• No results found

Oracle E-Business Suite Single Sign On Using Oracle Access Manager

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Oracle E-Business Suite Single Sign On Using Oracle Access Manager"

Copied!
34
0
0

Loading.... (view fulltext now)

Download now ( 34 Page )

Full text

(1)

REMINDER

Check in on the COLLABORATE mobile app

Oracle E-Business Suite Single Sign On

Using Oracle Access Manager

Prepared by: Pierre Paniagua Consultant

AST Corporation

(2)
(3)

Pierre Paniagua

Worked with Oracle Products for over 2 years

▪ Successfully implemented EBS SSO using OAM at College of American Pathologists in multiple environments

▪ Supporting the entire IDM implementation at CAP involving OID, OVD, OAM, OIM and OES.

Race Car Driver

Problem Solver

(4)

Deepak Sharma

More than 8 years in the IT industry

Certified in Oracle Identity Governance Suite

Certified Oracle SOA Suite Implementation Specialist

(5)
(6)

Specialized. Recognized. Preferred.

The right partner makes all the difference.

Our Services Oracle Partnership Oracle Specialized

• E-Business Suite • Business Intelligence/EPM • Fusion Middleware • CRM • Managed Services • Oracle University

• Project Advisory Services

• Oracle Platinum Partner • Pillar Partner

• SOA

• Business Intelligence • Hyperion

• Oracle University Approved Education Center

• Oracle University Reseller

• Oracle Accelerator Implementer • Certified OnDemand Implementer • Small Business Strategy Council

• EBS Financial Management • EBS Supply Chain Management • EBS Human Capital Management • BI Applications

• BI Foundation • Hyperion Planning

• Service Oriented Architecture

• Application Development Framework • Database

• Public Sector

Oracle Excellence/Titan

(7)

Agenda

Overview of IAM Suite

Why SSO?

Define

Apply

(8)

Oracle IAM Suite - Overview

Directory

Services

Identity

Administration

Oracle Access Manager Oracle Enterprise

Single Sign-On

Oracle Identity Federation Oracle Web Services

Manager

Oracle Adaptive Access Manager

Oracle Identity Manager Oracle Identity Analytics Oracle Privileged Accounts

Manager

Oracle Virtual Directory Oracle Internet Directory (with Directory Integration

Platform)

Oracle Unified Directory

Oracle Identity & Access Management Suite

Audit & Compliance

Access

(9)

Why SSO?

(10)

Why SSO?

SSO is SSO

Single Sign-On

Eliminate the headache

For end user

(11)

Define

(12)

Define

DBA Administrator

EBS Tasks

IAM Administrator

OAM Configurations

IDM Administrator

OID Tasks

(13)

Apply

(14)
(15)

Overview - AppDirector

User Requests EBS

(16)

Overview – OHS to OAM

From AppDirector to OHS

(17)

Overview – OAM to OID

OAM Communicates to OID

▪ Communication via Identity Store

(18)

Overview – OAM to EBS Access Gate

OAM

▪ Session Created

OHS

▪ Proxy redirect

EBS Access Gate

(19)
(20)

Key Components

EBS Profile Options

OHS – Oracle HTTP Server

Web Gate

Access Gate

OID – Oracle Internet Directory

(21)

Software Required

Access Management: Single Sign-On

▪ 1) Oracle Access Manager

▪ 2) Oracle Internet Directory

▪ 3) OHS – Oracle HTTP Server & Web Gate

(22)

Apply

DBA Administrator

▪ DBC File

▪ Service Account for OAM

▪ EBS Profile Options

IAM Administrator

▪ EBS Access Gate

▪ EBS Data Source

▪ EBS FNDAUTH.WAR

▪ OHS / WebGate Configurations

▪ OAM Configurations

IDM Administrator

▪ Return ORCLGUID from OID

(23)

Apply – DBA Administrator

FND Patch

FND User

▪ No Responsibility

▪ OAM11GLOGIN

▪ Apps Schema Connect Role

DBC File for the EBS Instance

Activate the application server security system

(24)

Apply – IAM Administrator

Install EBS Access Gate

▪ $MW_HOME/appsutil/accessgate/ebsxxx

Install EBS Data Source

Deploy FNDAUTH.WAR

Configure OHS

▪ Integrate with OAM

▪ Proxy Redirection

▪ Configure Global Logout

Configure OAM

▪ Define Identity Store

▪ Authentication Scheme

▪ Application Domain

(25)

Apply – IAM Administrator Cont.

Install EBS Access Gate

▪ Obtain patch for your EBS Instance

▪ Create /appsutil/accessgate/ebsxxx under $MW_HOME

▪ Copy contents of patch to /appsutil/accessgate/ebsxxx folder

▪ Copy over fndext.jar to $DOMAIN_HOME/lib

▪ Bounce WLS Admin Server

▪ Note: A separate /ebsxxx/ folder is required per EBS Instance of the same version

(26)

Apply – IAM Administrator Cont.

Install EBS Data Source

▪ From within either (or both) IAM / IDM WLS Admin

▪ DS_EBS

▪ JNDI: jdbc/DS_EBS

▪ Connection Pool

— URL: jdbc:oracle:thin:@hostname:port:service_name — Driver Class Name:

oracle.apps.fnd.ext.jdbc.datasource.AppsDataSource

— Properties: user=OAM11GLOGIN

dbcfile=/opt/ora/iamxxx/middleware/appsutil/accessgate/ebsxxx

— Password: xxx

— Test Connection on Reserved: Checked — Maximum Capacity: 200

(27)

Apply – IAM Administrator Cont.

Deploy FNDAUTH.WAR

▪ Install FNDAUTH.WAR from /…/appsutil/accessgate/ebsxxx folder

▪ Use the overhauled Plan.XML as part of the deployment

▪ Deploy on Admin server (IAM / IDM Admin)

▪ Make the context root: /fndauth

— Context root must be unique per EBS Instance

▪ Bounce Admin Server

(28)

Apply – IAM Administrator Cont.

Configure OHS

▪ Set Environment Variables

▪ Register WebGate 11g on Oracle Access Manager 11g

▪ Configure redirection between OHS and Weblogic Server Instance

▪ Configure EBS.conf file

— /…/OHS/ohs1/modfuleconf — Proxy redirection

(29)

Apply – IAM Administrator Cont.

Configure OAM

▪ Define OID Identity Store

▪ Verify/Configure Host Identifier

▪ Create Authentication Module

▪ Create Authentication Scheme

▪ Configure Application Domain

▪ Modify Authentication Policies

— Define Policy Responses

▪ Modify Authorization Policies

(30)

Apply – IDM Administrator

LDIF File Creation

Execute LDIF

▪ OID_dsaconfig.ldif

Return ORCLGUID for lookup requests

Install EBS Access Gate

▪ $MW_HOME/appsutil/accessgate

Install EBS Data Source

(31)

Summary

What did we learn?

(32)

QUESTIONS?

(33)

Please complete the session

evaluation

Session ID: 301

We appreciate your feedback and insight

You may complete the session evaluation either on paper or online via the mobile app

(34)

Thank You.

Pierre Paniagua

References

Download now ( PDF - 34 Page - 1.37 MB )

Related documents

E-Business Suite Technology Stack Certification Roadmap Steven Chan Senior Director, Applications Technology Integration

Oracle E-Business Suite + External Identity Management E-Business Suite Oracle Access Manager * Oracle Internet Directory Authentication Authorization User Management. * Via

SOUTH CAROLINA ACCOMMODATIONS TAX EXPENDITURES OF ANNUAL ACCOMMODATIONS TAX REVENUES FISCAL YEAR

This information was not only sent to local government officials and tourism regions but was also sent to advisory committee chairpersons, chambers of commerce, and others

Oracle Identity and Access Management

Oracle Access Manager Access System, 6-2 Oracle Access Manager Identity System, 6-8 Oracle Application Server Single Sign-On, 8-1 Oracle Delegated Administration Services,

EBS Self Service HR:Modernising The User Experience and More

Oracle E-Business Suite: Human Capital Management.

Security Guide. Oracle Utilities Customer Care and Billing Version (OUAF ) F April 2021

• If you are using a service provider like Oracle Identity Suite or Oracle Access Manager in association with Oracle WebLogic, then refer to the documentation provided with

ORACLE QUALITY ORACLE DATA SHEET KEY FEATURES

Oracle Quality is part of the Oracle E-Business Suite, and is tightly integrated with Oracle Work In Process, Oracle Flow Manufacturing, Oracle Shop Floor Management, Oracle MES

How to Audit the Top Ten E-Business Suite Security Risks

- Oracle E-Business Suite Controls: Application Security Best Practices.  Oracle Best Practices for Securing

Brocade Virtual Traffic Manager and Oracle EBS 12.1 Deployment Guide

• Configure vTM for Oracle E-business Suite • Brocade Virtual Traffic Manager (10.1 or later) • Oracle E-business Suite (12.1)... Note: This deployment guide was certified