Introduction

This blog series will cover use cases where you need to setup the federation of your Oracle Fusion Apps and OCI Services used for SaaS Extensions using Microsoft Entra ID as an example of external IdP.

All Oracle Fusion Cloud Applications environments are now provisioned with an Oracle Cloud Infrastructure (OCI) Identity and Access Management identity domain, this identity domain must not be used to Federation SSO configuration for the Oracle Fusion Cloud application instance but it can be used to federate SSO with OCI Services used in SaaS Extensions.

In the scenario where you need to federate your Oracle Fusion App Instance and use the provided Fusion Identity Domain to provide access to non-fusion users to OCI services you need setup two distinct configurations.

SSO DIagram

 

Part 1 : Oracle Fusion Cloud Application SSO with Microsoft Entra ID

Part 2 : Oracle Fusion Cloud Application identity domain federation for OCI Services used in SaaS Extensions

Conclusion

In this blog series, we illustrated the proposed architecture to avoid the need of a duplicated OCI IAM domain for OCI Services used in extensions and how to federate your Oracle Fusion directly with your external identity provider.
For more information, remember to check out the blogs on A-Team.