{"id":1195,"date":"2018-01-24T09:23:12","date_gmt":"2018-01-24T01:23:12","guid":{"rendered":"http:\/\/www.oracle.name\/?p=1195"},"modified":"2018-01-24T09:26:18","modified_gmt":"2018-01-24T01:26:18","slug":"oracle%e7%9a%84%e5%8d%95%e7%82%b9%e7%99%bb%e5%bd%95%e8%a7%a3%e5%86%b3%e6%96%b9%e6%a1%88%ef%bc%88single-sign-on-solution%ef%bc%89","status":"publish","type":"post","link":"https:\/\/www.llku.com\/?p=1195","title":{"rendered":"Oracle\u7684\u5355\u70b9\u767b\u5f55\u89e3\u51b3\u65b9\u6848\uff08Single Sign-On Solution\uff09"},"content":{"rendered":"

\n\t Single Sign-On<\/a>(SSO)\u5373\u5355\u70b9\u767b\u5f55\uff0c\u5728\u591a\u4e2a\u5e94\u7528\u7cfb\u7edf\u4e2d\uff0c\u7528\u6237\u53ea\u9700\u8981\u767b\u5f55\u4e00\u6b21\u5c31\u53ef\u4ee5\u8bbf\u95ee\u6240\u6709\u76f8\u4e92\u4fe1\u4efb\u7684\u5e94\u7528\u7cfb\u7edf\u3002\u5728\u6b64\u6761\u4ef6\u4e0b\uff0c\u7ba1\u7406\u5458\u65e0\u9700\u4fee\u6539\u6216\u5e72\u6d89\u7528\u6237\u767b\u5f55\u5c31\u80fd\u65b9\u4fbf\u7684\u5b9e\u65bd\u5e0c\u671b\u5f97\u5230\u7684\u5b89\u5168\u63a7\u5236\u3002\n<\/p>\n

\n\t Oracle\u73b0\u6709\u4e24\u5957\u5355\u70b9\u767b\u5f55\u7684\u89e3\u51b3\u65b9\u6848\uff1a Oracle Access Manager<\/a>\uff0cOracle Single Sign-On Server (OSSO)\u3002
\n\tOracle\u5b98\u65b9\u63a8\u8350Access Manager\u4f5c\u4e3aSSO\u7684\u89e3\u51b3\u65b9\u6848\uff0cOracle Single Sign-On Server\u7684\u9ad8\u7ea7\u7528\u6237\u6700\u7ec8\u4e5f\u4f1a\u5efa\u8bae\u8fc1\u79fb\u5230Oracle Access Manager\u89e3\u51b3\u65b9\u6848\u4e0a\u3002<\/u>\n<\/p>\n

\n\t $\"\"$ \n<\/p>\n

\n\t(\u6765\u6e90\uff1aNote 1461465.2<\/a> – Information Center: Overview EBS Technology Stack OID and SSO and OAM\uff09\n<\/p>\n

\n\tOAM SSO\u5b9e\u73b0\u65b9\u5f0f\u6709\u4e24\u79cd\uff1a\u4e00\u79cd\u662f\u901a\u8fc7OAM Agent(WebGate)\uff0c\u53e6\u5916\u4e00\u79cd\u662f\u4f7f\u7528OSSO Agents\uff08mod_osso)\n<\/p>\n

\n\t1.) \u4f7f\u7528OAM Agent(WebGate\u4ee3\u7406),\u7136\u540e\u548cOracle E-Business Suite Access Gate\u96c6\u6210(\u6b64\u5904\u4ee5EBS\u4e3a\u4f8b).\n<\/p>\n

\n\t $\"\"$ \n<\/p>\n

\n\tWebGate\u662fWeb\u670d\u52a1\u5668\u7684\u4e00\u4e2a\u63d2\u4ef6\uff0c\u7528\u4e8e\u62e6\u622aHTTP\u8bf7\u6c42\uff0c\u5e76\u628a\u8bf7\u6c42\u5bfc\u5411Oracle Access Manager (OAM)\u6765\u83b7\u53d6\u7528\u6237\u8ba4\u8bc1\u3002\n<\/p>\n

\n\tOAM SSO\u767b\u9646\u7684\u8fc7\u7a0b\u63cf\u8ff0\uff1a\n<\/p>\n

\n\tWhen a user tries to access a protected application, the request is received by OAM which checks for the existence of the SSO cookie.\n<\/p>\n

\n\tAfter authenticating the user and setting up the user context and token, OAM sets the SSO cookie and encrypts the cookie with the SSO Server key (which can be decrypted only by the SSO Engine).\n<\/p>\n

\n\tDepending on the actions (responses in OAM 11g) specified for authentication success and authentication failure, the user may be redirected to a specific URL, or user information might be passed on to other applications through a header variable or a cookie value.\n<\/p>\n

\n\tBased on the authorization policy and results of the check, the user is allowed or denied access to the requested content. If the user is denied access, she is redirected to another URL (specified by the administrator in Webgate registration).\n<\/p>\n

\n\t\u53ef\u4ee5\u770b\u5230\uff0cOracle OAM\u901a\u8fc7Cookie\u5b58\u50a8\u7528\u6237\u7684\u4fe1\u606f\uff0c\u8fdb\u800c\u901a\u8fc7Cookie\u6765\u5b9e\u73b0\u5355\u70b9\u8bbf\u95ee\u6388\u4fe1\u7ad9\u70b9\u3002\n<\/p>\n

\n\t2.) \u4f7f\u7528mod_osso\u4ee3\u7406\uff0c\u8fd9\u79cd\u65b9\u6cd5\u53ea\u9002\u7528\u4e8e\u4eceOracle Single Sign-On Server 10gR3\u5347\u7ea7\u4e0a\u6765\u7684\u7528\u6237\u3002\n<\/p>\n

\n\t $\"\"$ \n<\/p>\n

\n\t\u8be6\u7ec6\u89c1\uff1a About SSO Log In Processing with OAM Agents<\/a>\u4e2d\u7684“About SSO Login Log In Processing with OSSO Agents (mod_osso)”\n<\/p>\n

\n\t\u5173\u4e8eCookie<\/strong>\n<\/p>\n

\n\tCookies\u5c31\u662f\u670d\u52a1\u5668\u6682\u5b58\u653e\u5728\u4f60\u7684\u7535\u8111\u91cc\u7684\u8d44\u6599( \u7528\u6237ID\uff0c\u5bc6\u7801\u3001\u6d4f\u89c8\u8fc7\u7684\u7f51\u9875\u3001\u505c\u7559\u7684\u65f6\u95f4\u7b49\u4fe1\u606f)\uff0c\u597d\u8ba9\u670d\u52a1\u5668\u7528\u6765\u8fa8\u8ba4\u4f60\u7684\u8ba1\u7b97\u673a\u3002 \u5f53\u4f60\u5728\u6d4f\u89c8\u7f51\u7ad9\u7684\u65f6\u5019\uff0cWeb\u670d\u52a1\u5668\u4f1a\u5148\u9001\u4e00\u5c0f\u5c0f\u8d44\u6599\u653e\u5728\u4f60\u7684\u8ba1\u7b97\u673a\u4e0a\uff0cCookies \u4f1a\u5e2e\u4f60\u5728\u7f51\u7ad9\u4e0a\u4e00\u4e9b\u5185\u5bb9\u90fd\u8bb0\u5f55\u4e0b\u6765\u3002\u5f53\u4e0b\u6b21\u4f60\u518d\u8bbf\u95ee\u540c\u4e00\u4e2a\u7f51\u7ad9\uff0cWeb\u670d\u52a1\u5668\u4f1a\u5148\u770b\u770b\u6709\u6ca1\u6709\u5b83\u4e0a\u6b21\u7559\u4e0b\u7684Cookies\u8d44\u6599\uff0c\u6709\u7684\u8bdd\uff0c\u5c31\u4f1a \u4f9d\u636eCookie\u91cc\u7684\u5185\u5bb9\u6765\u5224\u65ad\u4f7f\u7528\u8005\uff0c\u9001\u51fa\u7279\u5b9a\u7684\u7f51\u9875\u5185\u5bb9\u7ed9\u4f60\u3002 \u4e00\u822c\u6765\u8bf4\uff0cCookie\u901a\u8fc7HTTP Headers\u4ece\u670d\u52a1\u5668\u7aef\u8fd4\u56de\u5230\u6d4f\u89c8\u5668\u4e0a\u3002IE Cookies \u6587\u4ef6\u5939\u8def\u5f84\u4fdd\u5b58\u4e8e\u6ce8\u518c\u8868\uff1aHKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Shell Folders\\Cookies\n<\/p>\n

\n\tSee Also:\n<\/p>\n

\n\tOracle LDAP\u89e3\u51b3\u65b9\u6848 – Oracle Identity and Access Management Suite :<\/a>http:\/\/blog.csdn.net\/pan_tian\/article\/details\/20927733<\/a>\n<\/p>\n

\n\t About SSO Log In Processing with OAM Agents<\/a>\n<\/p>\n

\n\tOverview of Single Sign-On Integration Options for Oracle E-Business Suite [ID 1388152.1]
\n\tIntegrating Oracle E-Business Suite Release 11i with Oracle Access Manager 11gR2 (11.1.2) using Oracle E-Business Suite AccessGate [ID 1536941.1]\n<\/p>\n

\n\t Oracle Access Manager 11.1.2 Certified with E-Business Suite 12 <\/a>\n<\/p>\n

\n\t Oracle Access Manager 11.1.2 Certified With E-Business Suite 11i <\/a>
\n\t Introduction to Installing WebGates<\/a>\n<\/p>\n

\n\t\u8f6c\u8f7d\u81ea\uff1ahttp:\/\/blog.csdn.net\/pan_tian\/article\/details\/8691726\n<\/p>\n

\n\t<\/p>\n","protected":false},"excerpt":{"rendered":"

Single Sign-On(SSO)\u5373\u5355\u70b9 … \u7ee7\u7eed\u9605\u8bfbOracle\u7684\u5355\u70b9\u767b\u5f55\u89e3\u51b3\u65b9\u6848\uff08Single Sign-On Solution\uff09<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[31,68],"tags":[100,69,197,198],"_links":{"self":[{"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/posts\/1195"}],"collection":[{"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.llku.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1195"}],"version-history":[{"count":3,"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/posts\/1195\/revisions"}],"predecessor-version":[{"id":1200,"href":"https:\/\/www.llku.com\/index.php?rest_route=\/wp\/v2\/posts\/1195\/revisions\/1200"}],"wp:attachment":[{"href":"https:\/\/www.llku.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1195"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.llku.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1195"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.llku.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1195"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}