Solved

LDAP/Active Directory Single Sign-On for Oracle

Posted on 2009-07-14
5
900 Views
Last Modified: 2012-05-07
Sorry to post an almost-duplicate question, but since I already marked my last question as answered...

I wan't to implement a single sign-on solution where users will automatically be logged in to Oracle using their Windows login without the user having to type their username/pw again.  I have implemented this and it was quite easy to do if both client and DB server are Windows XP machines.  Now, though, I need a solution that will work if the DB server is on a UNIX box.  Through my research online I have found that I may need to use LDAP for this, but from what I understand, that will only allow users to manually login using their Windows credentials whereas I am hoping to find a solution where they do not need to re-type their password to connect to Oracle if they have logged into windows.  Is there a way to have users connect to Oracle using their Windows account WITHOUT REQUIRING A PASSWORD when the database server is on a UNIX machine?  (I want to be able to just say connect /@dbname like I can with my Windows solution.  Will LDAP let me do this?)
0
Comment
Question by:everkleer
  • 3
  • 2
5 Comments
 
LVL 29

Expert Comment

by:MikeOM_DBA
ID: 24852573
No, you may need to install OID.
 
0
 
LVL 2

Author Comment

by:everkleer
ID: 24853088
I'm not too familiar with anything here and will need to do a lot more research to be able to set up these thing, but are you saying that once OID is installed on the UNIX server I should be able to set it up so that a client connecting from a Windows domain account will be able to do so without specifying a password?
0
 
LVL 29

Expert Comment

by:MikeOM_DBA
ID: 24853734
Once you install OID, then using LDAP you import the users from Active Directory.
 
0
 
LVL 2

Author Comment

by:everkleer
ID: 24853779
Right that's what I thought.  But as I say, unless I'm missing something it looks like this will only allow clients to login using the same usernames/pws that they can use to log into Windows; it doesn't look to me like the clients will be able to connect to Oracle without supplying a password.  So my question is am I missing something?
0
 
LVL 2

Accepted Solution

by:
everkleer earned 0 total points
ID: 24920548
Solved this with help from Oracle Metalink. using Kerberos authentication.  (For anyone interested, see Metalink Docs: 331252.1 & 368321.1)
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This post first appeared at Oracleinaction  (http://oracleinaction.com/undo-and-redo-in-oracle/)by Anju Garg (Myself). I  will demonstrate that undo for DML’s is stored both in undo tablespace and online redo logs. Then, we will analyze the reaso…
Using SQL Scripts we can save all the SQL queries as files that we use very frequently on our database later point of time. This is one of the feature present under SQL Workshop in Oracle Application Express.
This video shows how to copy a database user from one database to another user DBMS_METADATA.  It also shows how to copy a user's permissions and discusses password hash differences between Oracle 10g and 11g.
Via a live example, show how to restore a database from backup after a simulated disk failure using RMAN.

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question