OAG/OES Integration for Web API Security: skin and guts
Introduction When it comes to defining a strategy for web API security, OAG (Oracle API Gateway) and OES (Oracle Entitlements Server) together present a very interesting choice and are a very powerful...
View ArticleChained LDAP Authentication in OAM 11g
Introduction In this post, we look at a simple way to configure a chained LDAP authentication scheme in OAM 11g R2. This post is part of a larger series on Oracle Access Manager 11g called Oracle...
View ArticleUnderstanding OAM 11g ASDK Configuration and Cert Requirements
Introduction Oracle provides documentation on developing an Access Client for the OAM 11g ASDK http://docs.oracle.com/cd/E40329_01/dev.1112/e27134/as_api.htm#autoId0, but getting it to work can be...
View ArticleLogging made easy in OAM 11g with this simple trick!
INTRODUCTION This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is...
View ArticlePart 1: Getting under the covers of Detached Credential Collector (DCC)
Introduction This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is available....
View ArticleOAM11g — The Redirect Infinite Loop
INTRODUCTION This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is available....
View ArticlePart 2: Custom Login and Logout with Detached Credential Collector (DCC)
INTRODUCTION This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager Academy. An index to the entire series with links to each of the separate posts is available....
View ArticleA Beginner’s HowTo on Social Federation with OAM Mobile & Social
Introduction Social Federation: a somewhat fancy name for a simple concept. We want to leverage identities in Social Network providers in our own applications. For example, granting access to either...
View ArticleOracle Access Manager Post Authentication Operation
Since OAM 10g days, keeping track of Protected Resource that user wanted to access throughout custom authentication process has been a challenge. In OAM 10g, it was possible to create custom...
View ArticleMonitoring OAM Environment
Introduction Security systems, including OAM, reside in a dynamic environment where the parameters that affect system performance are ever changing. On top of that, access management Infrastructure...
View ArticleSocial Federation with OAM Mobile & Social in Native iOS Applications
Introduction I’ve already posted an article about Social Federation with Mobile & Social (M&S) for web applications protected by Oracle Access Manager (OAM), showing users being authenticated...
View ArticleIntegrating Oracle Access Management platform with Mobile Application Framework
Fellow A-Team blogger Andre Correa recently posted an article about integrating native IOS Apps with the OAM Mobile & Social SDK in order to do social identity federation within these apps. To...
View ArticleAutomated Policy Synchronization (APS) for OAM Cloned Environment
Introduction Since the introduction of MDC support in OAM 11g, Customers have been asking for Automated Synchronization between Master and Clone OAM Environments. It is supported in OAM R2PS2. Thanks...
View ArticleDecoding JWT using the API Platform Groovy Policy
Introduction With the explosion of APIs; most of the today’s computing challenges are being driven by it and therefore, new standards had to emerge to make sure that APIs can be used securely, while...
View ArticleThe Ultimate Apache/OHS11g Tuning Guide for OAM11g WebGate
Introduction OK, maybe “Ultimate” could be stretching it, but it caught your eye so you can be the judge. This post is part of a larger series on Oracle Access Manager 11g called Oracle Access Manager...
View ArticleSSO “like” functionality with Oracle Fusion JWT Tokens
Introduction There are many instances where customers want to extend Oracle’s Fusion SaaS applications with PaaS components. Depending on the Oracle PaaS components being used, they may get SSO with...
View ArticleIDCS Integrations Series Part II:Integrating Fusion Application with IDCS
Overview Just like every other application, Fusion applications have also moved to cloud. So far large number of fusion deployments in the cloud are OMCS (Oracle Managed Cloud Services) deployments...
View ArticleIDCS Integrations Series Part III: Integrating on-prem applications to IDCS
Overview As more and more customers move Identity to the cloud, we will run into applications that cannot be migrated in short term or cannot be migrated at all to cloud for various reasons including...
View ArticleOAAM Admin Console Dashboard Update Frequency
There are three sections in the dashboard in OAAM Admin Console. The refresh time in section 1 and section 2 shown above can be configured by selecting the appropriate duration from the dropbox. There...
View ArticleA first look at POST data preservation in OAM 11g R2 PS1
Introduction In this post, we have a quick look at POST data preservation, a new feature introduced in the 11g R2 PS1 (or 11.1.2.1) version of Oracle Access Manager. We’ll explain the problem that this...
View Article