use of Use Cross-domain protocal : -Click on Security Realm, myrealm -Do The same steps in both domain. Enter the user credential that i created in 1st domain to the 2nd domain and the user i created in 2nd domain to the first. vice versa. –click Credential Mappings tab Click –new -select user cross-domain protocol and in *RemoteDomain: put first domain name that is in my case cross_domain -click Next -Do The same steps on the 1st domain
– Provide user credential of remote user. In my case user the user i created on remote machine is “cross_domain_user” and Click on Finish -Do The same steps on the 1st domain enter the user you created in 2nd domain.