- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Oracle External Authentication Issues
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-09-2004 06:24 PM
тАО09-09-2004 06:24 PM
Oracle External Authentication Issues
For example, if I have a user called "andrew" on a domain called "DOM" I find I can only connect when the database user account is set up as "andrew" (with external auth). The session table shows the username as "andrew".
I imagine this would pose a big security risk - any user from any domain or OS (that can see the database) with the user name "andrew" could access the database.
I have run another test with the Oracle DB on Windows. This time I set up a user called "DOM\andrew" and I can connect (and the session table shows the username as "DOM\andrew").
Can't I have it so only "DOM\andrew" can connect to Oracle on a Unix box while "DOM_TWO\andrew" cannot???
Note that I don't just want to set the OS_AUTHENT_PREFIX to the domain name because this does not fix the problem.
Your help would be really appreciated.
Thanks,
Andrew
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-09-2004 06:27 PM
тАО09-09-2004 06:27 PM
Re: Oracle External Authentication Issues
Last time I asked our oracle folks that could not be done with just the normal Windows Active Directory login authentication scheme.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-12-2004 06:01 PM
тАО09-12-2004 06:01 PM
Re: Oracle External Authentication Issues
I have done some reading and if I have it right, I configure the OID to get a set of users from the AD via a script. Then these users will be externally authienticated by their Windows domain\username and password.
That right? I'll give it a go.
Thanks,
Andrew
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-13-2004 07:25 AM
тАО09-13-2004 07:25 AM
Re: Oracle External Authentication Issues
OID (Oracle internet direcotry) has to work with IAS (oracle application server),So if you want to use it u 'll need to use SSO single sign on, it is a long story.
For you Andrew, you have different kinds of security & authen. to deel with your question(database only) for example on oracle 10g you 've a lot of security features (VPD "virtual private" DB or OLS "oracle label security".
I think it is better to go to otn.oracle.com and search for security features.
Goodluck & regards,
Hamdy
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-13-2004 07:39 AM
тАО09-13-2004 07:39 AM
Re: Oracle External Authentication Issues
Oracle does assure me that you will be able to autenticate into ias and the database using your windows yourname@domain.net user id using Active Directory or LDAP.
The portion of OID I referred to integrates with LDAP.
It is a good idea to to to otn.oracle.com and learn more.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-13-2004 12:13 PM
тАО09-13-2004 12:13 PM
Re: Oracle External Authentication Issues
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-14-2004 12:40 PM
тАО09-14-2004 12:40 PM
Re: Oracle External Authentication Issues
I have also applied audit triggers to tables with sensitive data as an extra means of security. The trigger stores username, osuser, machine, process and program info from v$session as well as the data change and timestamp.