LDAP/Active Directory Single Sign-On for Oracle

Sorry to post an almost-duplicate question, but since I already marked my last question as answered...

I wan't to implement a single sign-on solution where users will automatically be logged in to Oracle using their Windows login without the user having to type their username/pw again.  I have implemented this and it was quite easy to do if both client and DB server are Windows XP machines.  Now, though, I need a solution that will work if the DB server is on a UNIX box.  Through my research online I have found that I may need to use LDAP for this, but from what I understand, that will only allow users to manually login using their Windows credentials whereas I am hoping to find a solution where they do not need to re-type their password to connect to Oracle if they have logged into windows.  Is there a way to have users connect to Oracle using their Windows account WITHOUT REQUIRING A PASSWORD when the database server is on a UNIX machine?  (I want to be able to just say connect /@dbname like I can with my Windows solution.  Will LDAP let me do this?)
LVL 2
everkleerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MikeOM_DBACommented:
No, you may need to install OID.
 
0
everkleerAuthor Commented:
I'm not too familiar with anything here and will need to do a lot more research to be able to set up these thing, but are you saying that once OID is installed on the UNIX server I should be able to set it up so that a client connecting from a Windows domain account will be able to do so without specifying a password?
0
MikeOM_DBACommented:
Once you install OID, then using LDAP you import the users from Active Directory.
 
0
everkleerAuthor Commented:
Right that's what I thought.  But as I say, unless I'm missing something it looks like this will only allow clients to login using the same usernames/pws that they can use to log into Windows; it doesn't look to me like the clients will be able to connect to Oracle without supplying a password.  So my question is am I missing something?
0
everkleerAuthor Commented:
Solved this with help from Oracle Metalink. using Kerberos authentication.  (For anyone interested, see Metalink Docs: 331252.1 & 368321.1)
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Oracle Database

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.