Webservice authenticate by microsoft active directory

Similar Messages

• APEX_LDAP.AUTHENTICATE - using Microsoft Active Directory

  Application Express 4.1.1.00.23
  Internet Explorer - 8
  Oracle Database 11g Enterprise Edition Release 11.2.0.3.0 - 64bit Production
  Hi very new to Apex and trying to get the authenticaqtion to work against our active directory. I have setup an authentication scheme for my application chossing the schema type as LDAP Directory...my settings are as follows:
  Host : ****
  Port : 389
  Use SSL: No SSL
  Distinguished Name (DN) String : domain\%LDAP_USER%
  Use Exact Distinguished Name (DN) : Yes
  This works perfectly and authenticates the user against active directory. The problem is when I try do the following in the database as I really want to setup a custom authentication scheme, it just does not work.
  Begin
  IF apex_ldap.authenticate(
  p_username => 'testusername',
  p_password => 'testpassword',
  p_search_base => 'domain\%LDAP_USER%',
  p_host => '*****',
  p_port => 389) THEN
  dbms_output.put_line('True');
  Else
  dbms_output.put_line('False');
  End If;
  End;
  No matter what I do this always returns false. I have created a function based on same code and created a custom authentication scheme that calls the function but I always get a false. Not sure why it works one way and not the other. Also would really appreciate if someone could help me get the code above to work or help correct it.
  I have looked through the forum and tried many different search base strings but nothing seems to work.
  Regards
  Ash

  Hi Ash,
  Microsoft AD allows "domain\%LDAP_USER%" instead of a real distinguished name (DN), but this does not work with apex_ldap.authenticate. The authenticate function tries to create a DN from username and search base. It does not substitute the "%LDAP_USER%" pattern with the username. Based on the parameters I see in your example, it would try to authenticate with "cn=testusername,domain\%LDAP_USER%", which is clearly wrong, hence the authentication failure.
  What you could do is use another package, although it's not in the official API docs, like this (untested):
  Begin
      IF wwv_flow_custom_auth_ldap.authenticate(
             p_dn => 'domain\testusername',
             p_password => 'testpassword',
             p_ldap_host => '*****',
             p_ldap_port => 389)
      THEN
          dbms_output.put_line('True');
      Else
          dbms_output.put_line('False');
      End If;
  End;Regards,
  Christian

• Single sign on and microsoft active directory

  Hi,
  I have EBS 12.1.3 on linux. I know that I can implement single sign on to login to EBS. Now the question is: can I integrate this single sign on with my existing Microsoft Active Directory? Can you send me some links or documentation?

  Self-reply:
  http://blogs.oracle.com/stevenChan/2006/05/indepth_using_thirdparty_ident.html
  Thanks

• SSO (single sign on) on NetWeaver 7.0 Enterprise Portal based on spnego with Microsoft Active Directory

  Hi,
  we are using SAP Netweaver Enterprise Portal 7.0 (SP25) based on Windows 2008 R2/Oracle 11g.
  When we setup the Portal, we used the UME of the ECC - ABAP.
  The portal is used internally only.
  Now we want to provide SSO.
  User authenticate against Windows Active Directory (Windows 2003).
  We thought SSO via spnego would be the best solution.
  Any better alternates, we should use?
  We are following the SAP documentation:
  SAP-Bibliothek - Benutzerauthentifizierung und Single Sign-On
  We still want to create users in ABAP and assign them the portal roles. LDAP access should only have read access, to verify the security token from Active Directory.
  When we setup the portal from scratch using ABAP as its UME, in the system configuration, LDAP can't be selected/add as data source.
  In case we understand the documentation correctly, we would now need to add LDAP via the configtool for read access.
  What is not clear to us, when we active now LDAP via config tool, if we would now lose the ABAP connection.
  Is there a tutorial for SSO Netweaver 7.0 EP, like for EP 7.3, available?
  In 7.3 SSO is pretty simple to get it running, thanks to the many tutorials here and on the internet.
  Thanks for your help.
  Best regards
  Carlos Behlau

  Hi,
  I was able to generate the key via ktab program.
  But when I am enable SSO, nothing is happening when I try to log-on via SSO to the portal.
  I installed WebDiag tool on the portal server and ran trace.
  The users are located in domain: company.com of activate directory.
  The Java AS are located in domain: sap.company.com of activate directory.
  The sap.company.com domain acts as child of company.com.
  When I check the WebDiag trace, I see for the SPNegoLoginModule - the entry "... no key (etype: 23) for realm sap.company.com available ..."
  I would except company.com as realm key, as the keytabs have been generated on the domain controller of company.com.
  Is it possible to get SSO with child domain running?
  Based on the statement of the network folks, child and father domain having a trust.
  Thanks for your help.
  Best regards
  Carlos

• Integration of sap R/3 (4.7) and Microsoft active directory (2003)

  Hi All,
  I would like to know integration of sap R/3 (4.7) and Microsoft active directory (2003) and also SAP EP and Microsoft active directory. I have been working as a ep consultant with a local bank. I am new for this integration work, So please kindly provide me the steps for integrating these both directories.
  Pls help me with this issue.
  Thanks in advance,
  Regards,
  Raghav.

  Hi,
  First You should read:
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/bc72b890-0201-0010-3a8d-e31e3e266893
  Regards,
  Jarek

• Portal Integration with Microsoft Active Directory

  We are working on a project to integrate Oracle9iAS Portal with Microsoft Active Directory. I am wondering if anyone has any experience with this and hence suggestions. Particularly, I'm wondering if its possible and how to use Active Directory to manage the Portal user accounts and group relationships?

  Please note that we finally got this working. For Active Directories sake, I would suggest using userPrincipalName or sAMAccountName as the Unique Attribute. Also, note that Active Directory uses OUs for organization, not CNs, so the search base should be either just the DN of the domain or an OU in the domain. Also, be sure to specify the full DN of the Bind DN as in CN=Administrator,CN=Users,DN=domain,DN=com

• E-Business suite r12 login through Microsoft Active Directory

  I integrated E-business suite release 12.1 with SSO and OID and i want to integrate OID with Microsoft Active Directory. how is this possible?

  804050 wrote:
  I integrated E-business suite release 12.1 with SSO and OID and i want to integrate OID with Microsoft Active Directory. how is this possible?Yes, it is possible. The basic idea is EBS 12.1 will use OID, which will be configured to use third party external authentication, like Microsoft AD.
  Please see this document:
  Oracle® Identity Management Integration Guide
  10g (10.1.4.0.1)
  Part Number B15995-01
  Chap 19 Integrating with Microsoft Active Directory
  HTH
  AMN

• Oracle account and microsoft active directory password synchronisation

  Hi
  We are migrating our application to use windows active directory authentication. We have separate oracle account for
  each logged in user in the application, and these oracle credentials have to be the same as the windows active directory
  credentials.
  Also, a password change on windows Active directory should change the oracle account password.
  Is there a tool available to manage and synchronize the microsoft active directory and oracle account.
  We use oracle 10g and application is hosted on Windows 2008 server.
  Thanks
  Karthik

  There's an OOTB connector for Password Synch between AD -> OIM. Please use that.
  http://www.oracle.com/technetwork/middleware/id-mgmt/downloads/connectors-101674.html
  For password synch, OIM- AD/Oracle, you can use triggers.
  Enabling update for provisioned user in OIM11g

• Configuring Microsoft ACtive Directory in WebLogic server 10.3.3

  Hi,
  I am working on configuring Microsoft ACtive Directory in WebLogic server 10.3.3. After configuration I couldn't see any AD users in myrealm-users.
  If there is any document / step-by-step tutorial available please provide me.
  Thanks
  MC

  Just check the product documentation ;-) The Guide Securing WebLogic Server might be of interest for you.
  Here is a link to start with: http://download.oracle.com/docs/cd/E14571_01/web.1111/e13707/atn.htm#SECMG175
  --olaf                                                                                                                                                                                                                                                                                                                                                                                                                                                               

• Does Sun Messaging Server support Microsoft Active Directory

  Hello,
  I just got this qustion. Does Sun Messaging Server work with Microsoft Active Directory?
  Thanks.

  Please post in the messaging server forum: [http://forums.sun.com/forum.jspa?forumID=708|http://forums.sun.com/forum.jspa?forumID=708]

• Integrate Oracle Apps R12 with Microsoft Active Directory

  Dear Friends,
  I am using Oracle Apps R12.1.3 and alsoo we have Microsoft Activity Directory.
  we need to integrate both so that any employee cretaed in Oracle Apps HRMS will be replicated in Microsoft Directory.
  Please let us know the oracle 10g and 11g products we have to use to achieve this.
  Please let us know both 10g and 11g products and is 10g products covered in Oracle support?
  Regards,
  DB

  Please see these docs/links.
  Integrating Oracle E-Business Suite Release 12 with Oracle Internet Directory and Oracle Single Sign-On 10gR3 (10.1.4.3) [ID 376811.1]
  Using the Latest Oracle Internet Directory 11gR1 Patchset with Single Sign-on and Oracle E-Business Suite [ID 876539.1]
  Registering Oracle E-Business Suite Release 12 with Oracle Internet Directory 11gR1 and Single Sign-On [ID 1370938.1]
  External Authentication To Active Directory Integration With E-Business Suite [ID 429020.1]
  Re: Integrating Active directory  with oracle EBS 12.1.3 with 11g R2 database
  Re: Oracle EBS with SSO
  Re: Need to integrate AD with R12.1.3 with the most simplest architecture.
  Re: EBS R12,how to use OID implement SSO without OAM/OID(with 3rd product)?
  Thanks,
  Hussein

• How i use OEM 12c to monitor Microsoft Active directory.

  Hi,
  How i use OEM 12c to monitor Microsoft Active directory.Please assist me on this.
  Thanks,
  Sagar

  Hi,
  The fundamental problem with this scenario is that you have non-failover capable modules in a failover chassis - think of the ASA failover pair as one device and the IPS modules as two completely separate devices.
  Then, as already mentioned, add only the primary ASA. (The secondary will never be passing traffic in standby mode so it's not actually needed in MARS) Then, with the first IPS module you can add it as a module of the ASA or as a standalone device (MARS doesn't care). With the second IPS module the only option is to add it as a separate device anyway.
  In a failover scenario the ASA's swap IP's but the IPS's don't so whereas you'll only ever get messages from the active ASA you'll get messages from both IPS IP's depending on which one happens to be in the active ASA at the time.
  Don't forget that you have to manually replicate all IPS configuration every time you make a change.
  HTH
  Andrew.

• Can Microsoft active directory integrated with Oracle Applications

  Hi,
  Can anyone provide me any document on Microsoft Active Directory Integration with Oracle Applications(12.0.6)
  Manish

  Hi,
  It is possible, please refer to the following documents for details.
  Note: 376811.1 - Integrating Oracle E-Business Suite Release 12 with Oracle Internet Directory and Oracle Single Sign-On
  Note: 415007.1 - Oracle Application Server with Oracle E-Business Suite Release 12 FAQ
  Regards,
  Hussein

• Deploying Oracle Password filter for Microsoft Active Directory.

  We created the Oracle Wallet w/ Self-Signed Certificate. When we setup the Oracle Password filter for Microsoft Active Directory from LDAP server. We are getting the error. Certificate is not valid.
  Is this OK or Can we get the success message.

  You can't ignore it. A valid certificate is important to make it work.
  --olaf                                                                                                                                                                               

• Problem with Oracle external procedures and Microsoft Active Directory

  Hi,
  Our server was recently updated to use Microsoft Active Directory. However, we noticed that all external procedure calls keeps on failing with ORA-28575: unable to open RPC connection external procedure agent. Everything was working fine before we migrated to Active Directory which is why we can say that the listener is configured correctly.
  Any idea on how we can make extproc calls with Active Directory?
  thanks.

  Michael,
  Oracle Forms does support Single Sign-On (SSO). Take a look at Oracle Containers for J2EE Security Guide: OC4J Java Single Sing-On. Also take a look at the Oracle Forms 10g Sample Code and scroll to the SSO demo under the Forms Services Demo section. There are also, numerous other documents available via Google. ;-)
  Craig B-)
  If someone's response is helpful or correct, please mark it accordingly.