untitled

Similar documents
untitled

Oracle Change Management Pack, Oracle Diagnostics Pack, Oracle Tuning Packインストレーション・ガイド リリース2.2

new_logo.eps

Oracle8 Workgroup Server for Windows NTインストレーション・ガイド,リリース8.0.6

Oracleコール・インタフェース for Windows スタート・ガイド リリース8.1.6

Copyright Oracle Parkway, Redwood City, CA U.S. GOVERNMENT END USERS: Oracle programs, including any operating system, integrated softw

new_logo.eps

KeySQL for Microsoft Windows 6.0 : B Copyright 2006, Oracle Corporation. All rights reserved. Printed in Japan. * Oracle Corporation Oracle Co

KeySQL R5.1 Release Note

Oracle Records Manager Corporate Editionリリース・ノート, 10gリリース3( )

Oracle Enterprise Manager概説 リリース2.2

2 2 3 dbxtool dbx (GUI) dbxtool dbx C++ Oracle Solaris Studio 12.2 examples/debugger/debug_tutorial 1. cp -r /opt/solstudio12.2/examples/de

ワークスペースの管理 for Oracle Planning and Budgeting Cloud Service

Cisco® ASA シリーズルーター向けDigiCert® 統合ガイド

Sun Netra 6000 モジュラーシステムご使用にあたって

Oracle Identity Managementの概要およびアーキテクチャ

Oracle Secure Enterprise Search 10gを使用したセキュアな検索


Oracle9i Application Server for Windows NT Oracle HTTP Server powered by Apacheパフォーマンス・ガイド, リリース1.0.2

untitled



Copyright 2009 Sun Microsystems, Inc Network Circle, Santa Clara, CA U.S.A. All rights reserved. Sun Microsystems, Inc. ( Sun Microsystems


StorageTek Tape Analytics - セキュリティーガイド


Release Notes.book


Microsoft Intune MDM ソリューション向けDigiCert® 統合ガイド


Oracle Application Server10g (9.0.4) - OracleAS PortalによるOracleAS Web Cacheの配置

- 2 Copyright (C) All Rights Reserved.


Oracle Application Server 10g( )インストール手順書

untitled

Windows Oracle -Web - Copyright Oracle Corporation Japan, All rights reserved.

Oracle Application Server 10g(9

Mobilelron® Virtual Smartphone Platform 向けDigiCert® 統合ガイド

Release Notes for JMP book

組織変更ライブラリ

interop.book

Copyright 2008 All Rights Reserved 2

ハピタス のコピー.pages

相続支払い対策ポイント

150423HC相続資産圧縮対策のポイント

Dec , IS p. 1/60

untitled

<Documents Title Here>

"CAS を利用した Single Sign On 環境の構築"

Oracle Application Server 10g (9.0.4): Manually Managed Cluster

Northern Lights Server

Oracle Application Server 10g Release 3(10.1.3)Oracle HTTP Serverの概要

Oracle Application Server 10gリリース2( )Oracle HTTP Serverの概要

Cleaner XL 1.5 クイックインストールガイド

RTX830 取扱説明書

Configuring_01

Oracle Lite Windows CE開発者ガイド,リリース4.0.1

- 2 Copyright (C) All Rights Reserved.

<Documents Title Here>

untitled


外部SQLソース入門

KWCR3.0 instration

untitled

how-to-decide-a-title

初心者にもできるアメブロカスタマイズ新2016.pages

Pro*COBOL for Windows プリコンパイラ・スタート・ガイド リリース8.1.6/1.8.51

NetWorker Avamar リリース8.0統合ガイド

Oracle Enterprise Manager 10g R2 Grid Control: データベース管理の新機能

Correspondence Management Solution のインストールと設定

Copyright 2008 NIFTY Corporation All rights reserved. 2

Oracle Business Activity Monitoringリリース・ノート, 10gリリース3( )

展開とプロビジョニングの概念

<Documents Title Here>

<Documents Title Here>

FileMaker Server 9 Getting Started Guide

基本操作ガイド

EMC NetWorker Module for Microsoft SQL Server リリース5.2 SP1インストール・ガイド

untitled

取扱説明書の読み替え一覧表

操作ガイド(本体操作編)

Oracle Database Clientクイック・インストレーション・ガイド, 10gリリース 2(10.2)for Microsoft Windows(32-bit)

Copyright All Rights Reserved. -2 -!

Aventail EX-2500/1600/750 STv(Ver.8.9) Sep 2007 c 2007 SonicWALL,Inc. All rights reserved.

Oracle データベース移行計画アセスメント:移行前

Oracle Calendar Oracle Collaboration Suite 2(9.0.4) Creation Date: Jun 04, 2003 Last Update: Nov 18, 2003 Version:

<Documents Title Here>

Oracle Web Conferencing Oracle Collaboration Suite 2 (9.0.4) Creation Date: May 14, 2003 Last Update: Jan 21, 2005 Version: 1.21

Microsoft Word - D JP.docx

Copyright 2006 KDDI Corporation. All Rights Reserved page1

IPA:セキュアなインターネットサーバー構築に関する調査

インターネット接続ガイド v110

意外と簡単!?

untitled

操作ガイド(本体操作編)

Abstract Journal of Agricultural Science 2

untitled

Microsoft Word - 最終版 バックせどりismマニュアル .docx

Cisco Aironet 1130AG アクセス ポイント クイック スタート ガイド

"CAS を利用した Single Sign On 環境の構築"

Transcription:

Oracle Enterprise Repository etrust SiteMinder 10g 3 (10.3) 2008 10

Oracle Enterprise Repository etrust SiteMinder Setup and Configuration Guide, 10g Release 3 (10.3) Copyright 2007, 2008, Oracle. All rights reserved. : Vimmika Dinesh : Scott Spieker, Jeff Schieli, Sharon Fay, Atturu Chandra Prasad Reddy U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are "commercial computer software" or "commercial technical data" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the Programs, including documentation and technical data, shall be subject to the licensing restrictions set forth in the applicable Oracle license agreement, and, to the extent applicable, the additional rights set forth in FAR 52.227-19, Commercial Computer Software--Restricted Rights (June 1987). Oracle USA, Inc., 500 Oracle Parkway, Redwood City, CA 94065. redundancy OracleJD EdwardsPeopleSoftSiebelOracle Corporation Web Web

Oracle Enterprise Repository etrusttm SiteMinder SiteMinder Oracle Enterprise Repository SiteMinder Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 1 / 14

Oracle Enterprise Repository Advanced Container Authentication Login Module (SSO ) HTTP etrust Siteminder SiteMinder Oracle Enterprise Repository Access Administrator SSO SOAP - AuthtokenCreate REX API SOAP Advanced Container Login Module SOAP SOAP Oracle Enterprise Repository enterprise.container.auth.username namespaceuri www.oracle.com/oer SOAP SOAP Oracle Enterprise Repository enterprise.loginmodules.fallbackauthentication enterprise.loginmodules.fallbackauthentication true PluggableLoginModule LDAP Container Managed Login Module Advanced Container Login Module (SSO) [System Settings] : REX API Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 2 / 14

SiteMinder Oracle Enterprise Repository [Admin] 1. [System Settings] 2. [Search] enterprise.authentication.advancedcontainer.enabled [True] [Save] 3. [Enable New System Setting] cmee.jws.pass cmee.jws.pass-all all-cookies 4. [Enable] [Server Settings] [Java Web Start (JWS)] [JWS Pass All Cookies] Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 3 / 14

5. [True] 6. [Save] 7. [System Settings] [Search] container login module [Enterprise Authentication] [Containter Login Module] 8. [Container Login Module Class Name] com.flashline.enterprise.authentication.server.loginmodule.advancedco ntainerlogin [Container Login Module Display Name] Advanced Container Login Module [Container Login Module] [True] 9. SSO ( ) [Username Header Name] UID [Name] ID ( ) [Firstname Header Name] Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 4 / 14

() [Name] () [Middlename Header Name] ( ) [Name] () [Lastname Header Name] () [Name] () [Status Header Name] [Name] OER () 00-10 - 20-30 - [Email Header Name] [Name] () [Phone Header Name] [Name] [Roles Header Name] [Name] [Department Header Name] [Name] Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 5 / 14

10. SSO [Use Container passed Departments] [True] [Departments passed within single header] [True] [Department Delimiter] 1 u0020 () Unicode [Use Container passed Roles] [True] ( : [true] Oracle Enterprise Repository ) [Roles passed within single header] [True] [Role Delimiter] 1 u0020 () Unicode [Assign default roles to users] Oracle Enterprise Repository [True] [Auto create missing roles] Oracle Enterprise Repository Oracle Enterprise Repository [True] Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 6 / 14

[Auto create missing departments] Oracle Enterprise Repository [True] 11. [System Settings] [Search] cookie login module [Enterprise Authentication] [Cookie Login Settings] 12. [Cookie Login Module] [False] 13. [System Settings] [Search] plug-in login [Enterprise Authentication] [Plugin Login Settings] 14. [Plug-in Login Module] false 15. [Save] Oracle Enterprise Repository SSO SiteMinder Oracle Enterprise Repository Asset Editor 1. cmee.jws.suppress-authorization-header 2. [True] 3. [Save] : Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 7 / 14

1. WEB-INF/classes containerauth.properties SiteMinder SiteMinder SiteMinder SiteMinder true "" SiteMinder null ( (*) ) Oracle Enterprise Repository ( : SiteMinder SiteMinder ) enterprise.container.auth.username = <UID>* enterprise.container.auth.firstname = <FIRST_NAME> enterprise.container.auth.middlename = <MIDDLE_NAME> enterprise.container.auth.lastname = <LAST_NAME> enterprise.container.auth.status = <STATUS> enterprise.container.auth.email = <MAIL>* enterprise.container.auth.phone = <PHONE> enterprise.container.auth.roles = <ROLES> enterprise.container.auth.depts = <DEPARTMENTS> enterprise.container.auth.enable-synch-roles = true enterprise.container.auth.roles-single-header = true enterprise.container.auth.roles-delimiter = u0020 enterprise.container.auth.enable-synch-depts = true enterprise.container.auth.depts-single-header = true enterprise.container.auth.depts-delimiter = u0020 : 6 1 enable-synch-roles enable-synchdepts Unicode Unicode Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 8 / 14

2. SiteMinder Web HTTP AJP (Apache HTTP Server mod_jk/mod_jk2ibm HTTP Server mod_was_ap20_http ) HTTP HTTP cmee.properties WEB-INF/classes cmee.properties (Coyote Tomcat) cmee.server.paths.image=http ://tomcat.example.com :8080/flashli ne-web/images cmee.server.paths.jsp=http ://tomcat.example.com :8080/flashline cmee.server.paths.servlet=http ://tomcat.example.com :8080/flashli ne cmee.server.paths.jnlp-tool=http ://tomcat.example.com :8080/flash line-web/webstart cmee.server.paths.resource=http ://tomcat.example.com :8080/flas hline-web cmee.enterprisetab.homepage=http ://tomcat.example.com :8080/fl ashline/custom/home.jsp cmee.assettab.asset-detail-page=http ://tomcat.example.com :808 0/flashline/cmee/index.jsp (mod_jk2 Apache HTTP Tomcat ) cmee.server.paths.image=http ://apache.example.com/flashlineweb /images cmee.server.paths.jsp=http ://apache.example.com/flashline cmee.server.paths.servlet=http ://apache.example.com/flashline cmee.server.paths.jnlp-tool=http ://apache.example.com/flashline-w eb/webstart cmee.server.paths.resource=http ://apache.example.com/flashlineweb cmee.enterprisetab.homepage=http ://apache.example.com/flashlin e/custom/home.jsp cmee.assettab.asset-detail-page=http ://apache.example.com/flashl ine/cmee/index.jsp URL http://apache.example.com/flashline/index.jsp 3. Oracle Enterprise Repository Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 9 / 14

SiteMinder RBAC : 1. Oracle Enterprise Repository [Admin] 2. [Admin] [Roles] 3. [Create New] 4. Browse_Only [Automatically assign to new users] 5. [Save] 6. [1: Create/Submit] 7. [Edit] [Automatically assign to new users] 8. [Save] 9. [User] 10. [Edit] [Automatically assign to new users] (Oracle Enterprise Repository [User] ) 11. [Save] 12. [Custom Access Settings] 13. [Create New] 14. Browse_Only [Automatically assign to all new assets] Browse_Only [View] 15. [Save] 16. [OK] Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 10 / 14

: 1. Oracle Enterprise Repository [Admin] 2. [Admin] [Roles] 3. [Create New] 4. Browse_Only [Automatically assign to new users] 5. [User] 6. [Edit] [Automatically assign to new users] (Oracle Enterprise Repository [User] ) 7. [Save] Oracle Enterprise Repository SiteMinder Oracle Enterprise Repository SiteMinder SiteMinder Oracle Enterprise Repository SiteMinder Oracle Enterprise Repository [Enable Unapproved User Login] = true ( : enterprise.properties) enterprise.security.unapproveduser.allowlogin=true Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 11 / 14

Oracle Enterprise Repository SiteMinder [Enable New User Notification] = true ( : cmee.properties) cmee.new.unapproved.users.notify=true SiteMinder [Enable Department Syncing] = true ( : containerauth.properties) enterprise.container.auth.enable-synch-depts - true false [Enable Department Creation] = true ( : containerauth.properties)* enterprise.container.auth.auto-create-missing-depts - true false SiteMinder SiteMinder Oracle Enterprise Repository SiteMinder 1 1 - : enterprise.container.auth.enable-synch-depts= true enterprise.container.auth.depts-single-header= false enterprise.container.auth.depts-delimiter= "" enterprise.container.auth.depts= DEPT_HEADER_NAME DEPT_HEADER_NAME=DEPTA DEPT_HEADER_NAME=DEPTB DEPT_HEADER_NAME=DEPTC and NOT DEPT_HEADER_NAME=DEPTA DEPTB DEPTC... Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 12 / 14

2-1 : enterprise.container.auth.enable-synch-depts= true enterprise.container.auth.depts-single-header= true enterprise.container.auth.depts-delimiter= "^" enterprise.container.auth.depts= DEPT_HEADER_NAME DEPT_HEADER_NAME=DEPTA^DEPTB^DEPTC^... and NOT DEPT_HEADER_NAME=DEPTA DEPT_HEADER_NAME=DEPTB DEPT_HEADER_NAME=DEPTC SiteMinder [Enable Role Syncing] = true ( : containerauth.properties) enterprise.container.auth.auto-create-missing-roles - true false SiteMinder SiteMinder Oracle Enterprise Repository Oracle Enterprise Repository [Enable Missing Role Creation] = true ( : containerauth. properties) enterprise.container.auth.auto-create-missing-roles = true Siteminder 1 1 - : enterprise.container.auth.enable-synch-roles= true enterprise.container.auth.roles-single-header= false enterprise.container.auth.roles-delimiter= "" enterprise.container.auth.roles= ROLE_HEADER_NAME Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 13 / 14

ROLE_HEADER_NAME=ROLEA ROLE_HEADER_NAME=ROLEB ROLE_HEADER_NAME=ROLEC and NOT DEPT_HEADER_NAME=ROLEA ROLEB ROLEC... 2-1 : enterprise.container.auth.enable-synch-roles= true enterprise.container.auth.roles-single-header= true enterprise.container.auth.roles-delimiter= "^" enterprise.container.auth.roles= ROLE_HEADER_NAME DEPT_HEADER_NAME=ROLEA^ROLEB^ROLEC^... and NOT ROLE_HEADER_NAME=ROLEA ROLE_HEADER_NAME=ROLEB ROLE_HEADER_NAME=ROLEC log4fl.properties log4j.category.com.flashline.enterprise.authentication.client.logincontext=debug, cmeelog Copyright (c) 2007, 2008, Oracle and/or its affiliates.all rights reserved. 14 / 14

2024 © docsplayer.net プライバシー | 利用規約 | フィードバック