Re: Single Sign On - Really Password Synchronization

From: David Barbour <david.barbour1_at_gmail.com>
Date: Tue, 10 Mar 2015 15:35:16 -0500
Message-ID: <CAFH+ifdEG5K3xB5p9416Ov9JNCDPyqKHAmhUvaTObcHF6Zmg1w_at_mail.gmail.com>

It looks like Oracle Identity Manager is the product I'm looking for, but was hoping somebody would have some recommendation or experience regarding this?

On Tue, Mar 10, 2015 at 3:24 PM, David Barbour <david.barbour1_at_gmail.com> wrote:

> Thanks Mladen. Sigh....... I was trying to avoid having to set up Linux
> home directories. Nobody wants to have a different password for this. It's
> really not so much single sign-on as it will be password syncronization.
> Theoretically our support organization will be responsible for setup and
> maintenance, I'm trying to figure out how to do this with a minimum of
> moving parts, or at least keep it as simple as possible for the customers -
> which includes the support folks. Currently we've got Hitachi psync in
> place for synchronizing passwords but since we've never let individual
> users into the databases, it's not configured for Oracle. We could do
> that, but that's being replaced by Curion for user management and
> provisioning and they didn't buy any of the connection modules so using
> that is out. It's bad enough everybody is going to need an Oracle client.
> Theoretically our support organization will be responsible for setup and
> maintenance, I'm trying to figure out how to do this with a minimum of
> moving parts, or at least keep it as simple as possible for the customers -
> which includes the support folks. Additionally, our newly minted security
> requirements prohibit the use of Samba.
>
> On Tue, Mar 10, 2015 at 2:50 PM, Mladen Gogala <
> dmarc-noreply_at_freelists.org> wrote:
>
>> On 03/10/2015 03:44 PM, David Barbour wrote:
>>
>>> We're standing up an Enterprise Data Warehouse. Oracle 11.2.0.4 on RHEL
>>> 6.4. The business folks have decided they don't want to be 'locked in' to
>>> our standard reporting tool - Business Objects - and want to be able to log
>>> in 'seamlessly' (I think that means they'll want to use their Active
>>> Directory IDs and Passwords) from their desktops using any tool they might
>>> conceivably download, purchase or invent.
>>>
>>> Which Oracle Product these days accomplishes this? How have others
>>> handled this requirement?
>>>
>> Any product. You can have users identified externally and authenticate
>> Linux users automagically using AD:
>>
>> https://technet.microsoft.com/en-us/magazine/2008.12.linux.aspx
>>
>> --
>> Mladen Gogala
>> Oracle DBA
>> http://mgogala.freehostia.com
>>
>> --
>> http://www.freelists.org/webpage/oracle-l
>>
>>
>>
>

--
http://www.freelists.org/webpage/oracle-l

Received on Tue Mar 10 2015 - 21:35:16 CET

This message: [ Message body ]
Next message: MARK BRINSMEAD: "Re: Indexing a char column"
Previous message: David Barbour: "Re: Single Sign On"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message