LDAP/Active Directory Single Sign-On for Oracle

Posted on 2009-07-14
Last Modified: 2012-05-07
Sorry to post an almost-duplicate question, but since I already marked my last question as answered...

I wan't to implement a single sign-on solution where users will automatically be logged in to Oracle using their Windows login without the user having to type their username/pw again.  I have implemented this and it was quite easy to do if both client and DB server are Windows XP machines.  Now, though, I need a solution that will work if the DB server is on a UNIX box.  Through my research online I have found that I may need to use LDAP for this, but from what I understand, that will only allow users to manually login using their Windows credentials whereas I am hoping to find a solution where they do not need to re-type their password to connect to Oracle if they have logged into windows.  Is there a way to have users connect to Oracle using their Windows account WITHOUT REQUIRING A PASSWORD when the database server is on a UNIX machine?  (I want to be able to just say connect /@dbname like I can with my Windows solution.  Will LDAP let me do this?)
Question by:everkleer
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 29

Expert Comment

ID: 24852573
No, you may need to install OID.

Author Comment

ID: 24853088
I'm not too familiar with anything here and will need to do a lot more research to be able to set up these thing, but are you saying that once OID is installed on the UNIX server I should be able to set it up so that a client connecting from a Windows domain account will be able to do so without specifying a password?
LVL 29

Expert Comment

ID: 24853734
Once you install OID, then using LDAP you import the users from Active Directory.

Author Comment

ID: 24853779
Right that's what I thought.  But as I say, unless I'm missing something it looks like this will only allow clients to login using the same usernames/pws that they can use to log into Windows; it doesn't look to me like the clients will be able to connect to Oracle without supplying a password.  So my question is am I missing something?

Accepted Solution

everkleer earned 0 total points
ID: 24920548
Solved this with help from Oracle Metalink. using Kerberos authentication.  (For anyone interested, see Metalink Docs: 331252.1 & 368321.1)

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Truncate is a DDL Command where as Delete is a DML Command. Both will delete data from table, but what is the difference between these below statements truncate table <table_name> ?? delete from <table_name> ?? The first command cannot be …
Cursors in Oracle: A cursor is used to process individual rows returned by database system for a query. In oracle every SQL statement executed by the oracle server has a private area. This area contains information about the SQL statement and the…
This video explains at a high level with the mandatory Oracle Memory processes are as well as touching on some of the more common optional ones.
This video shows information on the Oracle Data Dictionary, starting with the Oracle documentation, explaining the different types of Data Dictionary views available by group and permissions as well as giving examples on how to retrieve data from th…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question