RE: RE: Oracle OID or Database 19C and Microsoft AD authentication

From: Matt Shelton <mvshelton_at_chartermi.net>
Date: Tue, 8 Jun 2021 10:27:26 -0400
Message-ID: <006d01d75c72$67bce9e0$3736bda0$_at_net>

In General you are on the right track!! The documentation is overwhelming.

You will need to put a dll and extend your MS ad tree for password authentication.

Test thoroughly we ran into a bug in 18c Oracle has fix but I still believe it’s one off patch. The error was this encryption error that was random.

Thank You

Matt

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Paul Drake Sent: Monday, June 7, 2021 11:45 AM
To: Lyall Barbour
Cc: oracle-l; Matt Shelton
Subject: Re: RE: Oracle OID or Database 19C and Microsoft AD authentication

Lyall,

"Gettysburg ng"

Four score and seven versions ago?

Paul

On Mon, Jun 7, 2021, 11:22 <lyallbarbour_at_sanfranmail.com> wrote:

Awesome. Did my description below sound like the right process? I think I'm Gettysburg ng the understanding from the documentation.

Lyall

--
Sent from my Android phone with mail.com Mail. Please excuse my brevity.

On 6/7/21, 11:12 AM Matt Shelton <mvshelton_at_chartermi.net> wrote:

Yes, We integrate password authentication with Oracle 18c and 19c with Microsoft Active Directory ran into a bug with Oracle 18c that they have fixed.

 

Thank You

Matt

 

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Lyall Barbour
Sent: Friday, June 4, 2021 4:02 PM
To: oracle-l_at_freelists.org
Subject: Oracle OID or Database 19C and Microsoft AD authentication

 

Hello,
The Insurance company I work for was purchased by AllState, for our IT department and applications. My job is safe! ....for now.

But the mandates are flowing down. Encryption is being implemented everywhere. We've purchased Advanced Security and are creating Wallets all over the place and encrypting tablespaces left and right.

The latest Project is being pushed unto the app teams. Application authentication into databases must be tighter. 
I've setup Oracle internet directory 10g in 2010, 11. Now with Oracle 18c seems like I can skip the Identity Manager stuff and straight use 



- an AD manager account


- Oracle wallet, ldap.ora, dsi.ora on db server

- configure those files to see AD with the manager account

- create AD account, groups wanting access to Oracle db

- create Oracle db accounts, roles GLOBALLY


And Bob's my Uncle...? 

Anyone do this in the 18/19c Security Guide yet? Can confirm?

TIA
Lyall Barbour

--
Sent from my Android phone with mail.com Mail. Please excuse my brevity.

-- http://www.freelists.org/webpage/oracle-l 

-- http://www.freelists.org/webpage/oracle-l 



--
http://www.freelists.org/webpage/oracle-l

Received on Tue Jun 08 2021 - 16:27:26 CEST

This message: [ Message body ]
Next message: Jackie Brock: "RE: Req for you info on veem snapshot backups"
Previous message: Laurentiu Oprea: "Re: RMAN ORA-12850: Could not allocate slaves on all specified instances"
In reply to: Paul Drake: "Re: RE: Oracle OID or Database 19C and Microsoft AD authentication"
In reply to Matt Shelton: "RE: Oracle OID or Database 19C and Microsoft AD authentication"
Next in thread: Jackie Brock: "RE: Req for you info on veem snapshot backups"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message