X

Oracle Customer Engineering & Advocacy Lab (CEAL) Blog covers BI Tech, EPM, BI Cloud and EPM Cloud.

SAML2.0 SSO for PBCS and Oracle Cloud

Veera Raghavendra Koka
Principal BI Cloud Security Specialist

SSO for Oracle Cloud:

Oracle Cloud uses the
SAML 2.0 protocol to integrate internal and external users. Oracle Cloud
doesn’t support all features of this standard.

Oracle Cloud uses the SAML standard to enable secure,
cross-domain communication between Oracle Cloud and other SAML-enabled Oracle
systems, as well as a selected number of non-Oracle identity management systems
located on-premises or in a different cloud.

Oracle Cloud SSO also includes a failback mechanism.
If SSO becomes inoperable, then administrators can log in to their identity
domains directly, bypassing the SSO identity provider. This is necessary to
resolve problems. 

SAML
Identity Provider Requirements

To
work with the service provider, which in this case is Oracle Cloud, an identity
provider must support SAML 2.0.

Oracle
Cloud supports any SAML 2.0–compliant identity provider. The following identity
providers have been certified with Oracle Cloud:

· Microsoft
Active Directory Federation Services 2.0, 2.1, and 3.0

· Oracle
Identity Federation 11gR1 and Oracle Access Manager and Identity Federation
11gR2

· Shibboleth
2.4.0

Below
are references to document links on steps to Config SAML2.0 SSO for PBCS:

Configuring Active Directory Federation Services 3.0 as an
Identity Provider with Oracle Cloud as Service Provider:

http://www.oracle.com/webfolder/technetwork/tutorials/obe/cloud/sharedidm/cloud_sso_idp_configuration/ADFS3.0/ADFS3.0__IdPConfig_CloudSP.html#overview

Configuring Active Directory Federation Services 2.0 as an
Identity Provider with Oracle Cloud as Service Provider:

http://www.oracle.com/webfolder/technetwork/tutorials/obe/cloud/sharedidm/cloud_sso_idp_configuration/ADFS2.0/ADFS2.0_IdPConfig_CloudSP.html#section5

Configuring Oracle Access Management Identity Federation 11gR2
PS2 as an Identity Provider with Oracle Cloud as Service Provider:

http://www.oracle.com/webfolder/technetwork/tutorials/obe/cloud/sharedidm/cloud_sso_idp_configuration/OAM11gR2/OAMIF11gR2_IdPConfig_CloudSP.html

Configuring Azure AD Base Version as an Identity Provider with
Oracle Planning and Budgeting Cloud Service:

https://community.oracle.com/docs/DOC-997863

Manage Users and Roles in Oracle Cloud:

http://www.oracle.com/webfolder/technetwork/tutorials/obe/cloud/sharedidm/cloud_sso_idp_configuration/manage_user_roles/manage_users_roles.html#overview

After
Configuring and testing SSO, Importing users and Setting Roles (Videos):

https://blogs.oracle.com/emeapartnerbiepm/entry/pbcs_how_to_videos

Overview: Understanding Security and Roles in Planning and
Budgeting Cloud:

https://www.youtube.com/watch?time_continue=17&v=-Q4VSCJksO0

Managing Users in Oracle Planning and Budgeting Cloud Service:

https://www.youtube.com/watch?v=RoCJVeFzIV0

Predefined Roles in Oracle Planning and Budgeting Cloud Service:

https://www.youtube.com/watch?v=uPOB1vT-TZc

Creating Users and Assigning Roles in Oracle Planning and
Budgeting Cloud:

https://www.youtube.com/watch?v=K-zPWZGUKh4

Import a Batch of Users into Oracle Planning and Budgeting Cloud
Service:

https://www.youtube.com/watch?v=xgWlHVuchmg


Below
are references to document links to more info on SAML2.0 SSO for Oracle Cloud:

Configuring Federated SSO and Authentication:

https://docs.oracle.com/en/cloud/paas/process-cloud/cprcw/configuring-federated-sso-and-authentication.html

Understanding Identity Concepts:

https://docs.oracle.com/en/cloud/get-started/subscriptions-cloud/ocuid/oracle-single-sign.html

Secure Your Oracle Cloud Applications with In-house Identity and
Access Management:

https://blogs.oracle.com/the-cloud-front/entry/secure_your_oracle_cloud_applications

Getting Started with Oracle Cloud:

http://docs.oracle.com/en/cloud/get-started/subscriptions-cloud/csgsg/toc.htm

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.Captcha
Oracle

Integrated Cloud Applications & Platform Services