Академический Документы
Профессиональный Документы
Культура Документы
About Dan
About Dan
About Dan
About Dan
About Dan
Components
Oracle Database Enterprise Edition
Identity Management 10.1.4 (OID + DIP)
Windows 2003 Server (KDC)
Certificate Authority (openssl)
6
Components (2)
Oracle Wallets (DB > OID password,
also for OID server authentication)
ldapbindssl.exe - from OID sample code
page - http://is.gd/2pT6
Oracle password filter for MSAD (on CD
#1 in utils/adpwdfilter/setup.exe)
7
Passwd Filter
LDAPS
Client
DIP Sync
OID
LDAP
Passwd Change
MSAD
Wallet
SQL*Net
1. Client > AD
2. Passwd > OID
3. OID <-> AD
Sync
4. Client > DB
5. DB > OID
6. DB > Client
DB
8
LDAP
os
er
O
rb
Ke a AS
Client
DIP Sync
vi
Kerberos
MSAD
(KDC)
SQL*Net
via ASO
DB
1. OID <-> AD
Sync
2. Client > KDC
3. Client > DB
4. DB > OID
5. DB > Client
Wallet
10
12
13
14
15
16
17
18
19
20
then login:
C:\> sqlplus /@db11gr1
21
22
25
References (1)
References (2)
References (3)
33
09
May 3-7, 2009
Orange County Convention Center West
Orlando, Florida
34
Wrap-up
Visit Booth
2738
Contact Info:
Email: dnorris@piocon.com
Phone: 630-607-7422
Web: www.piocon.com
Legal
The information contained herein should be deemed reliable
but not guaranteed. The author has made every attempt to
provide current and accurate information. If you have any
comments or suggestions, please contact the author at:
dnorris@piocon.com
You may request redistribution permission from
dnorris@piocon.com.
Copyright 2008, Piocon Technologies
37