IdM 7 and SSO for legacy applications

Similar Messages

• Implementing OAM - SSO for Multiple Applications

  I am trying to implement OAM - SSO for 2 applications. I already have completed the setup of SSO for one application . OID -- OAM -- OHS ( 11g webgate ) - Weblogic Server - OBIEE . ( All the components are 11.1.1.5 version ).
  Now I am looking to add a 2nd application ( OBIEE 11.1.1.6.5 version ) into the mix. So should I install a separate OHS and webgate for the new application or can I use the existing OHS to add another application.
  Any tips on this would be helpful please.
  Thanks

  You may use the same OHS server in reverse proxy to the two applications and configure corresponding policies in OAM console.
  Let us know if you get into any issues.

• Load username and password for external application?

  How to load username and password for external application?
  For each user, we should take its Portal username and password for one specific external application. How to do that ?
  Regards.

  ABSOLUTLY YES !!!!
  We already know the external application login information for each user and we want to by pass this user task. (Specially because the user itself doesn't know its username/password for the external appli). In fact we are trying to integrate IStore product to Portal by using this mechanism.
  <BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:</font><HR>Originally posted by Kamalendu Biswas ([email protected]):
  If you define an external application then SSO users can populate user information by themselves.
  Are you syaing that you want to populate user information automatically (bulk lodad)?<HR></BLOCKQUOTE>
  null

• How to agree the term and condition for mobile application

  i would like to click agree with iphone new term and condition for mobile application, but couldn fint the button to click agree....

  Hi
  You need it because it's possible to have a complex pricing procedure, and you can't do it with a simple select on a table. Think that you can have pricing requirements, formulas (ie: VOFM) and so on in your pricing procedure (tcode V/08).
  I hope this helps you
  Regards
  Eduardo

• Oracle9iAS R2 - Virtual Hosts with Portal and SSO with OIDDAS application

  Hi!
  I have installed a the machine with name minsk.discover.local. The machine have installed Infrastructure and Portal. The instalation is sucessfull and i work fine. But i have publish Portal to WEB with name intranet.discover.com.br. The Oracle describe:
  1 - Create the virtual hosts in SSO and PORTAL - OK
  2 - run ptlasst to create SSO Partners Applications - OK
  After this steps iwork fine with Portal and SSO, but when i click in portlet to create user to access the application OIDDAS, the Portal redirect to login page of SSO in address mct.com.br, the internal name, when then name not responde in the internet.
  I need a help!!!!
  Marcio Mesti

  I just spoke to the Oracle App server admins, the two servers in question are clustered.
  So my question changes slightly to:
  What is the best way to install and configure a webgate for clustered Oracle App servers with mulitple virtual hosts, that are residing behind a load balancer (Traffic Manager)?
  Thanks,
  Andy

• SSO for JDeveloper application -- how?

  Hello,
  I am developing a servlet with JDeveloper & Struts, and I am curious whether it is possible to configure SSO and JDeveloper so that when I DEBUG the project and the embedded OC4J server starts, my application gets protected by the Single-Sign-On. That is, when I access http://<server>:8988/MYApplication/request.do?<params>, the SSO login page shows up, and after I type in correct login and pwd, my original page gets called again, only with the SSO cookie set this time.
  I have all the things set up (infrastructure etc), and I guess if I go and deploy my application into Apache web folders, things should work -- but is there a way to do this with embedded OC4J server -- with its ports, etc?
  Thank you very much,
  Sasha.

  Krrish,
  For enabling security for your ADF application in JDeveloper use ADF Security wizard. Read this:
  http://www.oracle.com/technology/products/jdev/howtos/1013/adfsecurity/adfsecurity_10132.html
  You should set up your identity management with the application server.
  (App Server Console->Administration->Identity Management)
  You should set the identity management as the security provider of the ADF Application.
  (App Server Console->Your Application->Security Provider)
  You should have installed your APP Server in advanced mode.
  You have to enable SSO for application server and define the ADF application as a partner application:
  http://download-uk.oracle.com/docs/cd/B32110_01/web.1013/b28957/configldap.htm#BEHCGHHF
  see Configure SSO (Optional) section.
  Despite that, I myself have had problem making this work. I am using Identity Management 10.1.4.
  Regards
  Farbod

• SSO for various applications within the same portal

  Is it possible to implement SSO at the application level in an EP 7.0 environment?
  Ex:  One Portal with ESS and BI Functionality (BI is connected to the BI backend, ESS is connected to the ECC backend, but all of it exists within the same portal instance) in which the BI Explorer would rely on SSO, while the ESS would require a logon to the portal.  The initial page of the portal would not be a logon screen, but rather a menu screen
  Does this functionality exist?

  For our purposes, ESS would have to be authenticated (perferably through Active Directory), while BI Explorer wouldn't require "visible" authentication, BUT the question would be, could all of this exist on the same portal..
  I agree that it certainly wouldn't be user friendly to ask users to logon (using AD l/p) for certain parts but not others.  I think the solution would simply to have 2 portal instances (ESS/ECC = Logon/Password,  BI Portal = SSO), and to federate the BI to the ECC Portal. That way, if someone wanted to work in BI and only BI, they could go without logging on, but if they wanted to go to the ESS Portal they would have to logon BUT would be able to use both ESS and BI.
  This all stems from an effort to eliminate the neccessity of having to logon to a portal (for a small group of managers), but still maintaining a level of security for ALL users in regards to employee self-service

• URGENT: SSO for multiple Applications

  I have integrated 4 different applications in a single domain with OAM for SSO.
  Individually all apps are working fine (for SSO). Now I want to Apply only single login for all the applications. So what changes need to be done in OAM side?
  Continuing to my above Question. For the first time if I access application A, Authentication should be done and if I access Application B, C, D no authentication should be done
  and What changes to be done for Single Log OUT.
  Help me what to do for SSO for all the applications.
  Thanks
  Ajay
  Edited by: 915734 on Mar 12, 2012 7:57 PM

  You have to configure single sign-on policy for same
  Go through the blelow documents
  http://docs.oracle.com/cd/E14571_01/doc.1111/e15478/sso.htm#BJFGFBDC
  http://docs.oracle.com/cd/E14571_01/doc.1111/e15478/intro.htm#BABCDGEH
  http://docs.oracle.com/cd/E23943_01/core.1111/e10043/osso_b_oam11g.htm
  http://docs.oracle.com/cd/E24269_01/doc.11120/e24477/sso.htm

• Is it possible to use Oblix SSO in legacy application?

  Hello,
  from searching web I've found that former Oblix products supports web-based single sign-on. My question is if this is purely done for web, or is there any way how to support single sign-on also on legacy application which is communicating by using proprietary protocol? In this case is there any API documentation for it?
  Thanks!
  Karel

  OAM does HTTP resource protection out of the box so that is the most visible paradigm.
  Read about the Access Manager SDK and creating custom Access Gates. Also read about defining custom resource types.
  http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b25346/as_api.htm#BGBDEDCH
  Mark

• Session Time Out capturing for legacy application running in portal

  Hi Forums,
  I am using portal URL  iView to connect to legacy application. How to capture the session time of of that legacy application and show it in the portal. In portal I have already handled session time out which shows a javascript popup message. I want to call the same piece of code once session time out happens in the legacy application which is been accessed by portal through URL iview.
  Many Thanks and Best Regards
  Sudhir

  Hi Sudhir,
  The handling of the session timeout should be done by the application itself not the portal. From the portal you have no way of working out what the application is doing. My suggestion to you is that you need to modify the application to handle the scenario you describe not the portal.
  BRgds,
  Simon

• SSO for External application not part of the portal framework

  Greetings,
  I am desperate!!!
  I am trying to do the following:
  I have a pl/sql application that presents to the user a set of external applications links.When the user activates a link, I would like to make a call the SSO server so it can do external application login.
  I know I can configure the external applications as described in the SSO admin guide.
  Unfortunately the API to query the SSO server for external application mapping is not public.
  ANY IDEAS ON WHERE I CAN GET THIS INFO??
  Every thing I have read says that external applications can be accessed through Portal. This is not my case. I can use any packages or classes available by the SSO server to portal, but MY APPLICATION IS NOT A PORTAL.

  I have similar kind of requirements for Single sign-on to external web applications.
  But in my applications I have to auto-generate random userid & password for different external web applications.
  These uids & password are exported to external applications, which upon recieving creates user in their applications.
  So, actual user will never have access to these credentials(uid &pwd).
  So, how can I cutomize the Portlets to do the first time SSO when user is created & their credentials to external apps are stored to OID.
  Any idea Barry..
  Bye

• How to configure ENV and DB for multithreaded application?

  Hi,
  From document, I know DB_THREAD must be checked for both ENV and DB, but , I don't know which one is best choice for multithreaded application while facing DB_INIT_LOCK and DB_INIT_CDB. In my application, there maybe multi readers and writers at the same time, should I use DB_INIT_LOCK instead of DB_INIT_CDB? what other flags should I use?
  DB_INIT_CDB provides multiple reader/single writer access while DB_INIT_LOCK should be used when multiple processes or threads are going to be reading and writing a Berkeley DB database.
  Thanks for your seggestions and answers.

  Thanks for the explanation,
  The Berkeley DB Concurrent Data Store product
  allows for multiple reader/single writer access
  to a database. This means that at any point in time,
  there may be either multiple readers accessing a
  database or a single writer updating the database.
  Berkeley DB Concurrent Data Store is intended for
  applications that need support for concurrent updates
  to a database that is largely used for reading.
  If you are looking to support multiple readers and
  multiple writers then take a look at the Transactional
  Data Store product
  (http://download.oracle.com/docs/cd/E17076_02/html/programmer_reference/transapp.html)
  In this case the Environment is typically opened with:
  DB_INIT_MPOOL, DB_INIT_LOCK, DB_INIT_LOG, and DB_INIT_TXN.
  Let me know if I missed any of your question.
  Thanks,
  Sandra

• Username and password for imported application

  Hi,
  I'm using webspace at apex.oracle.com for testing my application with apex 4.1.1.
  My application was build with apex 2.0 at my local PC.
  I have successfully uploaded and installed my application.
  But now I can't login to my application, neither with my account as the
  administrator nor with my imported account as the developer of my
  application.
  There is no problem logging in with my administrator account and creating
  a new application. But that doesn't help.
  Can I reset the password? Can I pass the application to another user,
  i.e. the workspace administrator?
  Creating a new user with the name of the old developer doesn't help.
  Any suggestions?
  Stefan Franke

  Hi
  No, I was never asked to upgrade the application.
  Because I was unsure, I repeated the import of my application.
  I have been asked if I want to change the application id.
  I decided to set a new app id by apex automatically.
  Now I have a second app with another id but the same content and the same problem.
  a. I have made no decisions.
  Now I checked a new way:
  Shared components
  Security
  Authentication Schemes
  I see:
  Edit     DATABASE               No Authentication (using DAD)
  Edit     DATABASE ACCOUNT - Current     Database Accounts
  Edit     HTML DB                    Application Express Accounts
  I can click "Edit", under "Name" select a "Scheme Type" and I here can change
  from "Database Accounts" to "No Authentication (using DAD)".
  Now I can start my application. Everything is fine, except security I guess.
  Now again I changed "DATABASE ACCOUNT - Current" to
  "Application Express Accounts" and I can login with my Apex account.
  That´s what I want. Great!
  Thank you very much for your help!
  Stefan
  Edited by: 951081 on 07.08.2012 01:15
  Edited by: 951081 on 07.08.2012 01:16

• Installer and icon for j9 application

  Hello there!
  I've done a j9 (personal profile for windows mobile) application and I wish to change the executable icon on the device. Additionally I'm in need of as installer for this application. Is it possible to build a cab file with both application and j9 to deploy on the taget device?
  many thanks!

  I would like to do exactly what you are describing, however I am not there yet since I just started the development of a Java on Pocket PC project.
  I did see reference to a tool by IBM called JXE which seems to wrap up a java app in a native executable for Pocket PC
  Check out their wirelss forum and you may find more details on this.
  http://www-128.ibm.com/developerworks/forums/dw_forum.jsp?forum=277&cat=9
  Jim

• Setting up IDM and OAM for SSO

  Can someone please point us to a document which assists in installing IDM, OAM and configuring sso?
  Our requirement is to integrate with an external ldap like sunone for authentication.
  -Pratap

  Can you be more specific with regards to "IDM"? It's a bit of an overloaded term. What are your requirements besides SSO? This is the install guide for OAM:
  http://download.oracle.com/docs/cd/E15217_01/doc.1014/e12493/toc.htm