OVD-EUS: Questions and Answers About Mapping Database Users, Roles to AD Users and Groups

More OVD-EUS AD Q&A from sales:

Question: which AD object types are used to store Oracle users and roles in AD
Answer: There are two ways to deploy OVD-EUS. Option 1 - uses OID (or DSEE) to store the EUS metadata, thus the only attribute used in AD is the orclcommon attribute used to store the password hash (assuming using EUS password authentication). Option 2 - The EUS meta-data is stored in a branch explicitly created to store this data and the AD schema is extended to support this.

Question: are any roles added  to AD by default with the schema extension
Answer: No.

Question:  which oracle accounts are typically excluded from integration
Answer: In 10g database you cannot use sysdba users. In 11g any user can be used.

Posted via email from Virtual Identity Dialogue

Comments:

Post a Comment:
Comments are closed for this entry.
About

This is the blog for Oracle Consulting Security North America team. Edited by Mark Wilcox - Chief Technology Officer for Oracle Consulting Security - North America.

Search

Archives
« July 2016
SunMonTueWedThuFriSat
     
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
      
Today