Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be...
Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be created through a prescribed build out of Oracle’s IAM stack. The guide for the build out is the Enterprise Deployment Guide for Identity Management (Fusion Apps Edition), which we will refer to now simply as the ‘EDG’ for short. The first chapter of the EDG includes a good diagram and description of Oracle’s...
Introduction As I’ve talked about in my last couple posts (here and here), Fusion Apps relies on an Oracle Identity and Access Management platform which must be created through a prescribed build out...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very simple JDeveloper project that includes a custom login form and an OAM plug-in that demonstrates the basics of using the interface. I'm going to get that blog post out eventually, but for right now I need to talk about logging inside your plug-in. OAM uses the Java Logger (java.util.logging.Logger and related classes)...
Introduction Logging in a custom plug-in written for OAM Main Article I've been playing around with the OAM plug-in API and working on putting together a very simple JDeveloper project that includes...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to talk specifically, but still at a high level, about how the the Oracle IDM products fit in Fusion Apps. To review, here I’m talking specifically about OID, OVD, OAM, OIM, and optionally OIF. Main Article Active Participants If you are going to take anything away from what I have written or will write about Fusion Apps...
Introduction Last week I gave an introduction into the Fusion Middleware Security in Fusion Applications. This week I’d like to expand on that introduction to talk specifically, but still at a high...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a LDAP connector? Since earlier versions, OIM provides connectors for the most popular LDAP systems: Oracle Internet Directory (OID), Oracle Directory Server EE (formerly Sun Java Directory/iPlanet), Novell eDirectory and Microsoft Active Directory (AD). With OIM 11g, a new feature called LDAP synchronization was...
Since the first OIM 11g release, one of the frequently asked questions about OIM 11g is: Should I configure OIM with LDAP synchronization or should I deploy a LDAP connector? Since earlier versions,...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion Middleware Security”. We all work in the Fusion Middleware team on Fusion Middleware but even back then we saw Fusion Applications coming down the pipe and after all Fusion Apps is a set of big business applications whose principal distinction (in my opinion) is that it is the first set of business applications to be built on a...
Introduction When we first started this blog more than 2 years ago, we debated about whether to name it “Fusion Security” or more specifically “Fusion Middleware Security”. We all work in the Fusion...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We really appreciate your interest in our posts and hope to be truly contributing to your daily work. With that said… Did you guys know Weblogic implements a WS-Trust client? Did you also know that WS-Trust client can interoperate with web services protected by OWSM policies requiring message protection (signing and...
Introduction First, I’d like to take the opportunity to wish you all our readers a great 2012, with plenty of health, joy, care for each other and peace! We really appreciate your interest in...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the OAM documentation can be daunting. So I put together my own integration document/Blog. Not to re-invent the wheel, this post utilizes what we already have in terms of documentation. Think of this as a checklist and the steps that I implemented to get my own internal environment working. Main Article Prerequisites 1)...
Introduction I have been involved with many customer's who are integrating OAM 11g with Universal Content Manager 11g (UCM) and I know that trying to follow the OAM documentation can be daunting. So I...
This is somewhat related to what Brian describes in WLS Session Cookie Overriding in an OAM/SSO Enabled Environment. Here, I want to quickly point one potential...
This is somewhat related to what Brian describes in WLS Session Cookie Overriding in an OAM/SSO Enabled Environment. Here, I want to quickly point one potential issue if you plan to implement Web SSO using Weblogic server as a SAML2.0 Service Provider (SP). When configuring a Weblogic server instance for SAML2.0 services, you have to fill in a property called “Published Site URL”. When this instance is an SP, this property tell the partner IdP (Identity Provider) where to...
This is somewhat related to what Brian describes in WLS Session Cookie Overriding in an OAM/SSO Enabled Environment. Here, I want to quickly point one potential issue if you plan to implement Web SSO...
Introduction This is Part Two of the article describing a potential implementation of Request Based LDAP Group Membership provisioning. Part One can be accessed...
Introduction This is Part Two of the article describing a potential implementation of Request Based LDAP Group Membership provisioning. Part One can be accessed here. Continuing with the implementation after disabling the default approval policies at the Request and Operation Levels, the next step is to configure OIM to enable the modification of a provisioned resource via a request. The datasets associated to the Create and Modify operations of the resource in questions (OID...
Introduction This is Part Two of the article describing a potential implementation of Request Based LDAP Group Membership provisioning. Part One can be accessed here. Continuing with the...
