oracle fusion middleware -...

26
Oracle Fusion Middleware Identity and Access Management at Cox Enterprises, Inc.

Upload: truongcong

Post on 30-Jun-2018

227 views

Category:

Documents


1 download

TRANSCRIPT

Oracle Fusion Middleware Identity and Access Management at Cox Enterprises, Inc.

Agenda

• Introduction

• CEI Implementation of EBS with Identity Management

• Identity Management – Current Projects

• Future vision

• Q&A

• 9 years Oracle Applications/Database experience

• eBusiness Suite 11i, R12

• Oracle Database 9i, 10g, 11g

• Oracle Identity & Access Management 10g and 11g

Introduction

Cox Enterprises, Inc.

Leading communications, media and automotive services company – 60,000 employees

• Cox Communications – Third-largest cable TV company in the US. 6.2 million customers

• Cox Media Group – Integrated broadcasting, publishing, and digital media company

• Manheim – World’s largest provider of vehicle remarketing services

• Autotrader.com – Website with 3.5 million vehicle listings

What is Fusion?

EBS Implementation

• Implement EBS 12.1.3 for CEI employees

• Enable iExpense for initial user base

• Ability to Single Sign-on through our Corporate Portal

• Scalable for the future

• Integrate with Active Directory and Identity Lifecycle Management

eBS Access Points

http://coxebs.coxenterprises.com

Native Login Screen

eBS Access Points

• Oracle E-Business Suite 12.1.3

• Oracle Access Manager 11g and Oracle E-Business Suite AccessGate

*Overview of Single Sign-On Integration Options for Oracle E-Business Suite [ID 1388152.1]

*My Oracle Support Document [ID 1309013.1]

High Level Requirements

SSO Architecture

Single Sign-On

Fusion Middleware Identity and Access Management

• Components Required: • Oracle WebLogic

• Oracle Access Manager 11g

• EBS AccessGate

• Oracle Internet Directory 11g

• Oracle Identity Federation 11g

• Oracle HTTP Server with WebGate

Architecture

Oracle HTTP Servers WebGate, Reverse Proxy

Identity Management Servers Oracle Access Management Oracle Identity Federation WebLogic Administration Console

Directory Servers Oracle Internet Directory

OAM Protects EBS

Flow of Information

• Configure OIF as a Service Provider

– Configured and set up our 3rd Party Federation platform as the Identity Provider

• Authentication Engine is LDAP directory

Federating Users

User Provisioning

• User Provisioning

– How to link EmployeeID from Identity Provider with FIRST.LAST username in EBS

Challenges

zmay 123456789 ZACH.MAY

Active Directory SAML2.0 EBS FND_USER

• Oracle Identity Management 11g – OIM manages 10 individual fields in Active Directory, based on similar fields in

PeopleSoft HR

– Changes from PeopleSoft go to the OIM queue, written to Active Directory

Current Projects

Oracle Identity Manager

• Oracle Identity Management 11g

• Divisional Single Sign-On

• Other Federations

– xMatters

– Cox Giving

– Travel SSO

– Mobile SSO

Current Projects

2014

• Oracle Identity Management - Replacement for Identity Lifecycle Management – Replaces custom processes

– Integrates with AD, Peoplesoft, HR, etc…

Future Vision

2014

• Oracle Access Management - Replacement for Symphony Access Management

Future Vision

Longer Term

• Continue to extend SSO capabilities

• Provisioning to more systems

• Contractor Identity Administration

• Identity Management as a service

Future Vision

Future Vision

• Overview of Single Sign-On Integration Options for Oracle E-Business Suite [ID 1388152.1]

• Integrating Oracle E-Business Suite Release 12 with Oracle Access Manager 11gR1 (11.1.1.5) using Oracle E-Business Suite AccessGate [ID 1309013.1]

• Fusion Middleware Enterprise Deployment Guide for Identity Management (11.1.1.5) http://docs.oracle.com/cd/E15586_01/fusionapps.1111/e21032/toc.htm#BEGIN

• Integrate Oracle Identity Federation in SP Mode http://docs.oracle.com/cd/E21764_01/doc.1111/e15740/oif.htm#CACJDDGE

References