Multi URL-Based Portlet with Single Sign-On?

Similar Messages

• Using multiple wireless networks with Single sign on?

  The university that I currently work for has switched from one wireless SSID to 2 separate SSIDs that separate the student users from the faculty/staff users. At this time only the Faculty Staff can log into STAFF and students can only log into STUDENT...
  I have a few laptop carts that were setup for student use and have single sign on configured for the STUDENT wireless connection. The laptops are on the university's domain so that students have access to the home drives.
  We run into problems when Faculty try to use a laptop to teach a class. They are unable to log in because their credentials are not authorized for the STUDENT wireless network. 
  So...Is it possible to setup 2 wireless profiles (STUDENT and STAFF) with single sign on and give the user an option to choose from?

  Hi,
  Based on your description, I would like to suggest you use Group Policy to configure Wireless Network Settings:
  Using Group Policy to Configure Wireless Network Settings
  http://technet.microsoft.com/en-us/magazine/gg266419.aspx
  Please follow the information from the link above to check the issue.
  If it doesn’t work, I recommend you initial a new thread in our Windows Server Forum for further assistance.
  http://social.technet.microsoft.com/Forums/scriptcenter/en-US/home?category=windowsserver
  Hope it helps.
  Regards,
  Blair Deng
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• URGENT!!! inlineRendering of URL-Based Portlet problem !!!

  Hi there;
  About one month ago I faced a problem which one of the other member has faced it too. He posted the problem and till now nobody has answered it. Any clue in this following regards?
  I have deployed a simple url-based portlet on Oracle9iAS portal by using PDK 2.0
  problem occures when i want to use inlineRendering feature of PDK 2.0, it just poped-up a new windows with wrong url
  Regards,

  Have you tried the WebClipping portlet?
  Its definitely worth taking a look at it.

• URL based portlet from external application

  Hello,
  I'm trying to integrate a forms 6i patch 10 application into SSO.
  First, I created an external application, passing it the correct parameters.
  Everything went ok, and I can successfully call it by entering
  "Administer Enternal Application" link on Oracle Portal.
  Now I want to make a portlet from this external application. For that I'm
  using PDK URL Services. So I reused the urlexternalauth provider which is
  included in the latest PDK. The provider.xml is included below. I successfully
  registered the provider, by following the wizard "Register Portlet Provider" on
  Oracle Portal. But when I call the portlet, the html startup file for the form
  is base.htm. When I call the external application through the "Administer Enternal Application" link,
  I get the right html startup file, which is basejini.htm.
  So I need basejini.htm called from the portlet, and not base.htm.
  Thanks,
  Andri.
  provider.xml
  <?xml version="1.0" encoding="UTF-8"?>
  <?providerDefinition version="3.1"?>
  <provider class="oracle.portal.provider.v2.http.URLProviderDefinition">
       <providerInstanceClass>oracle.portal.provider.v2.http.URLProviderInstance</providerInstanceClass>
       <session>true</session>
       <authentication class="oracle.portal.provider.v2.security.Authentication">
            <authType>ExternalApp</authType>
            <userFieldName>username</userFieldName>
            <userPwdName>password</userPwdName>
            <errorPageMessages>Error Message!</errorPageMessages>
       </authentication>
       <proxyInfo class="oracle.portal.provider.v2.ProxyInformation">
            <httpProxyHost>proxy.br.odebrecht.com</httpProxyHost>
            <httpProxyPort>8080</httpProxyPort>
       </proxyInfo>
  <portlet class="oracle.portal.provider.v2.http.URLPortletDefinition">
  <id>1</id>
  <name>iCorporate</name>
  <title>iCorporate</title>
  <description>iCorporate - aplicacao Forms6i</description>
  <timeout>100</timeout>
  <timeoutMessage>iCorporate time out</timeoutMessage>
  <acceptContentType>text/html</acceptContentType>
  <showEdit>false</showEdit>
  <showEditToPublic>false</showEditToPublic>
  <showEditDefault>false</showEditDefault>
  <showPreview>false</showPreview>
  <showDetails>false</showDetails>
  <hasHelp>false</hasHelp>
  <hasAbout>false</hasAbout>
  <passAllUrlParams>true</passAllUrlParams>
  <inputParameter class="oracle.portal.provider.v2.URLPortletParameter">
  <name>config</name>
  <displayName>config</displayName>
  <value>icorp</value>
  <isMandatory>true</isMandatory>
  </inputParameter>
  <inputParameter class="oracle.portal.provider.v2.URLPortletParameter">
  <name>database</name>
  <displayName>database</displayName>
  <value>server1</value>
  <isMandatory>true</isMandatory>
  </inputParameter>
  <renderer class="oracle.portal.provider.v2.render.RenderManager">
  <showPage class="oracle.portal.provider.v2.render.http.URLRenderer">
  <contentType>text/html</contentType>
  <pageUrl>http://server1.rjo.br.odebrecht.com:7780/servlet/f60servlet</pageUrl>
  </showPage>
  </renderer>
  <securityManager class="oracle.portal.provider.v2.security.URLSecurityManager">
  <authorizType>public</authorizType>
  </securityManager>
  </portlet>
  </provider>

  Andrea,
  Could you tell me if FORMS 6i authentication process is based on cookies? The reason being, URL based portlets SSO feature is primarily driven by External Application's cookies, which act as authentication tokens. Once a valid user information is submitted to the External Application, cookies (if any) are received and stored so that they can be re-used in further connections. A typical flow of events can be summarized as follows :
  At provider level :
  1. Connect to External Application.
  2. Submit user information to url specified by External Application's login URL.
  3. Fetch cookies
  4. Store them for future use.
  At portlet level :
  1. Read cookies fetched through provider, pertaining to this portlet.
  2. Open connection to url specified by <pageUrl> tag in provider.xml
  3. Read content and display in the portlet.
  From the provider.xml, I can see that we are trying to show content given by http://venezuela.rjo.br.odebrecht.com:7780/servlet/f60servlet servlet, which has two parameters called {config and database}. This makes the resulting URL as http://venezuela.rjo.br.odebrecht.com:7780/servlet/f60servlet?config=icorp&database=venezula. I guess when this URL is accessed directly, FORMS servlet will redirect the user to base.htm file. Important point to note here is that when URL based portlet makes connection to the above URL, user information is not directly sent along with the request. Instead, cookies fetched from External Application, if any, are sent. But when the same application is viewed through portal's External Application, user information is directly submitted to the login URL. So, before deciding on something, it is important to know how different is the loginURL specified through portal's External Application details, from <pageUrl> of URL based portlets?
  -aMJAD.

• Configuring JCo3 Connection Pool with single sign on on non SAP Java server

  Hi Everyone,
  i have configured a connection pool on JBoss as per JCo3 Documentation and is working great.
  Now I need help to configure this connection pool with single sign on so that RFc on SAP ECC systems are executed using end users credential rather than using single user name password used to configure JCo connection pool.
  On SAP Java stack I am sure its possible within Java WebDynpro    and i assume using JCA resource adapter. But what if we don't want to use SAP Java App server.
  Any help will be appreciated.
  Thanks,
  Divyakumar Jain

  Eason, 你好！
  I have exactly the same problem.  Did you find a solution to this problem?  If so, please let me know!

• Want to integrate Primavera P6 EPPM with Single Sign-on

  Hi,
  Please let me which product you are using to integrate Primavera P6 EPPM with Single Sign-on?
  Thanks

  Check out the security integration guide:
  http://download-west.oracle.com/docs/cd/E10316_01/cs/cs_doc_10/documentation/admin/managing_security_10en.pdf
  Integrating with Active Directory is easy... most Single Sign On solutions are similar, although some require custom code

• How to configure Exchange 2013 OWA with Single Sign On

  Hi All ,
  How to configure Exchange 2013 OWA with Single Sign On ?
  Thanks .

  Hi,
  From your description, I am not quite sure what you really want to achieve. Could you explain it furthermore? If you need to set up Exchange 2013 OWA single sign on with Exchange 2010, here is a helpful thread for your reference.
  Exchange 2013 OWA Single Sign on with Exchange 2010
  https://social.technet.microsoft.com/Forums/en-US/2899ebfc-8622-4cdc-8d77-d76b607618f7/exchange-2013-owa-single-sign-on-with-exchange-2010?forum=exchangesvrdeploy
  If that is not your case, please feel free to tell me.
  Best regards,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Amy Wang
  TechNet Community Support

• Changing of the standard port 1521 and afterward problems with Single Sign

  System / Host Environment
  Operating System: HP-UX 11i, Existing Oracle RDBMS Vers. 9.2 x, Listener on standard port 1521
  9iAS System Architecture: 9iAS Infrastructure and Middle tier (AS Instance) on the same machine
  Problem Environment:
  -Before and during the installation of 9iAS infrastructure the Listener of the existing Oracle RDBMS was stopped
  -The installation of 9iAS Infrastructure (db: IASDB) Version 9.0.2.0 works well
  -Afterwards the port 1521 of IASDB changed to 1525. For a detail description of IASB port changing please refer to Doc. ID: 211 929.1 AFTER CHANGE 'IASDB' LISTENER PORT
  -The installation of Patch Set 2 (Common Patch 2703110) follows (9iAS is now up to Release 9.0.2.2).
  -The Installation of 9iAS Middle tier (AS Instance) Version 9.0.3 follows
  Problem description:
  -During the installation of 9iAS Middle tier problems with Single Sign On occurs.
  The reason of this problems seems a communication problem between the Single Sign On login sequence and the IASDB. After a reset of the port changing (back to the standard port 1521) the installation of 9iAS Middle tier works well.
  Through this incorrect and problematic behaviour we have some notes and questions:
  -Well at first the description of the port changing in Doc. ID: 211 929.1 seems us incomplete. Some configuration still carry on the standard port 1521 and not the knew value of the port 1525.
  -So we want to know all configuration files and parts where we have to change the port value manually ?
  -What will happened to the Single Sign On function with this manually port changing. Does Single Sign On works later on correct or have we to change much more ?

  Currently, changing the listener port is not supported. It must stay on 1521. I believe this is to be fixed in a latter release (perhaps 9.0.4)

• IRecuritment: Resume Parsing with Single Sign on (SSO)

  Application Version:11.5.9
  RDBMS Version:9.2.0.7
  Patch Level:IRC.D, HR_PF.G
  Problem Description/Question:
  Anyone successfully parsed resumes with Single Sign On enabled. We are unable to parse resume with SSO. If I disable the SSO the parsing is working fine. With the SSO enabled resume parsing giving the following error:
  javax.net.ssl.SSLException: SSL handshake failed: X509CertChainIncompleteErr
  Pl. let me know if you have any suggestions/work around to resolve the issue. Client is going to live in 3 weeks. Any help is appreciated.
  Thanks,
  V

  Hi Rainer,
  you can find this setting in your Internet Explorer. Use Tools -> Internet Options -> Advanced. In the section "Security", check "Enable Integrated Windows Authentication (requires restart)" and restart your browser.
  If the error still persists Note
  934138 might be useful. 
  Hope this will help out.
  Regards,
  André

• Questions on portlets and Single Sign On access

  Can anyone help in answering these questions?
  - Is it possible to integrate a SAP application in a portal via portlets (e.g. JSR) oder in Microsoft Sharepoint?
  - For Single Sign on: is SAML supported?
  - Can a SAP system be integrated into a Single-Sign-On environment that has different organizational units that need to be accessed (e.g. Sibboleth)?
  Thanks!

  hi tina,
  u study thesel links to get some idea on sso....i hope ,its useful to u.......
  User Mapping-based Single Sign On
  SAP Logon Ticket-based Single Sign-On
  regards
  bhargava

• Oracle identity federation 10g--error while login with single sign

  Hi...
  I installed oif10g using microsoft ad2003.now i am integrating with salesforce.com to provide single sign on...but while signing authentication is failed...so for that we need to search for assertion which will be under federation-mssg.log..
  but no error messg is under it...so can any one help to enable all debug settings in oif..

  Hello,
  I think its not possible to mix and match authentication once you have set OBIEE to use EBS ICX cookie based authentication, you would not able to use the DefaultAuthenticator Provider.
  Let me know the updates.
  Thanks,
  SVS.

• OpenDocument Problem with single sign on

  Hi,
  We have implemented single sign on for our BO environment.
  We have a report saved under Public Folders\test folder and this report is called thru Java application by users. I have written below code using OpenDocument Function.
  <a href="<boservername>/enterprise115/desktoplaunch/opendoc/
  openDocument.jsp?&sDocName=test report&sDocType=wid&sPath=[PublicFolders],[testfolder]&sRefresh=Y">Test Report</a>
  But when I click on the link, it brings up the Login screen instead of opening the report. Since we implemented Single Sign on, I am guessing it should directly open up report bypassing login screen.
  Please let me know if my code is wrong and how I bypass the login screen.
  Thanks,
  Ven Men

  Hi Ven,
  When you click on the open OpenDoc Link from a infoview (webi report) it will give a login page and you need to provide login details and then the webi report is displayed.
  To avoid this login credential page you can follow the below steps:-
  To by pass the log on , we need to create logon token which can be pass to URL and in turn logs in BO server. This logon token is nothing but an alphanumeric key and is encrypted form. Logon token mainly comprises of,       
  1)BO server name                       
  2)Username                             
  3)Password                             
  4)Authentication type                  
  I am sending you "opendoc.jsp" code which will give you a fare idea on how to create logon token and pass it to openDocument.jsp. Place this file in same place where your u201CopenDocument  jspu201D resides.
  Restart Tomcat                                                                               
  Execute this file in browser                                                                               
  http://<Server Name>:<Port Number>/businessobjects/enterprise115/desktoplaunch/opendoc/opendoc.jsp
  Please make sure you make necessary changes with regards to "USERNAME","PASSWORD",and "BO SERVER NAME" before you executing this file.
  Below is the OpenDoc.jsp file detail
  Under  //CMS logon information provide the below details
  String cms = "CMSServerName"; //Enterprise CMS Server
  String webServer = "WebAppServer"; //Infoview Web Application Server
  String userid = "Administrator";
  String pwd = "";
  String auth = "secEnterprise";
  Thanks,
  Madhu.

• OBIEE 11G with Single Sign-On and Active Directory

  Hi guys,
  Release Version: Oracle Business Intelligence 11.1.1.5.0
  Patch applied: 11.1.1.5.0 BP3 (Patch 13832750)
  OBIEE Server operating system: Windows Server 2008 SP2 (32-bits Operating System).
  We are trying to configure Single Sign-On according to TechNote_WNA_SSO_AD_V4.0.doc.
  Our krb5login.conf:
  com.sun.security.jgss.krb5.initiate {
  com.sun.security.auth.module.Krb5LoginModule required
  principal="[email protected]"
  keyTab=cgdkobi2.keytab
  useKeyTab=true
  storeKey=true
  debug=true
  com.sun.security.jgss.krb5.accept {
  com.sun.security.auth.module.Krb5LoginModule required
  principal="[email protected]"
  keyTab=cgdkobi2.keytab
  useKeyTab=true
  storeKey=true
  debug=true
  We generate de keytab file:
  C:\OracleBI11g\user_projects\domains\bifoundation_domain>C:\OracleBI11g\jrockit_160_24_D1.1.24\bin\ktab.exe -k cgdkobi2.keytab -a [email protected]
  Password for [email protected]:XXXXXXX
  Done!
  Service key for [email protected] is saved in cgdkobi2.keytab
  C:\OracleBI11g\user_projects\domains\bifoundation_domain>C:\OracleBI11g\jrockit_160_24_D1.1.2-4\bin\kinit -k -t cgdkobi2.keytab cgdkobi2
  New ticket is stored in cache file C:\Users\cgdkobi2\krb5cc_cgdkobi2
  C:\OracleBI11g\user_projects\domains\bifoundation_domain>C:\OracleBI11g\jrockit_160_24_D1.1.2-4\bin\klist -k -t cgdkobi2.keytab
  Key tab: cgdkobi2.keytab, 1 entry found.
  [1] Service principal: [email protected]
  KVNO: 1
  Time stamp: Mar 15, 2013 10:34
  C:\OracleBI11g\user_projects\domains\bifoundation_domain>klist
  Current LogonId is 0:0x406163f5
  Cached Tickets: (0)
  We re-start the services and logon into analytics web and SSO doesn't work but there's not an error. It runs successfully with and Active Directoy user and password. Seems like SSO wasn't enabled, but I checked is enabled.
  Any suggestion?
  Thanks in advanced

  Follow the posts : OBI 11.1.1.6.SSO and You are not currently signed in to Oracle BI Server" for OBIEE 11.1.1.6 SSO do the troubleshooting mentioned there.
  Also check your logs for error like the one below:
  [2012-03-09T16:42:36.000-05:00] [OBIPS] [NOTIFICATION:1] [] [saw.securitysubsystem.checkauthentication.runimpl] [ecid: 6c98b5cce1f24814:2a613331:135f95fbdff:-8000-0000000000005b7a,0:1:1] [tid: 5932] Authentication Failure.
  Odbc driver returned an error (SQLDriverConnectW).
  State: 08004. Code: 10018. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused.
  [nQSError: 43113] Message returned from OBIS.
  [nQSError: 13039] The impersonator does not exist in the BI Security Service. (08004)[[
  If you are getting this when you login to OBIEE :      You are not currently signed in to Oracle BI Server"
  then you need to apply this patch : 13553428 QA:BLK:DELIVER TO CORP. OID LDAP USERS FAILED WITH IMPERSONATOR DOES'NT EXIST. 11.1.1.6.0 Generic Platform (American English) General Oracle BI Suite EE Apr 5, 2012 799.4 KB
  Let us know the updates. Hope this helps. Mark if it does.!
  Thanks,
  SVS

• Slow report viewer/rdlc performance in local mode with Single Sign On

  Hi Team,
  We have recently enabled Single Sign On to our application and after that our rdlc reports loading got extremely slow.
  Please find the below configuration that we are using.
  1. Report Viewer 11.0.0.0
  2. running rdlc file in local mode (not using Report Server)
  3. System.IdentityModel.Services 4.0.0.0
  The query behind the reports is returning result in 5-10 sec but report is taking 1-4 min to load (sometimes getting timeout) (as per the complexity of the report).
  We have tried a lot of workaound but nothing worked.
  i saw performance improvement in reports by addding <trust legacyCasModel = "True"   level="Full" /> in config file, But using this we are getting "Dynamic operations can only be performed in homogenous AppDomain" error
  in many pages of our application.
  Without SSO reports are running completely fine.
  We are stucked here and not able to proceed. Is there any issue with the SSO and rdlc in local mode ? Is there any hot fix available for the same ?
  Please help !!!
  Regards,
  Pranav Sharma

  This problem is probably related to :
  [http://blogs.oracle.com/stevenChan/2010/03/ebs_jre_issues_16018.html]
  Oracle problem ID : 1054293.1
  Loginpage / Error in Browser for Export and Attachments after upgrading to Sun JRE 1.6.0_18 [ID 1054293.1]
  Sun bug : 6927268
  ShowDocument calls results in new iexplorer process

• Please instruct how to display Chinese in URL-based portlet

  Hi, I have installed Chinese support opca for my oracle portal and I tried to display Java Chinese portlet successfully.
  I've been testing the url-service now, and I can see the url sample portlets successfully too. However, when I try to display a website including chinese character (e.g.www.yahoo.com.tw, all characters are shown improperly. What else should I do or install?
  P.S. I am using PDK January version.
  Thanks for your help and replies!

  Hi,
  I got it by modifying the provider.xml file with the tag of:
  <charSet>BIG5</charSet>
  for the portlet displaying the website with Chinese Character. For detail, you may refer the the article 'PDK-JAVA XML Provider Definition Tag Reference v2 [HTML format] under the pdk\article directory.
  Thanks for your attention!