Re: Single Sign On
Date: Tue, 10 Mar 2015 18:32:14 -0400
Message-ID: <CAPptggWzvccwrk6BiJ=EbvUbiKt9_gwn9MVos38KJPPBaZeBJw_at_mail.gmail.com>
Good luck with that on 11.2.0.4.
Install a 12.1.0.1 client on the DC to actually get the oracle context created.
Alternatively get work to pickup your new hat collection to keep brain from freezing.
On Mar 10, 2015 6:28 PM, "Job Miller" <dmarc-noreply_at_freelists.org> wrote:
> https://docs.oracle.com/cd/E11882_01/win.112/e10845/authen.htm
>
> Windows Native Authentication Overview
> Oracle Database can use Windows user login credentials
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i433015>
> to authenticate
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i432183> database
> users. Benefits include:
>
> - Enabling users to connect to Oracle Database without supplying a
> username
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i432581> or
> password
> - Centralizing Oracle Database user authentication and role
> authorization
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i432948> information
> in Windows, which frees Oracle Database from storing or managing user
> passwords or role
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i432481>
> information
>
> The Windows native authentication adapter (automatically installed with Oracle
> Net Services
> <https://docs.oracle.com/cd/E11882_01/win.112/e10845/glossary.htm#i433200>)
> enables database user authentication through Windows. This enables client
> computers to make secure connections to Oracle Database on a Windows
> server. The server then permits the user to perform database actions on the
> server.
>
>
>
> ------------------------------
> *From:* David Barbour <david.barbour1_at_gmail.com>
> *To:* dmarc-noreply_at_freelists.org
> *Cc:* oracle-l mailing list <oracle-l_at_freelists.org>
> *Sent:* Tuesday, March 10, 2015 4:24 PM
> *Subject:* Re: Single Sign On
>
> Thanks Mladen. Sigh....... I was trying to avoid having to set up Linux
> home directories. Nobody wants to have a different password for this. It's
> really not so much single sign-on as it will be password syncronization.
> Theoretically our support organization will be responsible for setup and
> maintenance, I'm trying to figure out how to do this with a minimum of
> moving parts, or at least keep it as simple as possible for the customers -
> which includes the support folks. Currently we've got Hitachi psync in
> place for synchronizing passwords but since we've never let individual
> users into the databases, it's not configured for Oracle. We could do
> that, but that's being replaced by Curion for user management and
> provisioning and they didn't buy any of the connection modules so using
> that is out. It's bad enough everybody is going to need an Oracle client.
> Theoretically our support organization will be responsible for setup and
> maintenance, I'm trying to figure out how to do this with a minimum of
> moving parts, or at least keep it as simple as possible for the customers -
> which includes the support folks. Additionally, our newly minted security
> requirements prohibit the use of Samba.
>
>
>
> On Tue, Mar 10, 2015 at 2:50 PM, Mladen Gogala <
> dmarc-noreply_at_freelists.org> wrote:
>
> On 03/10/2015 03:44 PM, David Barbour wrote:
>
> We're standing up an Enterprise Data Warehouse. Oracle 11.2.0.4 on RHEL
> 6.4. The business folks have decided they don't want to be 'locked in' to
> our standard reporting tool - Business Objects - and want to be able to log
> in 'seamlessly' (I think that means they'll want to use their Active
> Directory IDs and Passwords) from their desktops using any tool they might
> conceivably download, purchase or invent.
>
> Which Oracle Product these days accomplishes this? How have others
> handled this requirement?
>
> Any product. You can have users identified externally and authenticate
> Linux users automagically using AD:
>
> https://technet.microsoft.com/en-us/magazine/2008.12.linux.aspx
>
> --
> Mladen Gogala
> Oracle DBA
> http://mgogala.freehostia.com
>
> --
> http://www.freelists.org/webpage/oracle-l
>
>
>
>
>
>
-- http://www.freelists.org/webpage/oracle-lReceived on Tue Mar 10 2015 - 23:32:14 CET