Long User ID and Password Support In JD Edwards EnterpriseOne



Similar documents
An Oracle White Paper October Frequently Asked Questions for Oracle Forms 11g

One View Report Samples Warehouse Management

Siebel CRM On Demand Single Sign-On. An Oracle White Paper December 2006

OpenLDAP Oracle Enterprise Gateway Integration Guide

An Oracle White Paper July Introducing the Oracle Home User in Oracle Database 12c for Microsoft Windows

Highmark Unifies Identity Data With Oracle Virtual Directory. An Oracle White Paper January 2009

An Oracle White Paper March Integrating Microsoft SharePoint Server With Oracle Virtual Directory

Manage Oracle Database Users and Roles Centrally in Active Directory or Sun Directory. Overview August 2008

JD Edwards EnterpriseOne 9.1 Clustering Best Practices with Oracle WebLogic Server

Microsoft Active Directory Oracle Enterprise Gateway Integration Guide

Oracle FLEXCUBE Direct Banking Release Corporate Foreign Exchange User Manual. Part No. E

Deliver Oracle BI Publisher documents to Microsoft Office SharePoint Server An Oracle White Paper July 2008

An Oracle White Paper October BI Publisher 11g Scheduling & Apache ActiveMQ as JMS Provider

Oracle Identity Management Concepts and Architecture. An Oracle White Paper December 2003

Configuring Microsoft Active Directory for Oracle Net Naming. An Oracle White Paper April 2014

How to Use Microsoft Active Directory as an LDAP Source with the Oracle ZFS Storage Appliance

Migration Best Practices for OpenSSO 8 and SAM 7.1 deployments O R A C L E W H I T E P A P E R M A R C H 2015

Oracle Business Intelligence ADF Custom Visualizations and Integration. An Oracle White Paper November 2012

An Oracle White Paper May Creating Custom PDF Reports with Oracle Application Express and the APEX Listener

An Oracle White Paper January Integrating Oracle Application Express with Oracle Access Manager. Revision 1

Oracle BI Publisher Enterprise Cluster Deployment. An Oracle White Paper August 2007

Oracle JD Edwards EnterpriseOne Mobile Sales Order Entry

One View Report Samples Financials

Oracle Identity Management: Integration with Windows. An Oracle White Paper December. 2004

Monitoring and Diagnosing Production Applications Using Oracle Application Diagnostics for Java. An Oracle White Paper December 2007

Oracle Business Intelligence Enterprise Edition Plus and Microsoft Office SharePoint Server. An Oracle White Paper October 2008

Configuring Microsoft Active Directory 2003 for Net Naming. An Oracle White Paper September 2008

Oracle Easy Connect Naming. An Oracle White Paper October 2007

Virtual Contact Center

Next Generation Siebel Monitoring: A Real World Customer Experience. An Oracle White Paper June 2010

Oracle Enterprise Single Sign-on Logon Manager How-To: Configuring ESSO-LM Event Logging with Microsoft SQL Server 2005 Release

Oracle Primavera Gateway

Oracle FLEXCUBE Direct Banking Release Corporate E-Factoring User Manual. Part No. E

WebSphere MQ Oracle Enterprise Gateway Integration Guide

Virtual Contact Center

Sun ZFS Storage Appliance Rule-Based Identity Mapping Between Active Directory and Network Information Services Implementation Guide

Integrating Tutor and UPK Content: A Complete User Documentation Solution. An Oracle White Paper April 2008

An Oracle White Paper September Oracle WebLogic Server 12c on Microsoft Windows Azure

Oracle Enterprise Single Sign-on Provisioning Gateway. Administrator Guide Release E

Oracle Access Manager. An Oracle White Paper

An Oracle White Paper November Oracle Business Intelligence Standard Edition One 11g

Virtual Contact Center. Release Notes. Version Revision 1.0

Achieving Sarbanes-Oxley Compliance with Oracle Identity Management. An Oracle White Paper September 2005

Oracle Enterprise Manager. Description. Versions Supported

An Oracle White Paper Dec Oracle Access Management Security Token Service

Oracle Directory Services Integration with Database Enterprise User Security O R A C L E W H I T E P A P E R F E B R U A R Y

Oracle FLEXCUBE Direct Banking Release Retail Credit Card User Manual. Part No. E

Oracle Net Services for Oracle10g. An Oracle White Paper May 2005

Copyright

June, 2015 Oracle s Siebel CRM Statement of Direction Client Platform Support

Oracle Fusion Applications Splitting Topology from Single to Multiple Host Servers

Oracle Identity Management for SAP in Heterogeneous IT Environments. An Oracle White Paper January 2007

An Oracle White Paper September Oracle Team Productivity Center

An Oracle White Paper September Directory Services Integration with Database Enterprise User Security

An Oracle White Paper July Oracle Linux and Oracle VM Remote Lab User Guide

Using Symantec NetBackup with VSS Snapshot to Perform a Backup of SAN LUNs in the Oracle ZFS Storage Appliance

JD Edwards EnterpriseOne Tools. 1 Understanding JD Edwards EnterpriseOne Business Intelligence Integration. 1.1 Oracle Business Intelligence

An Oracle White Paper January, Enterprise Manager Cloud Control 12c: Configuring External User Authentication Using Microsoft Active Directory

How To Load Data Into An Org Database Cloud Service - Multitenant Edition

JD Edwards Performance Tuning guide for Oracle Application Server and Oracle Portal Server 10g.

An Oracle White Paper May Distributed Development Using Oracle Secure Global Desktop

Oracle Application Server 10g Web Services Frequently Asked Questions Oct, 2006

An Oracle White Paper June Security and the Oracle Database Cloud Service

Oracle Mobile Security

Implementing a Custom Search Interface with SES - a case study with search.oracle.com. An Oracle White Paper June 2006

Virtual Contact Center

An Oracle White Paper March Integrating the SharePoint 2007 Adapter with WebCenter Spaces ( & )

How To Customize An Org Bee 11G With A Custom Skin On A Windows 7.5 (Oracle) 11G (Orca) 11Ge (Orora) 11Gh (Orroboro) 11E (Ororro

Maximum Availability Architecture. Oracle Best Practices For High Availability. Backup and Recovery Scenarios for Oracle WebLogic Server: 10.

An Oracle White Paper June, Provisioning & Patching Oracle Database using Enterprise Manager 12c.

October Oracle Application Express Statement of Direction

Security Assertion Markup Language (SAML) Site Manager Setup

Oracle Enterprise Single Sign-on Technical Guide An Oracle White Paper June 2009

Oracle Enterprise Manager. Description. Versions Supported. Prerequisites

Oracle VM Manager Template. An Oracle White Paper February 2009

Managed Storage Services

Primavera Unifier Integration Overview: A Web Services Integration Approach O R A C L E W H I T E P A P E R F E B R U A R Y

Load Testing Hyperion Applications Using Oracle Load Testing 9.1

PeopleSoft Enterprise Directory Interface

An Oracle White Paper July Oracle Desktop Virtualization Simplified Client Access for Oracle Applications

BusinessObjects Enterprise XI Release 2

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

Deploying Oracle Business Intelligence Publisher in J2EE Application Servers Release

Virtual Contact Center

IIS Reverse Proxy Implementation

PEOPLESOFT CAMPUS SELF-SERVICE

Sample Configuration: Cisco UCS, LDAP and Active Directory

CA Nimsoft Service Desk

How To Configure An Orgaa Cloud Control On A Bigip (Cloud Control) On An Orga Cloud Control (Oms) On A Microsoft Cloud Control 2.5 (Cloud) On Microsoft Powerbook (Cloudcontrol) On The

CA Spectrum and CA Embedded Entitlements Manager

Technical Upgrade Considerations for JD Edwards World Customers. An Oracle White Paper February 2013

P R O V I S I O N I N G O R A C L E H Y P E R I O N F I N A N C I A L M A N A G E M E N T

Oracle FLEXCUBE Direct Banking Release Retail Loans User Manual. Part No. E

March Oracle Business Intelligence Discoverer Statement of Direction

Oracle Enterprise Manager

Oracle Enterprise Manager. Description. Versions Supported

Transcription:

Long User ID and Password Support In JD Edwards EnterpriseOne An Oracle JD Edwards EnterpriseOne Red Paper November 2007

PURPOSE STATEMENT This document outlines the steps that existing JD Edwards EnterpriseOne customers would take to support long user IDs and passwords using Oracle Application Server Single Sign-on or Oracle Access Manager. This document is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle s products remains at the sole discretion of Oracle. Updates and enhancements are provided in accordance with Oracle s Technical Support Policies at: www.oracle.com/support/collateral/oracle-technical-support-policies.pdf Migration Considerations from Web Services Gateway Page i

Long User ID and Password Support in JD Edwards EnterpriseOne Overview 3 Managing Long User IDs and Passwords in Oracle Application Server Single Sign-On 4 Prerequisite... 6 Configuring LDAP for Longer User IDs... 6 Map Long User IDs in JD Edwards EnterpriseOne... 7 Managing Long User IDs and Passwords in Oracle Access Manager 8 Overview... 8 Prerequisites... 8 Configuring LDAP for Longer User IDs... 8 Configure Oracle Access Manager for Long User IDs... 9 Create an Authentication Scheme...9 Configure the Authentication Scheme...11 Enable the Authentication Scheme...12 Configure a Policy Domain...13 Test Signing into JD Edwards EnterpriseOne Using a Long User ID... 14 Long User ID and Password Support in JD Edwards EnterpriseOne Page ii

Long User ID and Password Support in JD Edwards EnterpriseOne OVERVIEW This red paper provides an overview of long user ID and password support in JD Edwards EnterpriseOne. To support more than 10 characters in a user name or password in JD Edwards EnterpriseOne, you must use an LDAP server to centrally manage long user IDs and passwords. You can then map the user IDs and passwords to JD Edwards EnterpriseOne user IDs. Note: You cannot use or map long user IDs and passwords for JD Edwards EnterpriseOne non-web users (such as Windows client, WSG, and Java Connector users). You can support long user IDs in either of the following single sign-on configurations: Single Sign-On into JD Edwards EnterpriseOne using OSSO. In this configuration, you can either use LDAP or the JD Edwards EnterpriseOne application to map LDAP longer user IDs to JD Edwards EnterpriseOne user IDs. JD Edwards EnterpriseOne single sign-on configuration through Oracle Access Manager. Long User ID and Password Support in JD Edwards EnterpriseOne Page 3

MANAGING LONG USER IDS AND PASSWORDS IN ORACLE APPLICATION SERVER SINGLE SIGN-ON When LDAP support is enabled in a JD Edwards EnterpriseOne and Oracle Application Server Single Sign-On (OSSO) configuration, JD Edwards EnterpriseOne uses the LDAP server settings to search for user profiles in the LDAP server, as illustrated in this diagram: In this diagram, the JD Edwards EnterpriseOne application requests a search of the Directory Information Tree for a JD Edwards EnterpriseOne user in the United States with an ab12345 user ID. The user can only be found if these attributes contain valid values: Attribute USRSRCHBAS (User Search Base) USRSRCHSCP (User Search Scope) USRSRCHFLT (User Search Filter) USRSRCHATR (User Search Attribute) E1USRIDATR (EnterpriseOne User ID Attribute) Value o=enterpriseone, c=us subtree objectclass=inetorgperson uid uid Long User ID and Password Support in JD Edwards EnterpriseOne Page 4

In LDAP, the user ID (uid) is configured as the value for both User Search Attribute and EnterpriseOne User ID Attribute, which is used by the Security Server as the login user ID. Other attributes and values, such as mail=orcladmin@host.com, can be used as a long user ID for third-party systems that need to use the same LDAP configuration. However, note that the user password still is limited to 10 characters as the LDAP record is the same for both uid=ab12345 and mail=orcladmin@host.com. The following example shows the configuration of the mail attribute: When the mail attribute is used by a third-party system, the uid attribute can be used for JD Edwards EnterpriseOne security. Note that the user password still is limited to 10 characters. An alternative is to set up JD Edwards EnterpriseOne to use the sn attribute instead of uid, as illustrated in this example: Long User ID and Password Support in JD Edwards EnterpriseOne Page 5

In this configuration, the third-party system can use the UID attribute for login. After you add the long user ID in the LDAP server, you must map this ID to the EnterpriseOne user ID using JD Edwards EnterpriseOne. See Managing User ID Mapping in JD Edwards EnterpriseOne in the JD Edwards EnterpriseOne Tools 8.97 Security Administration Guide. Prerequisite Successful integration between Oracle Single Sign-On with JD Edwards EnterpriseOne has been established. See Understanding Single Sign-On Between JD Edwards EnterpriseOne and Oracle in the JD Edwards EnterpriseOne Tools 8.97 Security Administration Guide. Configuring LDAP for Longer User IDs To configure LDAP for long user IDs, you must specify an attribute that you want to use for long user IDs and then use that attribute to configure all the users with long user IDs. 1. On the LDAP Server, log in as an administrator. Long User ID and Password Support in JD Edwards EnterpriseOne Page 6

2. On Oracle Directory Manager, expand the Entry Management node and select a user account. 3. Choose and note the attribute that you want to use to configure each long user ID. 4. Use this attribute to set up each JD Edwards Enterprise HTML client user with a long user ID. 5. Log out and close Oracle Directory Manager. Map Long User IDs in JD Edwards EnterpriseOne Access the SSO Environment Configuration Tools form. In JD Edwards Solution Explorer, select System Administration Tools (GH9011), Security Maintenance, Security Maintenance Advanced and Technical Operations, SSO Environment Configuration Tools. 1. Click the Configure the UserID Mapping link. 2. To add a user ID mapping, on the Work with SSO E/E1 UserID Mapping form, click Add. 3. On the SSO E/E1 userid Mapping Revisions form, complete the EnterpriseOne UserID and Enterprise UserID fields. Use the new longer user ID created in LDAP for the Enterprise UserID fields. The system saves the record in the F00927 table. Note: If the EnterpriseOne user ID is not in the F0092 table, the system generates an error stating that it cannot add the mapping record. Long User ID and Password Support in JD Edwards EnterpriseOne Page 7

MANAGING LONG USER IDS AND PASSWORDS IN ORACLE ACCESS MANAGER This section provides an overview and discusses how to: Overview Configure LDAP for longer user IDs. Configure Oracle Access Manager for longer user IDs. Test signing into JD Edwards EnterpriseOne using a longer user ID. Oracle Access Manager enables you to manage long user IDs and passwords in a single sign-on configuration with JD Edwards EnterpriseOne. Using Oracle Directory Manager, a component of Oracle Access Manager, you can configure and map JD Edwards EnterpriseOne user IDs to longer user IDs. In addition to mapping user IDs, you must set up an authorization policy in Oracle Access Manager so that the system is directed to authorize the long user IDs when accessing JD Edwards EnterpriseOne in a single sign-on configuration. See Also: Setting Up JD Edwards EnterpriseOne Single Sign-On Through Oracle Access Manager in the JD Edwards EnterpriseOne Tools 8.97 Guide. Prerequisites Before you configure long user ID and password support between Oracle Access Manager and JD Edwards EnterpriseOne, you must: Establish integration between Oracle Access Manager and JD Edwards EnterpriseOne. For more information, see Setting Up JD Edwards EnterpriseOne Single Sign-On Through Oracle Access Manager in the JD Edwards EnterpriseOne Tools 8.97 Guide. Ensure all services have been started including Oracle Access Manager Identity Server, Oracle Access Manager Access Server, Oracle Application Server, and JD Edwards EnterpriseOne HTML Web Server. Configure the web browser to allow cookies, according to vendor instructions. Configuring LDAP for Longer User IDs To configure LDAP for long user IDs, you must specify an attribute that you want to use for long user IDs and then use that attribute to configure all the users with long user IDs. 1. On the LDAP Server, log in as an administrator. Long User ID and Password Support in JD Edwards EnterpriseOne Page 8

2. On Oracle Directory Manager, expand the Entry Management node and select a user account. 3. Choose and note the attribute that you want to use to configure each long user ID. You use this attribute when you configure the authentication scheme. Note: When you set up JD Edwards EnterpriseOne HTML client users with long user IDs, you must this attribute for the long user ID. 4. Log out and close Oracle Directory Manager. Configure Oracle Access Manager for Long User IDs To set up and configure Oracle Access Manager single sign-on to use longer user IDs for JD Edwards EnterpriseOne, you must: Create an authentication scheme. Configure the authentication scheme. Enable the authentication scheme. Configure a policy domain. Create an Authentication Scheme 1. Log in to Oracle Access System Console. 2. Navigate to Authentication Management. Long User ID and Password Support in JD Edwards EnterpriseOne Page 9

3. Click the Add button. 4. On the General tab, complete these fields, and then click Save: Field Value Name Enter a name for the authentication scheme. Description Enter a description. Level 1 Challenge Method Select the Basic option. Challenge Parameter realm:oracle Access and Identity SSL Required Select the No option. Challenge Redirect Leave blank. Enabled Select No. Update Cache Select this check box. 5. On the dialog box, click OK to commit the changes. Long User ID and Password Support in JD Edwards EnterpriseOne Page 10

Configure the Authentication Scheme 1. Click the new authentication scheme and click the Plugins tab. 2. On the Plugins tab, click Modify. 3. Enter the following parameters for the two plugins. You must click the Add button to add the parameters for the second plugin. Plugin Name credential_mapping validate_password Plugin Parameters obmappingbase= <mappingbase>,obmapiingfilter= (&(&(objectclass=interorgperson)(< ldap_attribute>=%userid%))( (!(obuseraccountcontrol=*))(obuseraccountcontrol=activa TED))) where <mappingbase> is the LDAP mapping base. and <ldap_attribute> is the user LDAP attribute used for the long user ID. For example, if you used the mail attribute to enter long user IDs, you would enter mail here. obcredentialpassword= password 4. Click Save. This screen shows the added plugins: Long User ID and Password Support in JD Edwards EnterpriseOne Page 11

Enable the Authentication Scheme 1. Click the General tab and then click the Modify button. Long User ID and Password Support in JD Edwards EnterpriseOne Page 12

2. Select Yes for Enabled. 3. Click Save. 4. On the dialog box, click OK to commit the changes. Configure a Policy Domain 1. Log in to Oracle Policy Manager. Long User ID and Password Support in JD Edwards EnterpriseOne Page 13

2. Navigate to the Policy Domain that protects JD Edwards EnterpriseOne URLs. 3. Under the Policies tab, click the Authentication Rule tab and then click Modify. 4. Click OK on the dialog box to continue. 5. In the Authentication Scheme field, select the name of the newly created Authentication Scheme, and then click Save. 6. Log out of Oracle Policy Manager. Test Signing into JD Edwards EnterpriseOne Using a Long User ID After you configure Oracle Access Manager single sign-on to use long user IDs for JD Edwards EnterpriseOne, you should use a long user ID that you configured in the previous section to test the configuration. 1. In a web browser, enter the URL for the JD Edwards EnterpriseOne web client. The Oracle Access and Identity screen appears. 2. On Oracle Access and Identity, enter a long user ID that was configured in the previous section, along with the associated password. Long User ID and Password Support in JD Edwards EnterpriseOne Page 14

If the authentication with Oracle Access Manager SSO was successful, the JD Edwards EnterpriseOne form for selecting an environment and role appears. Long User ID and Password Support in JD Edwards EnterpriseOne Page 15

Oracle Corporation World Headquarters 500 Oracle Parkway Redwood Shores, CA 94065 U.S.A. Worldwide Inquiries: Phone: +1.650.506.7000 Fax: +1.650.506.7200 oracle.com Copyright 2006, Oracle. All rights reserved. This document is provided for information purposes only and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. Oracle, JD Edwards, PeopleSoft, and Retek are registered trademarks of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. This document is for informational purposes only and may not be incorporated into a contract or agreement.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information