Hello World!
So I wanted to try out this new Single Sign On (SSO) authentication system on Oracle Business Intelligence 11g which offers numerous SSO capabilities provided by Oracle Fusion Middleware. Once configured properly this new type of SSO for OBIEE 11g seemed seamless and transparent authentication against most widely available corporate user store Microsoft Active Directory with no effort from the users the having logging into analytics using any type of credentials. This Silent SSO is also one of the most cost efficient solutions for most client as it requires NO licenses for Oracle's list of Identity Management technologies like Oracle Internet Directory or Oracle Virtual Directory.
Authorization could be custom brewed using Custom Security Database Groups and Roles in Enterprise Manager.
How to get there ??
- Setup Active Directory ( User Store ) Provider in Weblogic
- Setup Kerberos with Weblogic Server and use Active Directory as a Key Distribution Center
- Configure clients Windows machine to accept this type of Native Authentication
- Use Custom Security Database tables for Authorization
- Setup App Roles/Reports and Dashboards security with OBIEE Repository and Presentation services.
