LDAP/Active Directory Single Sign-On for Oracle

Posted on 2009-07-14
Last Modified: 2012-05-07
Sorry to post an almost-duplicate question, but since I already marked my last question as answered...

I wan't to implement a single sign-on solution where users will automatically be logged in to Oracle using their Windows login without the user having to type their username/pw again.  I have implemented this and it was quite easy to do if both client and DB server are Windows XP machines.  Now, though, I need a solution that will work if the DB server is on a UNIX box.  Through my research online I have found that I may need to use LDAP for this, but from what I understand, that will only allow users to manually login using their Windows credentials whereas I am hoping to find a solution where they do not need to re-type their password to connect to Oracle if they have logged into windows.  Is there a way to have users connect to Oracle using their Windows account WITHOUT REQUIRING A PASSWORD when the database server is on a UNIX machine?  (I want to be able to just say connect /@dbname like I can with my Windows solution.  Will LDAP let me do this?)
Question by:everkleer
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 29

Expert Comment

ID: 24852573
No, you may need to install OID.

Author Comment

ID: 24853088
I'm not too familiar with anything here and will need to do a lot more research to be able to set up these thing, but are you saying that once OID is installed on the UNIX server I should be able to set it up so that a client connecting from a Windows domain account will be able to do so without specifying a password?
LVL 29

Expert Comment

ID: 24853734
Once you install OID, then using LDAP you import the users from Active Directory.

Author Comment

ID: 24853779
Right that's what I thought.  But as I say, unless I'm missing something it looks like this will only allow clients to login using the same usernames/pws that they can use to log into Windows; it doesn't look to me like the clients will be able to connect to Oracle without supplying a password.  So my question is am I missing something?

Accepted Solution

everkleer earned 0 total points
ID: 24920548
Solved this with help from Oracle Metalink. using Kerberos authentication.  (For anyone interested, see Metalink Docs: 331252.1 & 368321.1)

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

From implementing a password expiration date, to datatype conversions and file export options, these are some useful settings I've found in Jasper Server.
When it comes to protecting Oracle Database servers and systems, there are a ton of myths out there. Here are the most common.
Via a live example show how to connect to RMAN, make basic configuration settings changes and then take a backup of a demo database
Video by: Steve
Using examples as well as descriptions, step through each of the common simple join types, explaining differences in syntax, differences in expected outputs and showing how the queries run along with the actual outputs based upon a simple set of dem…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question