Presentation is loading. Please wait.

Presentation is loading. Please wait.

Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec.

Published byMariah Cathleen Quinn Modified over 9 years ago

Similar presentations

Presentation on theme: "Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec."— Presentation transcript:

1 Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

2 © 12 mai 2004 Novell Inc, Confidential & Proprietary 2 Driver for Oracle 10g OID Required privileges for driver Mandatory Classes for –OID –Enterprise User –Enterprise Role Required ACLs for the changelog

3 © 12 mai 2004 Novell Inc, Confidential & Proprietary 3 Oracle Internet Directory OID is an application that runs off Oracle OID clients use LDAP OID uses Oracle Net to communicate with Database servers

4 © 12 mai 2004 Novell Inc, Confidential & Proprietary 4 Oracle Internet Directory Oracle Directory Manager

5 © 12 mai 2004 Novell Inc, Confidential & Proprietary 5 Oracle Internet Directory Oracle Directory Manager

6 © 12 mai 2004 Novell Inc, Confidential & Proprietary 6 Oracle Internet Directory Communication

7 © 12 mai 2004 Novell Inc, Confidential & Proprietary 7 Oracle Advanced Security Uses OID for -Storing the password for a centralized user that can have access to more than one Database server -Centrally store and assign privileges -Integration of VPD(Virtual Private Database) and Row Label Security -With 10g, synchro of attributes userPassword(SSO) and orclPassword(DB) -OID can leverage RAS and RAC for high availability in a Oracle bubble(many DB servers)

8 © 12 mai 2004 Novell Inc, Confidential & Proprietary 8 Driver for Oracle OID bi-directional sync for data uni-directional sync for the password –From eDirectory to OID No customization required(versus JDBC)

9 © 12 mai 2004 Novell Inc, Confidential & Proprietary 9 Driver User: Select cn=orcladmin

10 © 12 mai 2004 Novell Inc, Confidential & Proprietary 10 Choose Create Like, create meta

11 © 12 mai 2004 Novell Inc, Confidential & Proprietary 11 Modify cn, sn, uid and userPassword

12 © 12 mai 2004 Novell Inc, Confidential & Proprietary 12 Result: cn=meta

13 © 12 mai 2004 Novell Inc, Confidential & Proprietary 13 Under cn=OracleContext, cn=Groups

14 © 12 mai 2004 Novell Inc, Confidential & Proprietary 14 Add to cn=OracleSuperAdminGroup

15 © 12 mai 2004 Novell Inc, Confidential & Proprietary 15 Add to cn=OracleUserSecurityAdmin

16 © 12 mai 2004 Novell Inc, Confidential & Proprietary 16 Add to cn=Common User Attributes

17 © 12 mai 2004 Novell Inc, Confidential & Proprietary 17 Add to cn=OracleContextAdmins

18 © 12 mai 2004 Novell Inc, Confidential & Proprietary 18 Add to required DAS groups

19 © 12 mai 2004 Novell Inc, Confidential & Proprietary 19 After adding meta to groups - meta can create users and groups via oidadmin - but cannot do so via LDAP with ldapadd or the DirXML driver See: http://download- east.oracle.com/docs/cd/B10464_02/manage.904/b1 2118/priv_de3.htm

20 © 12 mai 2004 Novell Inc, Confidential & Proprietary 20 After adding meta to groups - Provide meta with the required ACLs for cn=Users and cn=Groups (under dc=novl,dc=ca). See: http://download- east.oracle.com/docs/cd/B10464_02/manage.904/b1 2118/access2.htm#1059039http://download- east.oracle.com/docs/cd/B10464_02/manage.904/b1 2118/access2.htm#1059039

21 © 12 mai 2004 Novell Inc, Confidential & Proprietary 21 After adding meta to groups

22 © 12 mai 2004 Novell Inc, Confidential & Proprietary 22 After adding meta to groups

23 © 12 mai 2004 Novell Inc, Confidential & Proprietary 23 Required privileges for changelog The ACLs for changelog MUST be modified in order to allow meta access to the changelog

24 © 12 mai 2004 Novell Inc, Confidential & Proprietary 24 Under Access Control Management

25 © 12 mai 2004 Novell Inc, Confidential & Proprietary 25 Add meta, via Create Like

26 © 12 mai 2004 Novell Inc, Confidential & Proprietary 26 Add meta, via Create Like

27 © 12 mai 2004 Novell Inc, Confidential & Proprietary 27 Add meta, via Create Like

28 © 12 mai 2004 Novell Inc, Confidential & Proprietary 28 Add meta, via Create Like

29 © 12 mai 2004 Novell Inc, Confidential & Proprietary 29 Add meta, résultat

30 © 12 mai 2004 Novell Inc, Confidential & Proprietary 30 Classes required for OID - User requires the following classes: inetOrgPerson orclUserV2 orclUser(optional) - Group(dynamicGroup) requires the following classes: groupOfUniqueNames orclGroup the displayname attribute is mandatory

31 © 12 mai 2004 Novell Inc, Confidential & Proprietary 31

32 © 12 mai 2004 Novell Inc, Confidential & Proprietary 32 Classes required for OID

33 © 12 mai 2004 Novell Inc, Confidential & Proprietary 33 Classes required for OID

34 © 12 mai 2004 Novell Inc, Confidential & Proprietary 34 Classes required for OID

Download ppt "Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec."

Similar presentations

DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.

DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
ASGC Site Update Yi-Ping Wu Jeng-Hsueh Wu. Two Significant Researches 1.Oracle Security issues and Studies for 3D 2.Streams Replications Study Report.

ASGC Site Update Yi-Ping Wu Jeng-Hsueh Wu. Two Significant Researches 1.Oracle Security issues and Studies for 3D 2.Streams Replications Study Report.
Mechanics of Oracle Portal and Identity Management Mechanics of Oracle Portal and Identity Management Paper 36768 Sanjeev Mohan Golden Gate University,

Mechanics of Oracle Portal and Identity Management Mechanics of Oracle Portal and Identity Management Paper Sanjeev Mohan Golden Gate University,
Access Control Chapter 3 Part 3 Pages 209 to 227.

Access Control Chapter 3 Part 3 Pages 209 to 227.
Overview of Database Administrator (DBA) Tools

Overview of Database Administrator (DBA) Tools
Oracle9i Database Administrator: Implementation and Administration 1 Chapter 2 Overview of Database Administrator (DBA) Tools.

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 2 Overview of Database Administrator (DBA) Tools.
FSU Directory Project The Issue of Identity Management Jeff Bauer Florida State University

FSU Directory Project The Issue of Identity Management Jeff Bauer Florida State University
IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – 6.0.1 Domino Access for MS Outlook - Notes Domino.

IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – Domino Access for MS Outlook - Notes Domino.
Kerry Osborne Senior Oracle Guy. Caveats The opinions expressed are mine … I’m an old guy I am biased towards Oracle technology I have not drunk too much.

Kerry Osborne Senior Oracle Guy. Caveats The opinions expressed are mine … I’m an old guy I am biased towards Oracle technology I have not drunk too much.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
TWSd Configuring Tivoli Workload Scheduler Security 1of3

TWSd Configuring Tivoli Workload Scheduler Security 1of3
Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.

Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.
ORACLE DATABASE SECURITY

ORACLE DATABASE SECURITY
Understanding Active Directory

Understanding Active Directory
Password Management Bill Street, Nathan Jensen, Mike Simpson, Will Peterson Identity Management Engineering.

Password Management Bill Street, Nathan Jensen, Mike Simpson, Will Peterson Identity Management Engineering.
Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.

Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.
Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,

Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,
Bynari, Inc. Sharing made easy Doug Finch Director of Technical Support Bynari, Inc.

Bynari, Inc. Sharing made easy Doug Finch Director of Technical Support Bynari, Inc.
Introduce LDAP 张海鹏 2008-07-25. SOA Mult - Little system User Manager System (share between other systems) How to store user Information How to access.

Introduce LDAP 张海鹏 SOA Mult - Little system User Manager System (share between other systems) How to store user Information How to access.
Module 9: Active Directory Domain Services. Overview Describe new features in AD DS List manageability and reliability enhancements in AD DS.

Module 9: Active Directory Domain Services. Overview Describe new features in AD DS List manageability and reliability enhancements in AD DS.

Similar presentations

Ads by Google