APM OAM Simple transport security mode, to v11.1.2 OAM server
Am having trouble configuring an OAM AccessGate in "Simple" transport security mode. It works correctly when "Open" transport mode is used. And, after reconfiguring the accessgate on the OAM server to "Simple" mode, that accessgate works correctly when we configure a webgate on an Oracle HTTP Server (OHS) instance. But that same "Simple" mode accessgate doesn't work on the F5.
Our F5 is running 11.5.2 plain; the OAM server is at v11.1.2.
Is there anyone with a comparable configuration, operating successfully in "Simple" transport security mode? If so, can you share if there were any difficulties establishing the configuration, and if you need to do anything not described in the F5 integration guide for OAM? I have a support case open, but we haven't succeeded in fixing it yet, and am hoping for feedback from someone successful in this config.
One specific question - the OAM 11.1 integration guide for configuring a webgate on an OHS server has you copying the certificate/key, password.xml and ObAccessClient.xml files from the OAM server onto the OHS server. The F5 APM module, on the other hand, seems to always generate its own certificate for the Simple mode. The F5 guide has a similar copying step for Cert mode, but not Simple mode. I'm wondering if possibly Simple mode changed with OAM v11, and now we need to do that copying step on the F5 as well (e.g., maybe both side's certs need to be from the same Oracle built-in CA). So far, however, copying them into place in the /config/aaa/oam/Common tree (overlaying the F5-generated files) and restarting eam hasn't seemed to have any impact. Did anyone find they had to do such a copy-files-from-the-OAM-server for Simple mode, and if so, do you have a procedure for doing so?
ty!