Books for you

A user who accesses an application for which he is
not authenticated is redirected to a login server. There, he is prompted for a username
and password that are checked against the OID server. A cookie is returned
and the user is redirected from the login server to the application.
Oracle Identity Management, described earlier in this chapter, can be used to manage
security across multiple platforms and security systems.
Multitier security
In typical three-tier implementations, the Oracle Application Server runs some of the
application logic, serves as an interface between the clients and database servers, and
provides much of the Oracle Identity Management (OIM) infrastructure. The Oracle
Internet Directory provides directory services running as applications on an Oracle
database. The directory synchronization service, provisioning integrated service, and
delegated administrative service are part of OID. Security in middle-tier applications
is controlled by applications??™ privileges and the preservation of client identities
through all three tiers.


Pages:
310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334