Oracle Information Rights Management Oracle IRM Windows Authentication Extension Guide 10gR3 August 2008

Similar documents
Oracle Information Rights Management Sealed for Lotus Notes Extension 10gR3 PR3 May 2008

Primavera Portfolio Management Reporting Views for SQL Server databases

Oracle Enterprise Single Sign-on Kiosk Manager

Oracle Enterprise Single Sign-on Kiosk Manager. User Guide Release E

Copyright 1998, 2009, Oracle and/or its affiliates. All rights reserved.


OIPA System Requirements. Oracle Insurance Policy Administration - Life Release 8.1 E May 2009

Adaptive Risk Manager Challenge Question Cleanup 10g ( ) December 2007

PEOPLESOFT FINANCIALS/SUPPLY CHAIN MANAGEMENT 9 MAINTENANCE PACK 13 DELTA

Oracle Application Access Controls Governor. Release Notes Release 8.0.1

Oracle Enterprise Manager

System Monitoring Plug-in Installation Guide for Microsoft Internet Information Services Release 4 ( ) Versions Supported

USING ADMINISTRATOR FEATURES

AutoVue Integration SDK. Security and Authentication Guide

Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

Oracle Enterprise Single Sign-on Provisioning Gateway

Oracle Alert Documentation Updates

New Features in Primavera Professional 15.2

PDF Quick Reference. Oracle Health Sciences InForm CRF Submit Release Part Number: E

GRCC Reporting Framework BIP for GRCC Admin/Implementation Guide

JD Edwards EnterpriseOne 8.12 Standalone Client Installation Guide. for the Oracle Application Server

Oracle Enterprise Manager. Description. Platforms Supported. Versions Supported

Adaptive Strong Authenticator Configuration Guide 10g ( ) December 2007

Oracle Enterprise Manager

Governance, Risk, and Compliance Controls Suite. Hardware and Sizing Recommendations. Software Version 7.2

Oracle Enterprise Single Sign-on Logon Manager. Installation and Setup Guide Release E

Oracle Enterprise Manager. Description. Versions Supported. Prerequisites

Secure Configuration Guide

Oracle Enterprise Manager. Description. Versions Supported. System Monitoring Plug-in Installation Guide for EMC CLARiiON System Release 5 (

Primavera Portfolio Management 9.1 Bridge for Microsoft Office Project Server 2007 Users Guide

Getting Started with Attunity Replicate on Amazon EC2. Version 6.0

2 Records Manager Updates

IVS Explorer User s Guide. Oracle Insurance Policy Administration - Life Release 8.1 E May 2009

Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

Primavera Portfolio Management 9.1 Bridge for Primavera P6 Users Guide

Oracle Enterprise Manager. Description. Versions Supported. Prerequisites

Oracle Retail Category Management Release Notes Release April 2007

Oracle Enterprise Single Sign-on Provisioning Gateway. Novell Identity Manager Integration and Installation Guide Release


Cover Page. Oracle Report Parser System Administration Guide 10g Release 3 ( ) March 2007

Siebel Application Deployment Manager Guide. Version 8.0, Rev. A April 2007

Oracle Insurance QuickView Service Ordering User Guide. Version 8.0

Oracle Retail Demand Forecasting Installation Guide Release 12.0 May 2006

Oracle Workflow Builder for Windows 2000 or Windows XP. Oracle XML Gateway Message Designer for Windows 2000

Copyright

Oracle Database. Products Available on the Oracle Database Examples Media. Oracle Database Examples. Examples Installation Guide 11g Release 1 (11.

Oracle Hospitality OPERA Exchange Interface Cloud Authentication. October 2017

Technical Enhancements

1 Important Configuration Changes

Copyright

Oracle VueLink for Documentum

Oracle Enterprise Single Sign-on Authentication Manager

Module Code Entries Utility Oracle FLEXCUBE Universal Banking Release [December] [2016]

AutoVue Document Print Service. Overview

equestionnaire User Guide

Oracle Tuxedo Mainframe Adapter for SNA

Oracle is a registered trademark, and Oracle Rdb, Oracle RMU and Oracle SQL/Services are trademark or registered trademarks of Oracle Corporation.

Defining Constants and Variables for Oracle Java CAPS Environments

JD Edwards EnterpriseOne Licensing

BAA Oracle EBS R12.1 isupplier Portal Created on 11/26/2012 3:18:00 PM

JavaFX. JavaFX System Requirements Release E

1 Review Information About this Guide

Oracle Hospitality Suite8 Export to Outlook User Manual Release 8.9. July 2015

Oracle Enterprise Manager

Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

Oracle Enterprise Single Sign-on Provisioning Gateway

Oracle Enterprise Single Sign-on Logon Manager How-To: Configuring ESSO-LM Event Logging with Microsoft SQL Server 2005 Release

1 Review Information About this Guide

Oracle Retail Replenishment Optimization Installation Guide Release April 2008

Reporting User Guide. Prodika Product Lifecycle Management. Release 5.1

Oracle Utilities Work and Asset Management

1 Understanding the Cross Reference Facility

Recipe Calculation Survey. Materials Control. Copyright by: MICROS-FIDELIO GmbH Europadamm 2-6 D Neuss Date: August 21 st 2007.

Oracle Enterprise Manager

JavaFX. JavaFX System Requirements Release E

New Features in Primavera P6 16.2

Oracle Retail Invoice Maching Installation Guide Release March 2006

Release Notes. Oracle Insurance Policy Administration Release 8.1 E May 2009

ORACLE DATA INTEGRATOR ADAPTER FOR HYPERION FINANCIAL MANAGEMENT GETTING STARTED

Adaptive Risk Manager Offline PoC Guide 10g ( ) December 2007

Microsoft Active Directory Plug-in User s Guide Release

Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

General Security Principles

Oracle Retail Demand Forecasting Installation Guide Release June 2007

Oracle Retail Merchandising System Release Notes Release French August 2006

Oracle Access Manager

Oracle Enterprise Manager Ops Center

Document Reference Library User Guide

Oracle Enterprise Manager. 1 Introduction. System Monitoring Plug-in for Oracle Enterprise Manager Ops Center Guide 11g Release 1 (

Oracle Enterprise Manager

Synchronous SAP Connector

Copyright

Security Guide Release 4.0

Oracle Endeca Commerce Compatibility Matrix

What s New for Cloud at Customer What's New for the Cloud Services on Oracle Cloud at Customer New Documentation for Oracle Cloud at Customer

Administrator Guide. Oracle Health Sciences Central Designer 2.0. Part Number: E

Oracle Enterprise Manager Ops Center. Introduction. What You Will Need. Creating vservers 12c Release 1 ( )

Oracle Enterprise Manager. Description. Versions Supported

Oracle Retail WebTrack Release Notes Release September 2007

Materials Control. Purchase Orders Internal Attachments. Product Version: Attachments Joerg Trommeschlaeger.

Transcription:

10gR3 August 2008

,, 10gR3 Copyright 2007, 2008, Oracle. All rights reserved. Primary Author: Martin Abrahams Contributing Author: Martin Wykes The Programs (which include both the software and documentation) contain proprietary information; they are provided under a license agreement containing restrictions on use and disclosure and are also protected by copyright, patent, and other intellectual and industrial property laws. Reverse engineering, disassembly, or decompilation of the Programs, except to the extent required to obtain interoperability with other independently created software or as specified by law, is prohibited. The information contained in this document is subject to change without notice. If you find any problems in the documentation, please report them to us in writing. This document is not warranted to be error-free. Except as may be expressly permitted in your license agreement for these Programs, no part of these Programs may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose. If the Programs are delivered to the United States Government or anyone licensing or using the Programs on behalf of the United States Government, the following notice is applicable: U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are "commercial computer software" or "commercial technical data" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the Programs, including documentation and technical data, shall be subject to the licensing restrictions set forth in the applicable Oracle license agreement, and, to the extent applicable, the additional rights set forth in FAR 52.227-19, Commercial Computer Software--Restricted Rights (June 1987). Oracle USA, Inc., 500 Oracle Parkway, Redwood City, CA 94065. The Programs are not intended for use in any nuclear, aviation, mass transit, medical, or other inherently dangerous applications. It shall be the licensee's responsibility to take all appropriate fail-safe, backup, redundancy and other measures to ensure the safe use of such applications if the Programs are used for such purposes, and we disclaim liability for any damages caused by such use of the Programs. Oracle, JD Edwards, PeopleSoft, and Siebel are registered trademarks of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. The Programs may provide links to Web sites and access to content, products, and services from third parties. Oracle is not responsible for the availability of, or any content provided on, third-party Web sites. You bear all risks associated with the use of such content. If you choose to purchase any products or services from a third party, the relationship is directly between you and the third party. Oracle is not responsible for: (a) the quality of third-party products or services; or (b) fulfilling any of the terms of the agreement with the third party, including delivery of products or services and warranty obligations related to purchased products or services. Oracle is not responsible for any loss or damage of any sort that you may incur from dealing with any third party. 30 July 2008

Table of Contents Introduction...4 Activating the Extension...5 Configuring Settings...5 Configuring the Website Folder for Domain User Access...6 Enabling Windows Authentication in a Kerberos Environment...6 Configuring the Website as a Trusted Site in User Browsers...6 Conclusion...7 Page 3 of 7

Introduction This document describes how to activate and configure Windows authentication as an extension to an Oracle IRM deployment based on the Oracle IRM standard rights model. By default, in the standard rights model, all user accounts are configured to use Oracle IRM username and password authentication (otherwise known as standard authentication ). This is a simple mechanism that has no dependency on any other part of your corporate infrastructure, and that is equally applicable to both internal and external users. However, for many deployments there is a requirement to use Windows authentication for internal users. In the standard rights model, this is supported by activating the Windows Authentication extension and making some configuration changes that ensure that the Oracle IRM Management Website is accessible using Windows authentication. The set of tasks is as follows: 1. Activating the Windows Authentication extension. 2. Configuring the Management Website settings so that the user creation page exposes the new options. 3. Configuring the website folder so that its files are accessible to domain users. 4. If relevant, ensuring that IIS can authenticate Windows user accounts in a Kerberos environment. 5. Configuring browser settings of relevant users so that the Management Website is a Trusted Site. This avoids the need for users to specify Windows credentials when accessing the website. In order for Windows authentication to succeed, the Management Website and Oracle IRM Server ( the license server ) need to be able to verify user credentials by reference to the relevant domain controllers. You need to ensure that the necessary domain control communications are possible from the network location of the Oracle IRM applications. Additional configuration might be required if you use Kerberos authentication in your network. Page 4 of 7

Activating the Extension Activating extensions is a Service Owner task. To activate the extension, proceed as follows: 1. Browse to the Oracle IRM Management Website and log in as a Service Owner. 2. Go to the Extensions page. 3. Click the Activate button for the Windows Authentication extension. When you activate the extension, the management website updates the Settings page to expose some new options. You need to configure those options as described in the following section. Configuring Settings When you activate the Windows Authentication extension, the Settings page exposes some new options. 1. Browse to the Oracle IRM Management Website and log in as a Service Owner. 2. Go to the Settings page. 3. Use the Authentication type settings to control whether the Users page allows the creation of user accounts with Oracle IRM ( standard ) authentication only, Windows authentication only, or whether the page allows the website user to choose what type of authentication a new account should use. 4. Click Browse to the Oracle IRM Management Website and log in as a Service Owner. 5. Click Save. If you chose Windows authentication only, the Users page offers an additional field in which you specify the domain account to associate a new Oracle IRM account with. If you chose Both, the Users page provides the option to select the authentication type. If the user selects the Windows option, the field for specifying the domain account appears. You can change the settings at any time. Page 5 of 7

Configuring the Website Folder for Domain User Access Users with administrative rights need to be able to use the management website. If using Windows authentication, the website folders need to allow Read access to domain users, as follows: 1. Start Windows Explorer and browse to the folder containing the Oracle IRM Management Website files, for example, C:\InetPub\wwwroot\SealedMedia Management. 2. Select the smweb subfolder and access its Properties dialog. 3. Use the Security tab to add Read permissions for the Domain Users group. 4. Click OK. Enabling Windows Authentication in a Kerberos Environment If you use Kerberos authentication in your network, you need to ensure that the management website can authenticate Windows user accounts successfully. There are two options: 1. Enable IIS to authenticate accounts using Kerberos. This might involve configuring a Service Principal Name. An MSDN article at http://tinyurl.com/kkxqb provides more information. 2. Enable IIS to authenticate accounts using NTLM in preference to Kerberos. An MSDN article at http://tinyurl.com/jq63f provides more information. Configuring the Website as a Trusted Site in User Browsers To avoid the need for users to specify their Windows credentials when they access the SealedMedia Management Website, you can use browser settings to register the website as a Trusted Site, as follows: 1. In Internet Explorer, go to Tools - Internet Options. 2. Select the Security tab. 3. Select Trusted Sites and click the Sites... button. 4. Add the management website to the list of sites, for example, smweb.abc.com. Omitting the protocol prefix (http://) enables the site to remain trusted if you decide to enable SSL. 5. Deselect the Require server verification (https:) for all sites in this zone option. 6. Click Add and then OK. If you have a large numbers of users, you might use an Active Directory group policy for this configuration. Page 6 of 7

Conclusion The configuration of the Windows Authentication option is now complete. When you use the Oracle IRM Management Website to create user accounts, with Windows authentication, the website uses a different notification email that does not mention a username or password. When users open sealed documents, login is transparent. Similarly, when users access the management website or the management console, login is transparent. Page 7 of 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback