Saturday, November 26, 2011

Authentication Policy & how to configure one on Oracle Access Manager 11.1.1.5 (11g)

Authentication Policy & how to configure one on Oracle Access Manager 11.1.1.5 (11g)

Each resource assigned to an application domain can be protected by only one authentication policy. After adding a resource definition to the application domain, the administrator can begin refining a default authentication policy, adding a new policy, and assigning resources to the authentication policy.

  • Administrators use authentication policies to protect specific resources. The authentication policy provides the sole authentication method for resources governed by the policy.
  • Each authentication policy defines the type of verification that must be performed to provide a sufficient level of trust for Oracle Access Manager to grant access to the user making the request.
  • Authentication policies are local. A single policy can be defined to protect one or more resources in the application domain. However, each resource can be protected by only one authentication policy. There is no policy inheritance as there is with Oracle Entitlement Server. The policy cannot be applied to any other resource.
Authentication Policy contains
a) Authentication Scheme – which defines how users are authenticated
b) Success/Failure URL – User is shown something based on the result of Policy
Evaluation
c) Responses – declares optional actions to be taken for OAM’s Single Sign-On feature,
and provides the ability to insert information into a session and pull it back out later.
To create an Authentication Policy, do the steps as shown:

2 comments:

  1. Hi,

    Can we do this change using wlst script or online.


    Thanks
    Anil

    ReplyDelete

SOA Cloud 12c GIT Repository

When a project is created, you can choose to initialize the project with one project Git repository for the project. A Maven repository is a...