Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> RE: authenticate from Windows network account to backend Oracle database

RE: authenticate from Windows network account to backend Oracle database

From: Grant Allen <Grant.Allen_at_towersoft.com.au>
Date: Wed, 25 Aug 2004 09:16:03 +1000
Message-ID: <DCFC52557FAC7640A8782B13032B81B0373B63@bishopsfinger.towersoft.canberra> 





Yes, you can just do it through the sqlnet layer.



You'll need



In client sqlnet.ora files



        SQLNET.AUTHENTICATION_SERVICES=3D (NTS)


Other authent options can follow NTS, just make sure it's first in the =
parentheses.



In instance configuration (spfile or init.ora)



Either



        OS_AUTHENT_PREFIX =3D ""


Place whatever value you wish to prefix the usernames between the =
quotes. Leave the quotes empty for a null prefix.  This will allow =
"loose" external validation, where any matching user name will be =
allowed access (i.e. allows spoofing by LOCALMACHINE\username of =
DOMAIN\username accounts).



Or



        OSAUTH_PREFIX_DOMAIN =3D true



When used in conjunction with 'CREATE USER "DOMAIN\username" identified =
externally' will enforce "strict" external validation (i.e. avoids the =
spoofing problem of the first method).



Ciao


Fuzzy


:-)





"Everything you think, do, and say


 was in the pill you took today."




> -----Original Message-----

> From: oracle-l-bounce_at_freelists.org

> [mailto:oracle-l-bounce_at_freelists.org]On Behalf Of

> Paula_Stankus_at_doh.state.fl.us

> Sent: Wednesday, 25 August 2004 05:33

> To: oracle-l_at_freelists.org

> Subject: RE: authenticate from Windows network account to=20

> backend Oracle

> database


>=20
>=20




> Guys,


>=20




> I have this new request to accomplish this and I haven't done this =3D

> before.  Would I need to setup oracle internet directory to active =3D

> service directory?  If the user is using client-server tools=20

> and is not =3D

> going through 9ias - can I do this just through Net9?


>=20


> ----------------------------------------------------------------



> Please see the official ORACLE-L FAQ: http://www.orafaq.com

> ----------------------------------------------------------------

> To unsubscribe send email to:  oracle-l-request_at_freelists.org

> put 'unsubscribe' in the subject line.

> --

> Archives are at http://www.freelists.org/archives/oracle-l/

> FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html

> -----------------------------------------------------------------

>=20




Please see the official ORACLE-L FAQ: http://www.orafaq.com




To unsubscribe send email to:  oracle-l-request_at_freelists.org
put 'unsubscribe' in the subject line.

--
Archives are at http://www.freelists.org/archives/oracle-l/
FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html
-----------------------------------------------------------------


Received on Tue Aug 24 2004 - 18:14:47 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US