Introduction Oracle CASB Cloud Service's (hereafter referred to as CASB) core functionalities are evaluating user behavior, generating risk-event alerts on...
Introduction Oracle CASB Cloud Service's (hereafter referred to as CASB) core functionalities are evaluating user behavior, generating risk-event alerts on policy match and detection of weak security controls of a monitored target among various other features. It is crucial to understand how an event that occurred at source is captured in CASB, whether the event qualifies for CASB's evaluation of security baseline monitoring and/or policy monitoring. This blog aims to help...
Introduction Oracle CASB Cloud Service's (hereafter referred to as CASB) core functionalities are evaluating user behavior, generating risk-event alerts on policy match and detection of weak...
Introduction OCI or Oracle Cloud Infrastructure, is Oracle’s latest cloud infrastructure that is replacing the older Oracle Cloud Infrastructure Classic. One...
Introduction OCI or Oracle Cloud Infrastructure, is Oracle’s latest cloud infrastructure that is replacing the older Oracle Cloud Infrastructure Classic. One feature it has is built-in Identity Management Governance. For example, you can add and manage users to grant who can access OCI resources among other features, please refer to this link for more information https://cloud.oracle.com/governance. This article is focused on customers who want to use their existing identity...
Introduction OCI or Oracle Cloud Infrastructure, is Oracle’s latest cloud infrastructure that is replacing the older Oracle Cloud Infrastructure Classic. One feature it has is built-in...
As of version 11gR2PS1 (11.1.2.1.0), OIM relies on JGROUPS to implement cache coordination among all it's cluster nodes. Out of the box OIM is configured to...
As of version 11gR2PS1 (11.1.2.1.0), OIM relies on JGROUPS to implement cache coordination among all it's cluster nodes. Out of the box OIM is configured to use Multicast (one to many) for JGroups for cluster messaging. This could be a showstopper when deploying OIM in datacenter where Multicast is blocked or unsupported, which is the case in many cloud IaaS environments. OIM 11gR2 PS1 and onwards can be easily configured to use unicast for caching as follows: 1. In EM...
As of version 11gR2PS1 (11.1.2.1.0), OIM relies on JGROUPS to implement cache coordination among all it's cluster nodes. Out of the box OIM is configured to use Multicast (one to many) for JGroups...
The objective of this post is to show the differences and similarities of the two REST APIs offered by OIM – the SCIM REST API and the OIG REST API. OIM Java...
The objective of this post is to show the differences and similarities of the two REST APIs offered by OIM – the SCIM REST API and the OIG REST API. OIM Java APIs have been available in OIM for many versions now (since OIM 9.x or earlier), although each successive version has added new Java APIs to provide access to new functionality. The SCIM REST web services were newly introduced in 11.1.2.3. My previous blog post contains some discussions of the pros and cons of each API...
The objective of this post is to show the differences and similarities of the two REST APIs offered by OIM – the SCIM REST API and the OIG REST API. OIM Java APIs have been available in OIM for many...
REST APIs for Oracle Identity Manager (OIM) 11g R2 PS3 were released recently. The availability of REST APIs enables a variety of newer integrations with the...
REST APIs for Oracle Identity Manager (OIM) 11g R2 PS3 were released recently. The availability of REST APIs enables a variety of newer integrations with the product in addition to already available mechanisms using Java APIs. In this article, we discuss various ways of accessing these REST APIs in a secure manner. Please note that irrespective of how users' authenticate to OIM, what data can they access and what actions can they perform depends only on OIM's authorization...
REST APIs for Oracle Identity Manager (OIM) 11g R2 PS3 were released recently. The availability of REST APIs enables a variety of newer integrations with the product in addition to already available...
The objective of this post is to describe how a web app protected by an OAM WebGate can authenticate to the OIG REST APIs. In a previous blog post, I provided...
The objective of this post is to describe how a web app protected by an OAM WebGate can authenticate to the OIG REST APIs. In a previous blog post, I provided detailed steps to do the same thing for the SCIM REST APIs; now in this blog post I will explain how the same approach can be applied to the OIG REST APIs too, with only some minor changes. The reason we can use essentially the same approach for both the OIG REST and SCIM REST APIs is that both use the same OWSM...
The objective of this post is to describe how a web app protected by an OAM WebGate can authenticate to the OIG REST APIs. In a previous blog post, I provided detailed steps to do the same thing for...
Introduction Oracle Identity Cloud Services (IDCS) - Oracle's comprehensive Identity and Access Management platform for the cloud – was released recently....
Introduction Oracle Identity Cloud Services (IDCS) - Oracle's comprehensive Identity and Access Management platform for the cloud – was released recently. Populating identity data – such as user identities, groups and group memberships – is one of most important tasks that is typically needed initially and on an on-going basis in any identity management system. IDCS provides multiple ways for uploading identity data. The purpose of this post is to provide a high-level survey...
Introduction Oracle Identity Cloud Services (IDCS) - Oracle's comprehensive Identity and Access Management platform for the cloud – was released recently. Populating identity data – such as...
Starting with Bundle Patch 11.1.2.3.161018 (Patch 24326201), Oracle Identity Gorvernance or OIM, adds a new REST API for self service requests. The REST...
Starting with Bundle Patch 11.1.2.3.161018 (Patch 24326201), Oracle Identity Gorvernance or OIM, adds a new REST API for self service requests. The REST Service includes endpoints to invoke self service calls for tasks like Catalog, Requests, Certification, Users, Role, Organization and others. Documentation and examples are available here. The REST Service has to be installed manually after applying BP 11.1.2.3.161018 by deploying an ear file. The service requires HTTPS...
Starting with Bundle Patch 11.1.2.3.161018 (Patch 24326201), Oracle Identity Gorvernance or OIM, adds a new REST API for self service requests. The REST Service includes endpoints to invoke self...
In a previous post previous post I provided a brief introduction to SCIM. In this post I'm going to dive right in and give an example of using the OIM SCIM...
In a previous post previous post I provided a brief introduction to SCIM. In this post I'm going to dive right in and give an example of using the OIM SCIM services and securing them with OAM. Why would you want to use OIM SCIM services? There are many reasons, however I will focus on one particular use case in this post – building a custom UI to access OIM. OIM's out-of-the-box UI provides a broad set of features to cover most use cases, and includes a customisation facility...
In a previous post previous post I provided a brief introduction to SCIM. In this post I'm going to dive right in and give an example of using the OIM SCIM services and securing them with OAM....
