Leave a Comment:
40 comments
Hi Atul. Nice to read this brief document on SSO. Can you provide me any metalink DOC ID or any other pointer where i could see more basic to implementation level information.
Thanks,
Praveshgupta@rediffmail.com
Hi Pravesh,
Thanks a lot. You need implementation of SSO which 10g Application Server or E-Business Suite or any other oracle product ?
Regards
Atul Kumar
Hi Atul,
Can you guide me in seting up PKI on oracle 10g (part of sso) as I am unable to edit the httpd.conf as the file format was not .crl but.crt, maybe a step by step
Thanks
aljafree.alias@mimos.my
Hi
If you want to configure SSL then use OWM Oracle wallet manager & in ssl.conf use directive
SSLWallet file {locationOfWallet}
If this is for OCA , Oracle Certifying Authority this is compltere separate component on Application Server
Atul
ReplyHi Atul,
Can we avoid using SSO and let application automatically recognize user id we type when starting our computer ?
Thanks
Neto,
Yes you can do by implementing windows Native Authentication via kerbros . This is mentioned in SSO Administration Guide.
Atul
ReplyHi Atul,
Can you tell me where I can find SSO Administration Guide ?
I didn’t find it on OTN with other books.
Thanks.
http://download-uk.oracle.com/docs/cd/B14099_19/idmanage.1012/b14078/toc.htm
Atul
ReplyHi Atul,
Thanks, I’ve seen this document but is there a pdf document?
It will be easier to find string (like Kerberos for example).
Are you heart that someone has successfully implemented windows Native Authentication via Kerberos so that anyone can connect to eBusiness Suite without entering user name or user password?
Neto,
To be frank I have not seen anyone implemented windows native authentication or better to say zero sign on on E-Business suite login but you can try on Test Server
Hi Atul,
i am Priya working as Apps DBA.I have implemented Windows native authentication with oracle where you can lgoin directly to applicationw ithout username/password.
ReplyHi Priya,
Thats a good thing. Cheers … Is this for 10g Application server only or also intergrated this with E-Business suite ?
Hi Pervesh,
Some Info Integrating Oracle E-Business Suite Release 11i with Oracle Internet Directory and Oracle Single Sign-On can be had from Note:261914.1
ReplyHi Atul,
Can you give me some guide lines on Implementing SSO with other “Applications like Mail, 3rd party appl, WNA etc”
Yathish
ReplyYatish,
Each application has its own sso mechanism another check is if that application support SSO or not . Most of Oracle application use mod_osso for sso access. Kindly check each application’s document for configuring it with SSO Server
Hi, Atul,
What is I have different passwords in in different applications (supposed I have the same user name for all apps), will SSO validates all these passwords?
Thanks,
Hank
ReplyIf various applications share same SSO instance then they will have same password (Though different username can be mapped to single account in various applications )
ReplyHi Atul,
Can we integrate a single Oracle 10gAS for SSO with peoplesoft,JD Edwards and E-business suite? If yes, can you suggest me any doc. or white paper on this topic and how to implement the same?
ReplyFor Integrating 10g AS SSO with E-Business Suite check
233436.1 Installing Oracle Application Server 10g with Oracle E-Business Suite Release 11i
https://metalink.oracle.com/metalink/plsql/docs/10g-Implementation.pdf (11i with SSO build 4)
For integration with peoplesoft and Siebel I’ll cover in near fture here
ReplyHi Atul,
A very good brief doc on SSO.It helped me to understand the basics.
Can u help me for how to login to portal which is SSO enabled. When i try to login it asks me for SSO login/pwd. what should i enter. I am using 10gAS(9.0.4) with OID running on separate host(infra server). I tried with username=orcladmin and password=deafult passwd(manager1) but it is givin error as “Your password has expired. Please contact administrator to reset it”
Hi Atul,
I want SSO put in login the last username entered, how can do this?
hi can u guide me how to install SSO SDK iam not clear in that part
ReplyHi Atul,
I have Installed 10g Application server 10.1.2 and SOA. Now my user wants me to use SSO Fot Authentication all the components of SOA. Any Suggestions on How to Integrate them I am Quite new to this and your suggestion would be most helpful.
Thanks,
Poornima.
Check OIDDAS for OID user management .
http://download.oracle.com/
docs/cd/B28196_01/idmanage.1014/b15996/das_admin.htm#CHDGFFGG
For installing SSOSDK check metalink Note
182701.1 Install and Configure SSO SDK and Servlet Partner Application
ReplyHello Atul,
We have 9i AS and 11.5.10.2, and we are planning to implement SSO. Is that possible to do “SSO” on 9iAS? If so, how can we do that?
I read somewhere that, for “SSO”, minimum requirement is 10g AS.
Thanks in Adv,
Miriyala
Atul,
Two questions:
1) o you usually install SSO on a separate host or on the same host as the middle tier?
2) In the second case, if you use SSL, you’ll need to have separate ports for SSO and middle tier web servers. Correct?
Thanks,
Massimo
ReplyMassimo,
Default installation of sso is with OID (infrastructure tier)
but for security point of view I would prefer SSO on middle tier.
2) In the second case, if you use SSL, you’ll need to have separate ports for SSO and middle tier web servers. Correct?
Yes, thats right.
ReplyAtul,
I am using 10.1.2 as my 10g AS. So does this doc hold good for it ???
regards,
Poornima.
Dear Atual,
I integrate & configure SSO with R12 and its working.
1) When i use R12 url it re-directing to sso page. On SSo page i supply orcladmin/oracle123 then i directly login to R12 user A/C (aman) . i even not supply any userid/passwd for user aman.
when ever i use R12 URL it directing to sso,
when i login orcladmin it directly login to aman a/c. I cant use other R12 user’s
oidprovtool operation=MODIFY \
ldap_host=my.india.com \
ldap_port=389 \
ldap_user_dn=cn=orcladmin \
ldap_user_password=oracle123 \
application_dn=”orclApplicationCommonName=prod,
cn=EBusiness,cn=Products,
cn=OracleContext,
dc=india,dc=com” \
> orclLastAppliedChangeNumber=15731
bulkload -connect orcl -load=true file=/export/home/
userapp/usersinfo.ldif
All pre-Req & Post Req Sucessfull.
How to find R12 users in OID
Reply$ORACLE_HOME/ldap/bin/ldifwrite connect=”” basedn=”cn=users,dc=” ldiffile=”$HOME/users.ldif”
So assume tns alias to connect to your OID DB is orcl and your default realm is oracle.com (also called as namespace This you provide during OID installation) then to list all users in OID use
$ORACLE_HOME/ldap/bin/ldifwrite connect=”orcl” basedn=”cn=users,dc=oracle,dc=com” ldiffile=”$HOME/users.ldif”
or as mentioned in your other comment, use oiddas screen
ReplyHi Atul.
I am using E Business Suite R12 on demand and OBIEE locally installed is it posible to configure SSO under this scheme?
I have read some notes and it says that it is a prerequsite to have both applications under the same domain.
How can I get SSO implemented
Reply@Eduardo,
Only certified option for SSO integration with R12 is to use Oracle Identity Manegement – OID/SSO (10.1.4 and higher)
For OBIEE – There are various options available configure SSO
In my opinion install Oracle Identity Manegement 10.1.4.X (OID/SSO – OAS Infrastructure Part) and use that as SSO engine for both R12 and OBIEE (You need to install OBIEE as “advanced install” option with HTTP Server)
ReplyHi Sir,
Orcladmin passwoard expire,
How to change Orcladmin Password.
Thank you..
BHAGWAT SINHA
ReplyHi Atul,
In our organization, we have installaed multiple Oracle Applications like OTM, UPK, EBS, Fusion HCM etc.., is it possible to have centralized SSO solution for all these products using OIM or OESSO???
Thanks,
Mark
Hello Atul,
M new to oracle apex …..i want to implement sso in my application .can u guide me .
I want this training. Plz let me know how can take this
Reply