Identity and Access Management, Identity Governance

Difference between OIM 11g R2/11g R2 PS1 and 11G R2 PS2 difference between OIM 11g R2/11g R2 PS1 and 11G R2 PS2. Oracle Identity Manager 11.1.2 and/or 11.1.2.1.0 Oracle Identity Manager 11.1.2.2.0 Oracle Identity Manager 11.1.2 provided Identity Attestation to periodically review users access. For advanced access review capabilities such as role or data owner certification, OIM 11.1.2 had to be integrated with Oracle Identity Analytics (OIA) to leverage the advanced access review capabilities that OIA provided. In Oracle Identity Manager 11.1.2.1.0 and 11.1.2.2.0, the advanced access review capabilities of OIA are converged into OIM to provide a complete identity governance platform that enables an enterprise to do enterprise grade access request, provisioning, and access review from a single product. After upgrading to Oracle Identity Manager 11.1.2.2.0, you can use the new access review capabilities. This feature is disabled by default. Therefore, you must ensure that you

Oracle has published below diagram describing Authentication with OAM. On the left side is the User, who is trying to access a resource which is protected by the OAM. Note: OAM and WebGate work together, where WebGate can be said to be an agent for OAM. The diagram is valid from 11gR2 versions but later 12c version retains the same architecture. OAM Authentication steps

ORACLE_HOME and DOMAIN_HOME export ORACLE_BASE=/u01/oracle export MW_HOME=$ORACLE_BASE/middleware export ORACLE_HOME=$MW_HOME/Oracle_IDM1 export WL_HOME=$MW_HOME/wlserver_10.3 export DOMAIN_HOME=/u01/oracle/iam_domain/oam_domain export ORACLE_COMMON=$MW_HOME/oracle_common If admin server is located on different drive, then change the DOMAIN_HOME when using the start admin script Specific env: admin server located in shared drive, managed server on individual host drives OFMW Enterprise Deployment Guide for Oracle Identity Management 11.1.2 http://docs.oracle.com/cd/E25054_01/fusionapps.1111/e21032/network_im.htm   Link 2.4.1  Directory Structure  Terminology and Environment Variables This section describes directory structure terminology and environment variables. ORAC LE_BASE : This environment variable and related directory path refers to the base directory under which Oracle products are installed. For example: u01/app/oracle MW_H OME : This environment variab

This post will cover keytool, JKS and orapki 1) What is keytool The Java Keytool is a command line tool that can work with Java KeyStore files. The Keytool can generate key pairs into a KeyStore file, export certificates from, and import certificates into a KeyStore and several other functions. keytool utility is available when you install Java sdk. Here are a few commonly used keytool commands. See below keytool under java 1.8 version. Default location is where you installed JDK, e.g. C:\Program Files\Java\jdk1.8.0_45\bin> Keytool command --------------------------------------------------------------------------------- 2) What is Java Keystore (JKS) JKS is a container that stores the signature and encryption keys required by the X.509 token on the client. JKS is a proprietary keystore format defined by Sun Microsystems/now Oracle Java. Trusted certificates and public and private keys are stored in the keystore. JKS protects private keys with a password for security. To

A Security-focused HTTP Primer https://developer.mozilla.org/en-US/docs/Web/HTTP/Methods LINK Home  »  Study  » A Security-focused HTTP Primer What follows is a primer on the key security-oriented characteristics of the HTTP protocol. It’s a collection of a number of different sub-topics, explained in my own way , for the purpose of having a single reference point when needed. Basics Query Strings, Parameters, and Ampersands URL Encoding Authentication HTTP Requests Request Methods HTTP Responses Status / Response Codes HTTP Headers Proxies Cookies Basics Message-based You make a request, you get a response. Line-based Lines are quite significant in HTTP. Each header is on an individual line (each line ends with a <crlf>), and a blank line separates the header section from the optional body section. Stateless HTTP doesn’t have the concept of state built-in, which is why things like cookies are used to track

10 points about Java Heap Space or Java Heap Memory 10 Points about Java heap memory When I started java programming I didn't know what is java heap or heap space in Java, I was even not aware of where does  object  in Java gets created, it’s when I started doing professional programming I came across error  java.lang.OutOfMemoryError in Tomcat  then I realized What is Heap in Java or Java Heap Space. Its happens with most of programmer because learning language is easy but learning basics is difficult since there is no formal process which can teach you every basics of programming its experience and work which reveals the secret of programming. For Java developer knowledge of Heap in Java, setting size of java heap space, dealing with Java heap space  OutOfMemoryError , analyzing heap dumps is very important. This Java Heap  tutorial  is for my beginner brothers who are new in programming and learning it. It makes too much difference if you know the basics and underly