LDAP/Active Directory Single Sign-On for Oracle

Posted on 2009-07-14
Last Modified: 2012-05-07
Sorry to post an almost-duplicate question, but since I already marked my last question as answered...

I wan't to implement a single sign-on solution where users will automatically be logged in to Oracle using their Windows login without the user having to type their username/pw again.  I have implemented this and it was quite easy to do if both client and DB server are Windows XP machines.  Now, though, I need a solution that will work if the DB server is on a UNIX box.  Through my research online I have found that I may need to use LDAP for this, but from what I understand, that will only allow users to manually login using their Windows credentials whereas I am hoping to find a solution where they do not need to re-type their password to connect to Oracle if they have logged into windows.  Is there a way to have users connect to Oracle using their Windows account WITHOUT REQUIRING A PASSWORD when the database server is on a UNIX machine?  (I want to be able to just say connect /@dbname like I can with my Windows solution.  Will LDAP let me do this?)
Question by:everkleer
  • 3
  • 2
LVL 29

Expert Comment

ID: 24852573
No, you may need to install OID.

Author Comment

ID: 24853088
I'm not too familiar with anything here and will need to do a lot more research to be able to set up these thing, but are you saying that once OID is installed on the UNIX server I should be able to set it up so that a client connecting from a Windows domain account will be able to do so without specifying a password?
LVL 29

Expert Comment

ID: 24853734
Once you install OID, then using LDAP you import the users from Active Directory.

Author Comment

ID: 24853779
Right that's what I thought.  But as I say, unless I'm missing something it looks like this will only allow clients to login using the same usernames/pws that they can use to log into Windows; it doesn't look to me like the clients will be able to connect to Oracle without supplying a password.  So my question is am I missing something?

Accepted Solution

everkleer earned 0 total points
ID: 24920548
Solved this with help from Oracle Metalink. using Kerberos authentication.  (For anyone interested, see Metalink Docs: 331252.1 & 368321.1)

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Clone Oracle 12c Database 5 52
Need a replacement data type in Oracle 6 77
case statement in where clause 5 48
Trying to get a Linked Server to Oracle DB working 21 57
Working with Network Access Control Lists in Oracle 11g (part 2) Part 1: Previously, I introduced the basics of network ACL's including how to create, delete and modify entries to allow and deny access.  For many…
Background In several of the companies I have worked for, I noticed that corporate reporting is off loaded from the production database and done mainly on a clone database which needs to be kept up to date daily by various means, be it a logical…
This video shows how to Export data from an Oracle database using the Datapump Export Utility.  The corresponding Datapump Import utility is also discussed and demonstrated.
This video shows how to recover a database from a user managed backup

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now