Re: Single Sign On

From: David Barbour <david.barbour1_at_gmail.com>
Date: Tue, 10 Mar 2015 15:24:28 -0500
Message-ID: <CAFH+iff-A6z-FEYpYDzY3O3d6Sx06yuqobZxhbSwLRgMujHQrw_at_mail.gmail.com>

Thanks Mladen. Sigh....... I was trying to avoid having to set up Linux home directories. Nobody wants to have a different password for this. It's really not so much single sign-on as it will be password syncronization. Theoretically our support organization will be responsible for setup and maintenance, I'm trying to figure out how to do this with a minimum of moving parts, or at least keep it as simple as possible for the customers - which includes the support folks. Currently we've got Hitachi psync in place for synchronizing passwords but since we've never let individual users into the databases, it's not configured for Oracle. We could do that, but that's being replaced by Curion for user management and provisioning and they didn't buy any of the connection modules so using that is out. It's bad enough everybody is going to need an Oracle client. Theoretically our support organization will be responsible for setup and maintenance, I'm trying to figure out how to do this with a minimum of moving parts, or at least keep it as simple as possible for the customers - which includes the support folks. Additionally, our newly minted security requirements prohibit the use of Samba.

On Tue, Mar 10, 2015 at 2:50 PM, Mladen Gogala <dmarc-noreply_at_freelists.org> wrote:

> On 03/10/2015 03:44 PM, David Barbour wrote:
>
>> We're standing up an Enterprise Data Warehouse. Oracle 11.2.0.4 on RHEL
>> 6.4. The business folks have decided they don't want to be 'locked in' to
>> our standard reporting tool - Business Objects - and want to be able to log
>> in 'seamlessly' (I think that means they'll want to use their Active
>> Directory IDs and Passwords) from their desktops using any tool they might
>> conceivably download, purchase or invent.
>>
>> Which Oracle Product these days accomplishes this? How have others
>> handled this requirement?
>>
> Any product. You can have users identified externally and authenticate
> Linux users automagically using AD:
>
> https://technet.microsoft.com/en-us/magazine/2008.12.linux.aspx
>
> --
> Mladen Gogala
> Oracle DBA
> http://mgogala.freehostia.com
>
> --
> http://www.freelists.org/webpage/oracle-l
>
>
>

--
http://www.freelists.org/webpage/oracle-l

Received on Tue Mar 10 2015 - 21:24:28 CET

This message: [ Message body ]
Next message: David Barbour: "Re: Single Sign On - Really Password Synchronization"
Previous message: Mladen Gogala: "Re: 20 TB Bigfile"
In reply to: Mladen Gogala: "Re: Single Sign On"
Next in thread: Job Miller: "Re: Single Sign On"
Reply: Job Miller: "Re: Single Sign On"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message