Identity and Access Management, Identity Governance

70 shell script questions exec  tempfile  1)  How to pass argument to a script ? ./script argument Example :  Script will show filename ./show.sh file1.txt cat show.sh #!/bin/bash cat $1 2)  How to use argument in a script ? First argument: $1, Second argument : $2 Example : Script will copy file (arg1) to destination (arg2) ./copy.sh file1.txt /tmp/ cat copy.sh #!/bin/bash cp $1 $2 3)  How to calculate number of passed arguments ? $# 4)  How to get script name inside a script ? $0 5)  How to check if previous command run successful ? $? 6)  How to get last line from a file ? tail -1 7)  How to get first line from a file ? head -1 8)  How to get 3rd element from each line from a file ? awk '{print $3}' 9)  How to get 2nd element from each line from a file, if first equal FIND awk '{ if ($1 == "FIND") print $2}' 10)   How to debug bash script Add -xv to #!/bin/bash Example #!/bin/bash –xv 1

OIM Connectors BMC Remedy Ticket Management BMC Remedy User Management CA ACF2 Advanced CA Top Secret Advanced Database Applications Table Database User Management Flat File Generic REST Generic Script GoogleApps IBM Lotus Notes/Domino IBM OS/400 Advanced IBM RACF Advanced IBM RACF Standard JDEdwards EnterpriseOne Microsoft Active Directory User Management Microsoft Active Directory Password Synchronization Microsoft Exchange Microsoft Windows Novell eDirectory Novell GroupWise Oracle CRM OnDemand Oracle e-Business Employee Reconciliation Oracle e-Business User Management Oracle Internet Directory Oracle Retail Warehouse Management System PeopleSoft Campus Solutions PeopleSoft Employee Reconciliation PeopleSoft User Management RSA Authentication Manager RSA ClearTrust SAP Employee Reconciliation SAP User Management Engine SAP User Management Siebel User Management Sun Java System Directory UNIX WebServices --------------------------------------

This post covers basics of Federation and few points on OIF 1.  Identity Federation is process of exchanging identity information between two enterprise (domains)  Identity Provider  (IdP) and  Service Provider  (SP). Assume that there are two companies a)  Your Company with name myCorp – domain1 b)  Travel company (travelCorp) which provide car/flight booking for employees of company myCorp – domain2 Exchange of identity information between domain1 (myCorp) and domain2 (travelCorp) is called as  Federation . 2.  Typically in Federation there are two parties a) IdP  (Identity Provider) – provides Identity b) SP  (Service Provider) – receives identity and provides service In above example – If you are employee of  myCorp  and you takes travel service (flight or car) from travelCorp then in this case myCorp will be treated as Identity Provider ( IdP ) and travelCorp will act as Service Provider ( SP ) 3.  Oracle’s Federation Solution is  Oracle Identity Federation  (OIF) and

OAM OAuth Service Link to doc Configuring Centralized logout for sessions involving 11g webgates   Link to docs Configuring Apache, OHS, IHS for 10g Webgates   Link to doc     http://docs.oracle.com/cd/E25054_01/doc.1111/e15478/apch2ihs.htm#BABHEEBF Part VII Using 10g Webgates with Oracle Access Manager 11g When your enterprise includes Web server types other than Oracle HTTP Server, you can install 10g Webgates to use with Oracle Access Manager 11g. Part VII contains the following chapters: Chapter 27, "Managing OAM 10g Webgates with OAM 11g" Chapter 28, "Configuring Apache, OHS, IHS for 10g Webgates" Chapter 29, "Configuring the IIS Web Server for 10g Webgates" Chapter 30, "Configuring the ISA Server for 10g Webgates" Installing webgate 10g   Link https://docs.oracle.com/cd/E12530_01/oam.1014/b32412/webgate.htm OAM uses several cookies to authenticate a user and keep track of the user session. The 10g version uses ObSSOCook

Session Timeout in Oracle Access Manager (OAM) The session lifetime and Idle timeout entries control how long a user's session is valid. In OAM, a user session is an object which represents an authenticated user. This object is stored in the server memory and if Database session persistence is enabled, this object is stored or available in the database. Each session is unique and is identified by both a userid and Session ID (session identifier), see screenshot below "OAM User Session Management".  A valid session means a user has been authenticated with OAM. A session can have following three states: 1) active 2) inactive 3) expired When a session is created it is in active state and is available as an object in the OAM. After a set time - idle timeout, the session moves or transitions to inactive state. And finally after the Session Lifetime time, the session is marked as expired. Expired sessions are removed from server memory. Read more about Session Lifetime