Integrating Oracle Applications with Siteminder for SSO.

We currently have a Oracle Apps implementations with Oracle 9iAS as Application server. We are planning to integrate it in SSO using Netegrity Siteminder.
Please let me know your thoughts on the following
1) Additional softwares or patches needed to be applied at Oracle Application Server level before integrating with Siteminder. Do we need to install Oracle SSO seprately or does it come as part of Oracle 9iAS.
2) Also how will we implement SSO using siteminder without OID.
Any documents on it will help.

The Netegrity Siteminder Webagent will authenticate to some third party, probably the corporate LDAP. Using Oracle SSO (OSSO) is required and a java plugin needs to be customized. See:
Oracle® Application Server Single Sign-On Administrator's Guide
10g Release 2 (10.1.2) < I know different version but doesn't matter
B14078-02
Specifically Chapter - 13 Integrating with Third-Party Access Management Systems. That is a minor task.
Loading OID is a prerequisite and needs to contain the users that will need access to the protected resources in the environment. If it's a small amount of users, manually maintaining OID may not be a big deal utilizing OIDDAS but if it is a large amount, then this effort is a big deal. Big deal meaning a load utilizing the bulkload utility and a custom job that syncronizes the "Corporate LDAP" with OID. Mapping is important. External dependancy with the "Corporate LDAP" folks.
Another couple of important things to consider:
1. The seeded users in OID, such as orcladmin will most likely not be in the "Corporate LDAP" so once Netegrity Simplified Sign On (SSO) comes into play, those users are locked out. Orcladmin is a superuser in OIDDAS. For that reason, server administrators or DBA's that are in OID need to be granted OIDDAS privileges prior to enabling the Netegrity agent to prevent being locked out of that important but sensative tool. Disabling and re-enabling SSO is as simple as editing 2 config files and bouncing a few things though.
2. The OIDDAS Password lockout policy will start locking users after 60 days with no warning unless changed. If oidadmin gets locked, the fix is Note:251354.1. Very important to change the policy since it will be handled by the "Corporate LDAP". Note:251354.1 covers this. Basically using the oidadmin utility, change the "Password Expiry Time" from the default 5184000 to zero "0" which turn off the policy.
The realms that should be protected on the Netegrity policy server are both infrastructure. 7777/oiddas and 7777/sso need to be protected realms on the policy server. If you have a protected application going to mid-tier applications like 7778/discoverer/viewer, they get redirected to the infrastructure 7777/sso because if the directive in mod_osso.conf. Forms will be protected by the 7777/sso realm as well. On the Netegrity Policy Server, unprotected sub-realms can be created under protected realms.
The custom java plugin tells Oracle to trust the "Corporate LDAP" for authentication but authorization can still be performed within OID.
This all sounds difficult but it is really simple. The only part than can get difficult and time consuming is the OID load. Hopefully you get Siteminder DAS access to administer your realms on the Policy server.
Hope this helps! - Ron

Similar Messages

  • Best practice for integrating oracle atg with external web service

    Hi All
    What is the best practice for integrating oracle atg with external web service? Is it using integration repository or calling the web service directly from the java class using a WS client?
    With Thanks & Regards
    Abhishek

    Using Integration Repository might cause performance overhead based on the operation you are doing, I have never used Integration Repository for 3rd Party integration therefore I am not able to make any comment on this.
    Calling directly as a Java Client is an easy approach and you can use ATG component framework to support that by making the endpoint, security credentials etc as configurable properties.
    Cheers
    R
    Edited by: Rajeev_R on Apr 29, 2013 3:49 AM

  • Integration of Oracle applications with IDM

    Hi All,
    Please trow some light on how do we integrate Oracle applications with Oracle IDM(Identity Management).
    Is MRM capable of providing inbounding and outbounding webservices. If not do we have any adapters for integeating the other applications with IDM.
    What is the good practice to integrate a BPEL service with IDM.
    Thanks in advance.
    Regards,
    Naveen

    Hi,
    Have a look at this thread.
    Installation Procedure for APEX
    Installation Procedure for APEX
    Regards,
    Hussein

  • Oracle Application Management Pack for Siebel 10gR4 is GA

    Oracle Application Management Pack for Siebel 10gR4 is now generally available.
    Go to this OTN page if you want more information about the product.
    http://www.oracle.com/technology/products/oem/prod_focus/app_mgmt.html
    You may also download it from OTN to try it out as part of Enterprise Manager 10gR4. We will be demonstrating it at booths D8 and J7 at the Oracle Demoground at Moscone South Hall, at session S291922 at Moscone West L2-2001 on Monday, 11/12 from 3:15 to 4:15 p.m., and at the Siebel Pack Hands-on Lab (S294089) at Marriott Hotel Golden Gate Room B1 on Thursday, 11/15 from 11:30 a.m.-12:30 p.m.
    The Siebel Pack is designed to be a complete and integrated management tool for Siebel. Using this management pack, you may get proactive alerts on impending problems on the application, examine run-time statistics to troubleshoot and tune performance, compare configurations across different environments, keep track of configuration changes, proactively enforce configuration policies in order to avoid configuration related problems, monitor and report on service level delivered by the application and performance diagnostics of user and server performance. The pack may be used with other Oracle Enterprise Manager management packs and plug-in’s to achieve end-to-end management of the entire application environment, including both Oracle and non-Oracle databases, operating systems, storage and network devices.
    The 10gR4 release of this pack adds integrated Siebel Transaction Diagnostic support using data captured via Siebel Application Response Measurement (SARM) framework. With this tool, you may:
    - Analyze request processing for individual user requests
    - Analyze CPU and memory consumption of processing requests for different Siebel Server Components
    - Visualize SARM metric data graphically
    - Compare performance profiles over time
    - Create performance reports and share them with your co-worker for collaborative performance diagnostics
    The 10gR4 version of this Siebel Transaction Diagnostic tool also adds support for Siebel 7.7 and 7.8 in addition to being compatible with Siebel 8.0. It is fully integrated with Oracle Enterprise Manager, which eliminates the need for separate install and user maintenance, and it runs on all operating system platforms that Oracle Enterprise Manager supports.

    Working with the Oracle Enterprise Manager group to integrate closely with their monitoring solutions has been one of the most important advantages of joining the Oracle team. As our customers have started to use CRM more deeply as part of their business processes, CRM has quickly become Mission Critical, with 24/7 uptime requirements. Furthermore, as CRM becomes further integrated into the enterprise, knowing the status and health of the connections to multiple backend systems becomes evermore crucial.
    Through our partnership with the Oracle Enterprise Manager, we aim to support true Enterprise-class CRM. We are the only solution out there with over six million live users, and we are leveraging the knowledge gained from those customers in our Enterprise Manager integration. With the real-time monitoring and diagnosis that Oracle Enterprise Manager provides, we simplify the process of managing sophisticated CRM implementations which span organizations and systems. If you have a Siebel implementation with four servers or more, or with integrations to several systems, you owe it to yourself to check out Oracle Enterprise Manager.

  • Integrating oracle iStore with portal

    Hi,
    We need to build a B2C product catalog. I need answers to a couple of the questions listed below:
    1.Is there any inbuilt commerce functionality present in Oracle 9ias Portal?
    2. Is there any third party product available for building a product catalog of say eg. shoes?
    3. Is it correct to say that oralce iStore is the ans. to building the product catalog?
    4. what are the integration issues for integrating oracle iStore with portal?
    Prompt reply would be a great help.
    Thanks in advance.
    Ankita

    Hi Kishore,
    Here you find information on integrating Reports with Portal: Oracle Application Server Reports Services Publishing Reports to the Web.
    Peter

  • Run client of Oracle Application with Linux

    Hi Evrybody,
    We are looking for relace our applications with Oracle Application (financial) and for our project if is very important to use client machines with Linux OS. Anybody have experience about it?
    If yes, wich Linux is better for you?
    Best regards.
    Mietek Zamroz

    HI,
    We are also looking for Linux clients for Oracle Applications 11i.
    Oracle announced once a Version based on a standard java, not an exclusively Windows-modified jinitiator.
    We are thinking of getting an application server running Win2k and access it with terminal services from
    Linux. It works but it is not ideal in terms of scalability and cost, as the MS stuff does not cluster.

  • Oracle Application Management Pack for Siebel

    Does anyone on this board have any experience with the Oracle 10G Grid Control software and the Oracle Application Management Pack for Siebel. The installation of the Oracle Enterprise Manager Grid Control with the Siebel Management Pack has been successful on the Windows 2003 servers and we can view a list of the servers within Oracle's OEM tool. The problem I am facing is when I try to add a Siebel Enterprise. I receive the following error when I attempt to add a Siebel Enterprise.
    An error occured while adding Siebel Enterprise.
    Credentials - Missing Credentials for host <HOST_NAME>
    All of the credentials have been added properly. Does anyone have any experience or success using this product? If so please reply with feedback.
    .

    Please log a service request with tech support so that we can track this inquiry. On the service request, capture a screenshot of the page where you defined the host preferred credentials, and tell us the names of your servers.
    Btw, I take that you are stuck in the step in which you:
    - Click the "Add Enterprise" button to add the enterprise
    - Fill in the 7 parameters
    - Click Ok to start the discovery process
    Which release of Siebel and Enterprise Manager are you using?
    Chung

  • Integrating Oracle Help with Discoverer Plus

    Folks -
    Has anyone tried integrating Oracle Help with Discoverer Plus. I want to add my customized help (generated in RoboHelp - Oracle) to the help in Discoverer Plus. Is this doable? I don't want to use Oracle Help exclusively unless I need to.

    Hi, Johnny.
    I think you might have better luck getting your question answered on the forum for Discoverer at Discoverer
    I'm not sure whether Discoverer supports extensions, but I would assume that they do in some way. Discoverer ought to provide a standard mechanism for extensions to provide help content.
    Hope this helps,
    Ryan Pollock
    Oracle Help Team

  • Integrating Webcenter 11g (Discussions)  with OAM  for SSO

    Hi,
    I need some help in integrating Webcenter 11g with OAM 10g.
    Objective:
    =========
    My customer is using Webcenter 11.1.1.2.0 and they are primarily using Discussions and wiki .I would like to integrate OAM with Webcenter for providing SSO.
    Steps Followed:
    ============
    I have followed the steps mentioned in the section 23.7.1 and 23.7.1.7 in the doc
    http://download.oracle.com/docs/cd/E15523_01/webcenter.1111/e12405/wcadm_security.htm#BGBCEHGE
    and also referred metalink note ID 829122.1
    Scenario after integrating with OAM:
    ===========================
    1.Accessed the dicussions url through OHS proxy http://<ohs_host>:<ohs_proxy>/owc_discussions
    2.Click on Login button
    3.OAM Login page appears
    4.Provide credentials for orcladmin (admin user of OAM OID LDAP)
    5.Discussions default login screen appears ( I dont expect this default login page,as I have already authenticated with OAM)
    6.Provide orcladmin credentials
    7.Login screen is keep on popping and not able to login
    if i set owc_discussions.sso.mode=false,then looping (Step 7) is not occuring and could able to login.
    Am I doing anything wrong here? Or is there a way I can make it work.
    Thanks in Advance.

    Did you setup weblogic as per this doc? - http://download.oracle.com/docs/cd/E17904_01/webcenter.1111/e12405/wcadm_security_sso.htm#WCADM8175

  • Issue with Oracle Application Adapter (11g) for SAP

    Hi,
    I need to call a WSDL file that is generated through Oracle Application Adapter Application Explorer from a BPEL Composite in SOA 11g.
    The wsdl files are stored under the path $SOA_HOME/soa/thirdparty/ApplicationAdapters/wsdls by default.
    I’m not able to see the wsdls in the Resource Pallette while trying to invoke the adapter. Kindly let me know the workaround for the issue.
    Regards,
    CC

    Hi Chandu
    For SOA 11G, in order to access the BAPI WSDLs ,you need a third party adapter service which comes with Jdeveloper version 11.1.1.2.0 . I am not sure if this is available with Jdeveloper version 11.1.1.1.0. So make sure you have the correct version of Jdev for development.
    Also in 11g when you generate the WSDL(outbound service) from AE, 4 files are generated.
    XXXX_invoke.jca
    XXXX_invoke_request.xsd
    XXXX_invoke_response.xsd
    XXXX_invoke.wsdl
    You need to copy these 4 files to your Jdev project folder and configure the third party adapter service to invoke the SAP BAPIs. Hope this helps.
    Thanks
    Subhankar

  • Integrating WebDynpro ABAP applications with UWL for workflow in Portal

    Dear
    We want to integrate an abap webdynpro application as task in the workflow with UWL.
    More information was found in /people/ginger.gatling/blog/2005/12/14/create-new-uis-for-existing-workflow-tasks-with-abap-web-dynpro-and-universal-worklist
    But no answer on the following issue:
    We use the transaction SWFVISU to prepare standard setting for our  task. This defines how a task is executed, once you select the task subject line on the worklist.
    Task                           TS91700001
    Visualization Type             ABAP Web Dynpro
    APPLICATION     z_wd_pas
    DYNPARAM     IV_WIID=${item.externalId}&period=${item.PERIOD}
    NAMESPACE     SAP
    SYSTEM_ALIAS     SAP_BSP_EREC
    But we want to start the abap webdynpro application with a dynamic parameter: period 07.2010 or 08.2010 or MM.YYYY. This parameter is a container element of the task, filled when the task is created. Also other parameters are available in the abap webdynpro application.
    Component       Z_WD_PAS
    Interface View  PAS
    Plug Name       DEFAULT
    Help Menu Text
    Help Link
                                                                                    Package         Z_PAS
    Language        EN
    URL             http://saperpd1.imec.be:8000/sap/bc/webdynpro/sap/z_wd_pas                                                                               
    with parameters
    IV_WIID     000000000000     SWW_WIID
    ORG_UNIT     00000000     ORGEH
    PERIOD                              SPMON
    PERNR     00000000     PERSNO                            
    Can we set the dynamic parameter list DYNPARAM from the task
    or should  we read the container in our abap webdynpro application described in http://wiki.sdn.sap.com/wiki/display/WDABAP/IntegratingWebDynproABAPapplicationswithUWLforworkflowin+Portal?
    More information: The task is a webservice
    Standard task        91700001   Z_PAS_CC
    Object Category      BOR Object Type
    Object Type          WEBSERVICE   WebFlow Service
    Method               PROCESSDIALOG                      Dialog Service
    with the following standard program code for this method:
    begin_method processdialog changing container.
    DATA: l_wi_objkey TYPE swotobjid-objkey.
    DATA: l_wiid TYPE swwwihead-wi_id.
                                                                                    CALL FUNCTION 'SWE_WI_GET_FROM_REQUESTER'
      IMPORTING
        requester_workitemid = l_wi_objkey.
    l_wiid = l_wi_objkey.
                                                                                    CALL FUNCTION 'SWF_WSC_START_LH_DIALOG'
      EXPORTING
        i_wiid                 = l_wiid
      EXCEPTIONS
        url_creation_failed    = 1
        browser_launch_failure = 2
        OTHERS                 = 3.
    IF sy-subrc <> 0.
      CASE sy-subrc.
        WHEN 1.
          exit_return '1000' space space space space.
        WHEN 2.
          exit_return '1001' space space space space.
        WHEN OTHERS.
          exit_return '1002' space space space space.
      ENDCASE.
    ENDIF.
    end_method.                                           
    Before calling the function SWF_WSC_START_LH_DIALOG the parameters for the abap webdynpro should be defined. Is this possible ?
    Thanks for your suggestions.
    Best regards
    Luc Marent

    I added below sources .
    >    <ItemType name="uwl.request.webflow.WS91000001" connector="WebFlowConnector" defaultView="WorkItemRequestsView" defaultAction="launchWebDynPro" executionMode="default">
    >      <ItemTypeCriteria systemId="UWLSETXXX" externalType="WS91000001" connector="WebFlowConnector" />
    >      <Actions>
    >        <Action name="launchWebDynPro" groupAction="" handler="SAPWebDynproABAPLauncher" returnToDetailViewAllowed="yes" launchInNewWindow="yes" launchNewWindowFeatures="resizable=yes,scrollbars=yes,status=yes,toolbar=no,menubar=no,location=no,directories=no">
    >          <Properties>
    >            <Property name="WebDynproApplication" value="ZWD_WF_002" />
    >            <Property name="newWindowFeatures" value="resizable=yes,scrollbars=yes,status=yes,toolbar=no,menubar=no,location=no,directories=no" />
    >            <Property name="DynamicParameter" value="wi_id=${item.externalId}" />
    >            <Property name="openInNewWindow" value="yes" />
    >            <Property name="System" value="WDSETXXX" />
    >            <Property name="WebDynproNamespace" value="sap" />
    >            <Property name="display_order_priority" value="5" />
    >          </Properties>
    >          <Descriptions default="" />
    >        </Action>
    >      </Actions>
    >    </ItemType>
    >    <ItemType name="uwl.request.webflow.decision.WS91000001.UWLSETXXX" connector="WebFlowConnector" defaultView="WorkItemRequestsView " defaultAction="viewDetail" executionMode="default">
    >      <ItemTypeCriteria systemId="UWLSETXXX" externalType="WS91000001" connector="WebFlowConnector" />
    >    </ItemType>

  • Integration oracle forms with ADF

    Hi
    Please provide me the steps for integration of oracle forms with ADF or any live example.
    It is very urgent. Please help...

    Hi,
    Please watch the below video. This will help you to get started .
    ADF Insider - Redeveloping and Oracle Forms Application using Oracle ADF

  • Integrating Oracle 10GAS with Enterprise Portal

    Has anyone ever hooked up Oracle 10GAS to the Enterprise Portal as a portlet?
    We are looking into integrating a warehousing application into our EP 6.0 SP2 portal. This is a custom warehousing application based on Oracle forms using Oracle Application Server that we use in concert with our core R/3 system. We are considering use of the portal as a "front door" and are looking for some information / guidance on whether there might be existing content or frameworks to enable this integration. We are also interested in how single sign-on might be accomplished with this product.

    We still have a few openings for talks directed towards DBAs.
    Please email me directly if you are interested in participation.
    Thanks,
    I. Michael Snyder
    President, MAOP
    [email protected]
    www.maop.org
    Atlantic Oracle Training Conference
    Leveraging Your Oracle Investment
    December 8 - 9, 2005
    George Washington University
    Cafritz Conference Center
    Washington, DC

  • Integrate Oracle Applications with local HTML DB to run APIs

    Hi,
    Iam new to HTML DB. I have few questions in my mind to clarify.
    Currently iam working on API testing in one of the Oracle Application module.
    During the API testing we call some APIs(usually some packaged procedures) from SQL Plus and check for the business rules and print the results to the SQL terminal using dbms_output.put_line. We have several test cases and for each test case we execute an API from the backend.
    Now after going thru the HTML DB forum i got an idea that i will develop a HTML page in my local HTML DB for all these test cases where i will select the test case that needs to be executed and run it and the results are published on the web page.
    Question-1: Can i integrate my oracle apps with my local HTML DB so that i can call those APIs ? If yes, how can we do it ?
    Question-2: Can i call my plsql procedures from the HTML DB on a button click ?
    Thanks,
    Raj.

    Hi,
    Iam new to HTML DB. I have few questions in my mind to clarify.
    Currently iam working on API testing in one of the Oracle Application module.
    During the API testing we call some APIs(usually some packaged procedures) from SQL Plus and check for the business rules and print the results to the SQL terminal using dbms_output.put_line. We have several test cases and for each test case we execute an API from the backend.
    Now after going thru the HTML DB forum i got an idea that i will develop a HTML page in my local HTML DB for all these test cases where i will select the test case that needs to be executed and run it and the results are published on the web page.
    Question-1: Can i integrate my oracle apps with my local HTML DB so that i can call those APIs ? If yes, how can we do it ?
    Question-2: Can i call my plsql procedures from the HTML DB on a button click ?
    Thanks,
    Raj.

  • How to install the Oracle Applications Framework Provider for Portal10g?

    I am trying to intergrate Portal10g 10.4.1 with EBS 11i.5.10 and all the step required list in metalink document was done.
    However,the Oracle Applications Framework Provider is not show if i view the Portlet Repostiory after refreshing it.
    I guess that this problem is caused by missing something to install.
    Can anyone give me any suggestion about how to solve that?
    Very appreciate for any comments.

    Hi Tim
    I Meant to say say that doing of inbound interface for apps with xml related data
    raghu

Maybe you are looking for