Introduction Oracle Cloud Infrastructure (OCI) supports Federation (SAML 2.0) with third party Identity Providers (IdP). This post specifically describes how to...
Introduction Oracle Cloud Infrastructure (OCI) supports Federation (SAML 2.0) with third party Identity Providers (IdP). This post specifically describes how to federate with Oracle Access Manager (OAM) as the IdP and describes how OCI federation works with OAM. First, I highly recommended that you read my colleague's post 'Streamline Enterprise Access Management and Oracle Cloud Infrastructure Access Management with Federated Group Mapping'. Olaf gives a great overview on...
Introduction Oracle Cloud Infrastructure (OCI) supports Federation (SAML 2.0) with third party Identity Providers (IdP). This post specifically describes how to federate with Oracle Access...
table td { border-width: 0px; border-color: black; border-style: solid; border-spacing: 1px 1px; padding: 10px; background-color: white; } .cb11w1 ul li,...
table td { border-width: 0px; border-color: black; border-style: solid; border-spacing: 1px 1px; padding: 10px; background-color: white; } .cb11w1 ul li, .cb11w1 ol li { line-height: 1.4em; color: #404040 } Introduction Starting with a brand new Oracle Cloud Infrastructure (OCI) tenancy is an exciting opportunity. You have all the permissions and can do whatever you want. Your team members are interested and you grant them the access you have to it, and within a blink of an...
table td { border-width: 0px; border-color: black; border-style: solid; border-spacing: 1px 1px; padding: 10px; background-color: white; } .cb11w1 ul li, .cb11w1 ol li { line-height: 1.4em;...
Introduction  This post discusses the different strategies customers have to migrate Identity Cloud Service (IDCS) artifacts to another IDCS instance.  Now...
Introduction  This post discusses the different strategies customers have to migrate Identity Cloud Service (IDCS) artifacts to another IDCS instance.  Now with ‘multi-stripe' support more customers may have the need to migrate/sync artifacts between stripes.  There are four methods described below each supporting specific use cases.  Three of these methods will ‘copy’ the artifacts to the target system and one that will preserve the GUIDs which basically performs a clone....
Introduction  This post discusses the different strategies customers have to migrate Identity Cloud Service (IDCS) artifacts to another IDCS instance.  Now with ‘multi-stripe' support more customers...
In a blog post a couple of months ago I described how the OAuth Device flow works and gave some general and hypothetical examples of when you might use it. Just...
In a blog post a couple of months ago I described how the OAuth Device flow works and gave some general and hypothetical examples of when you might use it. Just a couple of weeks ago I happened upon a real world use case for it and had a chance to put IDCS' Device Code support to actual use. In most cases when you log into a Unix server over SSH you should be using a key pair - you upload your public key to the server and then the ssh client uses your private key to prove to...
In a blog post a couple of months ago I described how the OAuth Device flow works and gave some general and hypothetical examples of when you might use it. Just a couple of weeks ago I happened upon a...
IDCS (IDentity Cloud Service) is Oracle's next-gen Identity solution built in the cloud for the cloud. It is fully standards compliant and implements various...
IDCS (IDentity Cloud Service) is Oracle's next-gen Identity solution built in the cloud for the cloud. It is fully standards compliant and implements various standards like SAML (Security Assertion Markup Language), OAuth, OIDC (OpenID Connect), etc. Those standards help customers integrate with other products implementing those same standard. One use case that I came across, a few times recently, is integrating Okta as Identity Provider to IDCS using SAML. I thought, I...
IDCS (IDentity Cloud Service) is Oracle's next-gen Identity solution built in the cloud for the cloud. It is fully standards compliant and implements various standards like SAML (Security Assertion...
Where is the simple "shake 'n' bake" / step by step guide to creating a 3-legged, Authorization Code flow OAuth client in IDCS? Right here. 1: From the...
Where is the simple "shake 'n' bake" / step by step guide to creating a 3-legged, Authorization Code flow OAuth client in IDCS? Right here. 1: From the Dashboard in IDCS click the + under Applications to create a new Application 2: Select Confidential Application because we're creating a 3-legged app 3: Fill in the first screen Only name is required, and if you aren't sure what the other fields mean that's all you should enter. 4: Configure the App IDCS supports basically all...
Where is the simple "shake 'n' bake" / step by step guide to creating a 3-legged, Authorization Code flow OAuth client in IDCS? Right here. 1: From the Dashboard in IDCS click the + under Applications...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is allowed to use an application. However, nearly every application has a different user structure implemented. The challenge is to find a common ground for these differing user structures and a way to provision them, i.e. push the user information, into the applications. In today's connected and integrated world, enterprises...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is allowed to use an application....
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order to successfully be authorized to send REST API requests. Then in Part 2: Using Postman Runner with Identity Cloud Service I built on this Pre-request script to enhance the script to get data from a CSV that would play a role in using Collection Runner, and in addition brought in...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can automate getting an access token so when a request is sent to Identity Cloud Service it just works, a big time saver. In this article I am going build on using that Pre-request script and add Tests scripts in a way that we can chain requests in a collection and automate all the requests at once using Postman Collection...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can automate getting an access token so when a...
