Posts

What is Centralized logout in Oracle Access Manager

What is Centralized logout in Oracle Access Manager   LINK http://docs.oracle.com/cd/E25178_01/doc.1111/e15478/logout.htm#CHDDIBGF Oracle discussion on error with logout for application LINK What is impersonation in Oracle Access Manager and what does it provide
Post a Comment
Read more

Configuring AD authenticator with Weblogic server

Image
Configuring Active Directory authenticator with Weblogic server Original blog from  http://weblogic-wonders.com/weblogic/2010/12/04/configuring-active-directory-authenticator-with-weblogic-server/ LINK Weblogic Server comes with an Embedded LDAP Server which acts as the Default Provider for authentication, authorization and rolemapping.Since authentication is based on JAAS ( Java Authentication and Authorization Service), we can have external providers as well.These providers can be Out Of the Box Providers provided by WLS or Custom Providers which can be plugged in. I’ll discuss that in some other article. These are some of the providers WLS does provide an out of the box provider for Active Directory. These are the steps to configure it. Step 1) . Open Active Directory Console Step 2) . Create a User Step 3) . Assign it to Administrator Group. This is required as Active Directory gives connection only to Admin User. Step 4) . Go to Weblogic Server and C
1 comment
Read more

Service Provider initiated SSO on Weblogic server 11g with SAML 2.0

Image
SERVICE PROVIDER INITIATED SSO ON WLS11G USING SAML2.0 At a recent customer I got the assignment to implement a SAML 2.0 configuration. (http://blog.darwin-it.nl/2014/04/service-provider-initiated-sso-on.html) The customer is in this setup a Service Provider. They provide a student-administration application for the Dutch Higher Education Sector, like Colleges and Universities. The application conventionally is implemented on premise. But they like to move to a SaaS model. One institute is going to use the application from 'the cloud'. In the Dutch education sector, an organization called SurfConext serves as an authentication broker. Note the below diagram is a good representation of SP-initiated SSO. A good schematic explanation of the setup is in the  Weblogic 11g docs : When a user connects to the application, Weblogic finds that the user is not authenticated: it lacks a SAML2.0 token (2). So when configured correctly the browser is rerouted to SurfConext (3). O
8 comments
Read more