SSO password push to another database

We are about to enforce password expiration times at our company, which as of now we do not use. Currently, when a user chooses to change their password, we have modified the link to point ot a procedure which first updates the SSO password using calls to the DBMS_LDAP package, and then reaches across a db link to a stored procedure on another oracle database which issues an "alter user ... identified by ..." command to sync the passwords in that database.
This isn't an issue currently because without a password expiration change being enforced, user only change passwords through the Portal app. However, now that there is an expiration warning involved, the user is prompted to change their password at the SSO level before they are authenticated into Portal. The form which handles this is
$ORACLE_INFRASTRUCTURE_HOME/j2ee/OC4J_SECURITY/applications/sso/web/jsp/password.jsp
Looking at this file, I wasn't able to come up with what it might be calling so I would know what to modify. Any ideas?

AMN wrote:
1. Do you change passwords for portal users in the SSO or for the schema users in the DB?
a. alter user SOMEONE idetified by SOMEPASSWORD works for db schema users. and you do not make a schema user for each portal user; or do you or have you? Portal users are different from the schema users.
2. In all of 10g Portals, you can change passwords for portal users by directing them to a default Change Password utility in the oiddas (oid delegated administration service/ self service console) which is accessible at http: //yourdomain.com:7777/oiddas. (use this port number).
3. for a custom change password utility for your company, explore DMBS_LDAP packages for changing user password attributes in OID.
4. this above file (password.jsp) is mentioned in the deployment specific pages that you can write for your own custom application. these pages are login, change password and logout pages. for that purpose, read the chapter given in this link. basically, you write your own pwd.jsp in the change pwd page and mention it in the sso.properties.
1> Yes, we do create schema users for each Portal user. The home-brew Java apps hook into the db directly. The portal offers a framework for accessing the cgi scripts.
2> True, but this will not push password changes to the schema users.
3> We have a custom change password procedure which first does all the DBMS_LDAP stuff, and then calls a procedure across a DB link to do the ALTER USER ...
4> Actually I found this which outlines a method for modifying the INFRASTRUCTURE_ORACLE_HOME/sso/conf/policy.properties file to point to custom login/password URLs. While we're already using a custom login (not through this framework though I'm thinking of adopting it now that I know it exists), I created a custom password change file based on the password.jsp which doesn't allow them the option of changing their password and simply tells them "your password is about to expire" or "has expired" and then allows them to click OK to be shuffled into the main framework of Portal where they will be back into our customized solutions. It works to our needs, and from what I can tell, further customizations would require changing the ChangePwdServlet, which is way out of bounds.
Just for background, this portal environment was set up in 2007, and I inherited it here at this company when I joined 6 months back as a DBA. I've not worked with it before and in that time I've got he basic admin stuff down and have staged Production to a new test environment with new hosts/ips (kind of a tricky process as I would learn). As I'm learning, not all the customiztions are outlined in the documentation and some that are can be difficult to find, which is why in this area OTN has been a great help. Especially when trying to understand how to generate the site2ptoken for the new staged environment.
I appreciate all the responses on these threads.
PS> To address another comment, as part of this password strength initiative I did learn about the OID plugin framework for passwords. I had to, since the OID options out-of-box aren't strong enough to meet our security requirements. With that in place we get functionality for testing for password similarities and special chars.
Edited by: athompson88 on Jun 19, 2009 6:49 AM

Similar Messages

  • How to create a password file for 9i database

    I just created a database 9.2.0.5 based on another database. I copied the password file to the new database. I got an error. How can I recreate one?
    Thanks a lot!
    SQL> startup;
    ORACLE instance started.
    Total System Global Area 337204540 bytes
    Fixed Size 455996 bytes
    Variable Size 268435456 bytes
    Database Buffers 67108864 bytes
    Redo Buffers 1204224 bytes
    ORA-01991: invalid password file '/local/ORACLE/OraHome1/dbs/orapwilnktest'
    SQL>

    Do you think the password is the sys password?Time to go through the doc :
    http://download.oracle.com/docs/cd/B10501_01/server.920/a96521/dba.htm#1227
    Nicolas.

  • How to import a table from another database using DB toolset.

    Hello All
    I would like to import a table from one database to another using DB toolbox.
    I do not want to import all data to LV and then save them to another database. Instead I would prefer to use SQL syntax.
    Does anobody know how to write SQL command to import whole table from one database to another?
    I have found in some SQL manual that INSERT INTO should work, but JET4 returns an error that table (e.g. c:\mydatabase\table1) can not be found.
    Thanks in advance
    Pawel

    if i don't have TEST table on server B whether COPY command will create this table on server B with the same structure ? If you specify CREATE as a clause the table will be created:
    SQL> help copy
    COPY
    COPY copies data from a query to a table in a local or remote
    database. COPY supports CHAR, DATE, LONG, NUMBER and VARCHAR2.
    COPY {FROM database | TO database | FROM database TO database}
                APPENDCREATE|INSERT|REPLACE} destination_table
                [(column, column, column, ...)] USING query
    where database has the following syntax:
         username[password]@connect_identifier

  • Grants given to a dbuser located in another database....

    Hi,
    There are two Oracle instances(10g v.2) running... , let's name them source_instance and destination_instance. User A is located in one database and user B in the other.
    I want to grant select on tables on user B , which are owned by user A...
    Is it possible to grant such a grant and how...(using dblink...)???
    NOTE: I use Oracle 10g v.2 on Xp platform...
    Many thanks ,
    Simon

    In the voinovpa's case;
    You just need create dblink in schema A as folows:
    create database link B_LINK
    connect to B identified by <B_password>
    using <tns for B database>;
    so any queries like
    select * from any_b_table@b_link select from table of schema B using its username and password
    This is only possible if the user B exists in the database where user A have their objetcs, and the user A grant the privileges to user B.
    So, the user B is created in the another database, that use dblink, and.. ok.

  • Accessing another database from HTMLDB

    All is there a way to do selects on another database from within an HTMLDB application.

    We have several applications on our intranet, all requiring login & password. I was unable to hit the needed tables directly outside the application as I'm not a DBA and they've never given me access to the schema names. So while trying to connect to those same tables as I do with Crystal Reports, I just went to the network drive where the TNSNAMES file is located, hunted for the IP of the server I was looking for, used that SID and did the following:
    Database Link Name - (whatever I want)
    Connect to Schema - (used my username that I use with crystal)
    Password - (same password used in crystal)
    Remote Hostname or IP - used stolen IP found in TNSNAMES
    Remote Host Port - used port found in TNSNAMES
    SID or Service Name - same as in crytal but also found in tnsnames.
    After that I had no problem hitting the tables I wanted as my username and login gets me the access I need.
    I can't tell for sure why I don't need the actual schema name and why my username works instead. I'm just glad it does as I can now use the necessary tables to do MY authentication scheme without relying having to ask to get access to the scheme used by the department. They wouldn't give it to me anyway:)
    Hope that helped, I know it didn't explain why it works tho.
    Not sure what you mean by the SQL query... that is done for you in HTML DB in the connect string created by the link.
    If you mean how do you hit the link you use it prefaced by the at sign "@" as in gimme what I want from the database @(the link name you made)

  • MAXDB user / password to drop the database - do not have

    *Hello,*
    *I am installing the SAPNWABAP701SR1_trial on one of our windows XP laptops and do not have the MAXDB user / password to drop the database which was built when a previous ABAP trial version was installed back in 2007.*
    *Is there any way short of reformatting the drive to drop the database?*
    *Thank you,*
    *Emmett*

    SAP Utilities       c:/sapdb/programs        7.6.02.14     32 bit    valid
    Server Utilities    c:/sapdb/programs        7.6.02.14     32 bit    valid
    Base                c:/sapdb/programs        7.6.02.14     32 bit    valid
    JDBC                c:/sapdb/programs        7.6.03.02               valid
    Messages            c:/sapdb/programs        MSG 0.5028              valid
    ODBC                c:/sapdb/programs        7.6.02.14     32 bit    valid
    Database Kernel     c:/sapdb/nsp/db          7.6.02.14     32 bit    valid
    SQLDBC              c:/sapdb/programs        7.6.02.14     32 bit    valid
    Webtools            c:/sapdb/programs/web    7.6.00.32     32 bit    valid
    SQLDBC 76           c:/sapdb/programs        7.6.02.14     32 bit    valid
    No another databases installed/running on your server.
    dbmcli inst_enum: 
    7.6.02.14    C:\sapdb\NSP\db
    dbmcli db_enum:
    NSP     C:\sapdb\NSP\db                             7.6.02.14     fast     running
    NSP     C:\sapdb\NSP\db                             7.6.02.14     quick     offline
    NSP     C:\sapdb\NSP\db                             7.6.02.14     slow     offline
    NSP     C:\sapdb\NSP\db                             7.6.02.14     test     offline
    I am an not an SAP customer. I have been an ABAP consultant since 1995.
    Edited by: eballard on Jul 29, 2010 7:23 PM

  • Could i use another database

    Im wondering if i can use another database for the workflow engine. I mean it comes with a database managment by default i want to know if a can use another one (SQL server)

    Hi,
    We have been using jtds driver , which is free and the fastest and without any bugs until now, we have been using it for 4 months now.
    The part below explain how to set up your mssql server with jtds driver.
    create a db lets call is bpel
    then run these queries on it. basically to create the tables, these files are
    domain_sqlserver.ddl
    server_sqlserver.ddl
    workflow_sqlserver.sql
    sensor_sqlserver.sql
    located at
    /OraBPELPM_1/integration/orabpel/system/database/scripts
    After that download the jtds driver for sql server.
    We do not use the microsofts jdbc driver for mssql, although we have tried it.
    It doesnt work properly, with the bpel process manager, basically it has some problem with select image and blob types from DB.
    Anyways, the best one we found was for jtds, it works great and is the fastest I beleive.
    We used data direct's jdbc driver but its not free and after doing some benchmark tests we found jtds was the fastest.
    mkdir -p jdbc/jTDS/unzip
    cd jdbc/jTDS/unzip
    download the jtds-1.2-dist.zip from
    wget http://surfnet.dl.sourceforge.net/sourceforge/jtds/jtds-1.2-dist.zip
    unzip jtds-1.2-dist.zip
    cd unzip
    cp jtds-1.2.jar OraHome_1/integration/orabpel/system/appserver/oc4j/j2ee/home/applib/
    You will now have to configure MsSQL in your data-sources.xml file.
    Microsoft SQL Server Database Configuration
    Oracle Bpel now needs to be configured to use Microsoft SQL Server, using the JDBC drivers.
    cd OraHome_1/integration/orabpel/system/appserver/oc4j/j2ee/home/config/
    vi data-sources.xml
    You must then place the following xml within the file:
    <data-source class="net.sourceforge.jtds.jdbcx.JtdsDataSource"
    name="BPELServerDataSource"
    location="jdbc/BPELServerDataSourceWorkflow"
    xa-location="BPELServerDataSource"
    ejb-location="jdbc/BPELServerDataSource"
    connection-driver="net.sourceforge.jtds.jdbc.Driver"
    username="BPEL_user"
    password="bpeluser!">
    <property name="serverName" value="server_name"/>
    <property name="databaseName" value="database_name"/>
    <property name="portNumber" value="1433"/>
    </data-source>
    <data-source class="net.sourceforge.jtds.jdbcx.JtdsDataSource"
    name="AdminConsoleDateSource"
    location="jdbc/AdminConsoleDateSource"
    xa-location="AdminConsoleDateSource"
    ejb-location="jdbc/AdminConsoleDateSource"
    connection-driver="net.sourceforge.jtds.jdbc.Driver"
    username="user_name"
    password="password">
    <property name="serverName" value="server_name"/>
    <property name="databaseName" value="database_name"/>
    <property name="portNumber" value="1433"/>
    </data-source>
    <data-source class="net.sourceforge.jtds.jdbcx.JtdsDataSource"
    name="BPELSamplesDataSource"
    location="jdbc/BPELSamplesDataSource"
    xa-location="BPELSamplesDataSource"
    ejb-location="jdbc/BPELSamplesDataSource"
    connection-driver="net.sourceforge.jtds.jdbc.Driver"
    username="user_name"
    password="password">
    <property name="serverName" value="server_name"/>
    <property name="databaseName" value="database_name"/>
    <property name="portNumber" value="1433"/>
    </data-source>
    Run the BPEL server and everything should work fine.

  • How to copy file from one table to another table at another database

    I need to transfer my tables from one workspace and schema to another workspace and schema. Basically I need to create again all the tables at this new schema. How could I transfer data from tha table at old schema to the table at new schema when this table has files stored in it? (data type is blob)
    thank you so much,
    Silver

    Hello Silver,
    Depending which database you're using (if it's available) I would recommend to use datapump.
    Datapump allows you to copy an entire schema to another database, it's the "new" export/import you might now.
    Regards,
    Dimitri
    http://dgielis.blogspot.com/
    http://www.apex-evangelists.com/
    http://www.apexblogs.info/
    REWARDS: Please remember to mark helpful or correct posts on the forum

  • Help on export sybase iq tables with data and import in another database ?

    Help on export Sybase iq 16 tables with data and import into another database ?

    Hi Nilesh,
    If you have table/index create commands (DDLs), you can create them in Developper and import data using one of methods below
    Extract/ Load table
    Insert location method : require IQ servers to be entered in interfaces file
    Backup/Restore : copy entire database content
    If you have not the DDLs, you can generate them using IQ cockpit or SCC.
    http://infocenter.sybase.com/help/topic/com.sybase.infocenter.dc01773.1604/doc/html/san1288042631955.html
    http://infocenter.sybase.com/help/topic/com.sybase.infocenter.dc01840.1604/doc/html/san1281564927196.html
    Regards,
    Tayeb.

  • How to update date in a table from another database

    Hello,
    I am trying to code a way to Update my Testing database from another database. In the coding below the database that has the updated data ends in Restore.
    Use ClientDB_MASTER_Restore
    Truncate Table ClientDB_MASTER_Testing.dbo.Activity_Tracking_AZ
    GO
    SELECT * INTO ClientDB_Master_Testing.dbo.Activity_Tracking_AZ
    FROM Activity_Tracking_AZ
    Go
    I know with this Technique the table must be truncated if not deleted first.  There is probably a better way to do this which I'm very open to.  I'm also looking for coding that will roll back any changes made should an error occur.
      As always, any help is greatly appreciated.
    David92595

    USE ClientDB_MASTER_Testing
    go
    SET XACT_ABORT ON
    BEGIN TRANSACTION
    Truncate Table dbo.Activity_Tracking_AZ
    -- SET IDENTITY_INSERT dbo.Activity_Tracking_AZ ON
    INSERT dbo.Activity_Tracking_AZ (col1, col2, ...)
    SELECT col1, col2,
    FROM ClientDB_MASTER_Restore.dbo.Activity_Tracking_AZ
    -- SET IDENTITY_INSERT dbo.Activity_Tracking_AZ OFF
    COMMIT TRANSACTION
    If you find it boring to type the column lists, just find the table in Object Explorer, and drag the columns node to where you want the column list.
    You need the SET IDENTITY_INSERT command if the table has an IDENTITY column.
    By wrapping the code in a transaction, you are not left with an empty table if the INSERT fails. The command SET XACT_ABORT ON makes sure that the batch is aborted and rolled back in case of an error.
    Erland Sommarskog, SQL Server MVP, [email protected]

  • How can i get data from another database SQL Server use database link from

    I have a database link from Oracle connect to SQL Server database with user cdit connect default database NorthWind.How can I get data from another database(this database in this SQL Server use this database link)?

    hi,
    u should see following documentation:
    Oracle9i Heterogeneous Connectivity Administrator's Guide
    Release 1 (9.0.1)
    Part Number A88789_01
    in it u just go to chapter no. 4 (using the gateway),,u'll find ur answer there.
    regards
    umar

  • How to Add Sales order from one database to another database

    Hi All,
    I am trying to add sales order with sales order object.
    I have completed connectivity from one database to another database.
    but i am unable to post sales order with orders object.
    My code is
    ObjSales = objMain.objUtilities.GetBusinessObject(SAPbobsCOM.BoObjectTypes.oOrders)
                ObjSales.DocDate = Date.Parse(System.DateTime.Now().ToString("d"))
                ObjSales.DocDueDate = Date.Parse(System.DateTime.Now().ToString("d"))
                ObjSales.TaxDate = Date.Parse(System.DateTime.Now().ToString("d"))
                ObjSales.CardCode = "C0006"
               ObjSales.Series = 92
                ObjSales.PaymentGroupCode = 3
                ObjSales.Comments = "vivek"
               ObjSales.Lines.Add()
               ObjSales.Lines.SetCurrentLine(1)
               ObjSales.Lines.ItemCode = "5127"
               ObjSales.Lines.Quantity = 100
               ObjSales.Lines.UnitPrice = 10
               ObjSales.Lines.WarehouseCode = "01"
                ObjSales.Lines.TaxCode = "0"
                ObjSales.Lines.DiscountPercent = "0.00"
                ObjSales.DocTotal = 1000
                 If ObjSales.Add <> 0 Then
                   objMain.objApplication.SetStatusBarMessage("Sales or Not Posted", SAPbouiCOM.BoMessageTime.bmt_Short, True)
                   Exit Sub
                else
                  objMain.objUtilities.ShowSuccessMessage("Sales Order Posted successfully")
                End If
    The above code is executing successfully.But the Sales order is not getting added.
    Thanks in advance.

    Hi Vivek,
    If the code you posted is not throwing any errors, then the order really does get created. Apparently just not to both databases, am I correct ?
    vivek.Y wrote:
    > I have completed connectivity from one database to another database.
    That means that apparently you have not gotten this bit right.
    Generally speaking if you want to create an order into two databases, you first need to connect to both databases and create separate order objects for each database. So you need to do this bit twice; once for each database. Something like this:
    ObjSales1 = objMain.objUtilities1.GetBusinessObject(SAPbobsCOM.BoObjectTypes.oOrders)
    ObjSales2 = objMain.objUtilities2.GetBusinessObject(SAPbobsCOM.BoObjectTypes.oOrders)
    Then at the end you also need to add both objects separately:
    If ObjSales1.Add <> 0 Then
    etc.
    If ObjSales2.Add <> 0 Then
    etc
    Good luck,
    Johan

  • Different ways to Transfer data from one database to another database

    Hi all,
    What are the ways to transfer data from one database to another database. With the following options, i Can transfer data as far as i know. Please
    correct me if i am wrong or tell me if there is any other options are available.
    1) Create database link/connection string and using this string and COPY command, we can transfer data.
    2) By using Export and Import utilities.
    I told first one to my interviewer, he told, its strange, by using, COPY command also can we transfer data ? As far as i know, we can transfer data. Am i right ?
    Thanks in advance,
    Pal

    transfer data from one database to another database.You mean store the data of one to another?
    1) Create database link/connection string and using this string and COPY command, we can transfer data.every SELECT on a DB-link is transfering data. And you can have all kind of transfers and store on the e.g CTAS of materialized views or.... the SQL*PLUS COPY :
    The COPY command is not being enhanced to handle datatypes or features introduced with, or after Oracle8i. The COPY command is likely to be made obsolete in a future release.
    But there are many others. Check for ORACLE Streams, and the "COPY" your interviewer was mentioning is about the operating file system COPY right? That's transportable tablespaces.
    http://download.oracle.com/docs/cd/E11882_01/server.112/e17120/tspaces013.htm#ADMIN11403
    -- andy

  • How do you know the object is from another database through db link

    I have a table named a2z_people. I searched dba_objects, I found this is a public synonym.
    How can I know the real table name in the another database. Where is this table come from? In another words, what's the source database?
    Thanks!

    In DBA_SYNONYMS, there is a DB_LINK column that names the database link being used (assuming the real object is on a remote database). Is that what you're looking for?
    Justin

  • Copying data to another database after little transformation

    Hi,
    Is there any better pattern for
    copying data from one database to another database after some little transformation(can be simple SQL join).
    I see couple of options like..
    1. Using materialized views
    2. Writing a simple procedure to do copy and transformation.
    3. Using a pure ETL tool.
    Is there any other simple and secure way of doing this ?
    Thanks in advance,
    Vijay.
    Message was edited by:
    user487780

    Hi Justin,
    A couple of questions
    1) Are you copying from an Oracle database to another
    Oracle database? Or are there non-Oracle databases
    involved?I am copying from Oracle to Oracle.
    2) Are there just two databases? Or more?Only two.
    3) Are you copying all the data from one database to
    another? Or are you copying just a subset of data?I just need to copy a subset(can get using SQL join) of data
    4) How frequently does the data need to be copied?exactly 500 times, but at different intervals..
    How soon after the data changes in the source system
    m does in need to be changed in the destination
    system?the copying process has to be triggered based on some data in source database.
    5) Is the data flowing in only one direction?Yes
    6) Is there some drawback to the three options you've
    outlined that you're trying to avoid? If one of
    these options meets all your requirements, I'd assume
    that you wouldn't bother posting a question. That
    implies to me that there is some unstated requirement
    that you're trying to meet...I just want to know, whether there is any standard(typical) way to do this.
    Thanks,
    Vijay.
    >
    Justin

Maybe you are looking for

  • TypeError: Error #1009 on FLVPlayback

    I've been struggling with this error for a few days now, I can't seem to figure out what is actually going wrong. TypeError: Error #1009: Cannot access a property or method of a null object reference.      at fl.video::UIManager/http://www.adobe.com/

  • How to increase the number of samples in my fft?

    Hi, In my Labview environment I receive sampled data of a sinus function where one period consists of 4096 samples. How can I increase or control the number of samples which the fft spectrum is using for calculating its results? Best regards Jonny

  • Forms web developer in Manhattan needed

    We are looking at the possibility of using forms over the web. With that in mind, we are interviewing people with web forms experience. We are located in Manhattan. Please get in touch if you are available and know web forms. Thanks, Bob

  • Missing SSI Menu?

    Moving from Dreamweaver CS4 to CS6 the SSI (Server Side Include) insert command has apparently disappeared and I can't for the life of me find where it is in the new menus. CS4 had the menu command available: Select Insert > Server Side Include CS6 h

  • Performance wise, a select statement is faster on a view or on a table??

    Performance wise, a complex (with multi join) select statement is faster on a view or on a table??