RE: Re: RE: Oracle / AD Questions

From: Scott Canaan <"Scott>
Date: Wed, 2 Oct 2024 18:54:51 +0000
Message-ID: <CH3PR16MB589731F6A6E60A500432F41AC5702_at_CH3PR16MB5897.namprd16.prod.outlook.com>

That would be great. The Oracle documentation isn’t the easiest to follow (big surprise).

CONFIDENTIALITY NOTE: The information transmitted, including attachments, is intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this information.

From: Lyall Barbour <lyallbarbour_at_sanfranmail.com> Sent: Wednesday, October 2, 2024 2:52 PM To: Ilmar Kerm <ilmar.kerm_at_gmail.com>; Scott Canaan <srcdco_at_rit.edu> Cc: oracle-l <oracle-l_at_freelists.org> Subject: Re: RE: Oracle / AD Questions

My company just did this with Oracle CMU. On Linux, it's really just Kerberos tickets and knowing the AD server address/port

We have a detailed document if you want to understand it.

Lyall Barbour

--

Sent with mail.com<http://mail.com> Mail app On 10/2/24, 2:48 PM Scott Canaan <dmarc-noreply_at_freelists.org<mailto:dmarc-noreply_at_freelists.org>> wrote: We aren’t running Oracle on Azure. Our sys admin is saying we can only use Kerberos on Linux.

Scott Canaan ‘88
Sr Database Administrator
Information & Technology Services
Finance & Administration
Rochester Institute of Technology
o: (585) 475-7886 | f: (585) 475-7520
srcdco_at_rit.edu<mailto:srcdco_at_rit.edu> | c: (585) 339-8659 CONFIDENTIALITY NOTE: The information transmitted, including attachments, is intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this information.

From: Ilmar Kerm <ilmar.kerm_at_gmail.com<mailto:ilmar.kerm_at_gmail.com>> Sent: Wednesday, October 2, 2024 2:44 PM To: Scott Canaan <srcdco_at_rit.edu<mailto:srcdco_at_rit.edu>> Cc: ORACLE-L <oracle-l_at_freelists.org<mailto:oracle-l_at_freelists.org>> Subject: Re: Oracle / AD Questions

We use Radius, to authenticate human database users. Very easy to deploy and has worked well over a decade https://ilmarkerm.eu/blog/2023/05/authenticating-oracle-database-users-with-radius/

But will soon move to Azure AD Oauth authentication, to remove the need for creating users and managing their privileges. https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/authenticating-and-authorizing-microsoft-entra-id-azure-ad-users-oracle-databases.html

Ilmar Kerm

On Wed, 2 Oct 2024 at 20:27, Scott Canaan <dmarc-noreply_at_freelists.org<mailto:dmarc-noreply_at_freelists.org>> wrote: We are looking at connecting our Oracle databases to AD so we can centralize user creation and administration. All of our Oracle databases run on Linux. Our Linux sys admins say that they don’t support AD on Linux. Is it still possible to connect to AD without having AD installed in the Linux environment?

Oracle 19c
Red Hat 8

--

http://www.freelists.org/webpage/oracle-l Received on Wed Oct 02 2024 - 20:54:51 CEST

This message: [ Message body ]
Next message: dimensional.dba: "RE: Oracle / AD Questions"
Previous message: Lyall Barbour: "Re: RE: Oracle / AD Questions"
In reply to: Lyall Barbour: "Re: RE: Oracle / AD Questions"
Next in thread: Ilmar Kerm: "Re: Oracle / AD Questions"
Reply: Ilmar Kerm: "Re: Oracle / AD Questions"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message