Main Nav

Has anyone closely looked at or considered implementing Oracle Access Manager and Oracle Identity Federation in Campus environment?

 

Thanks,

Pranab Pati

Sr. Identity and Access Management Architect

University of San Diego

Email:pranabp@sandiego.edu

Work: 619-260-7553

 

 

 

 

Comments

Pranab,

We went a fair way down the OAM/OIF path and ended up instead relying on Shibboleth to support both federated IAM and access management for web apps.  Complexity, cost and requirements mismatch were factors in moving the way we did.

         --Keith Hazelton, University of Wisconsin-Madison
_______________________________
Kieth, Have you all or do you still operate a OAM/OIF "bridge" from your Shibboleth infrastructure to your Oracle Applications? We have worked this up in a dev environment but have yet to deploy to production type Oracle based applications. ------ thanks kevin.foote On Thu, 13 Sep 2012, Keith Hazelton wrote: -> Pranab, -> -> We went a fair way down the OAM/OIF path and ended up instead relying on Shibboleth to support both federated IAM and access management for web apps. Complexity, cost and requirements mismatch were factors in moving the way we did. -> -> --Keith Hazelton, University of Wisconsin-Madison -> _______________________________ ->
Kevin, No, we aren't running OAM/OIF at all. We've integrated our major ERPs, including Oracle/PeopleSoft HCM, with the Shib infrastructure and that has been working well for us for going on a couple years now. --Keith _______________
Did that include Peoplesoft "Campus Solutions" (SIS) as well?  (We'd like to do this...)

- Gary Chapman, NYU

Our LDAP directory is fed by PS Campus Solutions, and is used by our IdP. On 9/13/2012 3:29 PM, Gary Chapman wrote: > Did that include Peoplesoft "Campus Solutions" (SIS) as well? (We'd > like to do this...) -- %% Christopher A. Bongaarts %% cab@umn.edu %% %% OIT - Identity Management %% http://umn.edu/~cab %% %% University of Minnesota %% +1 (612) 625-1809 %%
I believe we are headed that way, i.e. NetID authentication to ISIS functionality, and our NetID/WebSSO solution is Shibboleth. I could put you in touch with the knowledgeable folks....

--Keith
___________
On Sep 13, 2012, at 3:29 PM, Gary Chapman wrote:

Did that include Peoplesoft "Campus Solutions" (SIS) as well?  (We'd like to do this...)

- Gary Chapman, NYU

A (UW System-specific) federation.   I believe we may be using a proxy Shib SP in front of the HCM app server, I can check into details....
_____________
On Sep 13, 2012, at 3:49 PM, Eric Goodman wrote:

Is that with a single IdP, or a federation of them?

We're looking at integrating HCM and some other products systemwide (hence the question about a federation of IdPs). I'd be curious to see how you did this. We did a Proof of Concept once upon a time with Sun Access Manager that seemed fairly extensible, but we're not clear we can include a discovery service without using at least some components of OIF or OAM.

Thanks!

--- Eric



It does here, we've had Shibboleth in front of PS SIS since we went live a few years ago. If you need a contact, I can put you in touch with people here, just contact me offlist. -- Scott On 9/13/12 4:57 PM, "Keith Hazelton" wrote: > >I believe we are headed that way, i.e. NetID authentication to ISIS >functionality, and our NetID/WebSSO solution is Shibboleth. I could put >you in touch with the knowledgeable folks.... > >--Keith >___________ >

 

Hi Gary and Keith (and everybody else here),

 

The University of Auckland is also using Shibboleth as the single-sign-on authentication platform for all web applications, including PeopleSoft Campus Solutions, PeopleSoft Financials, and PeopleSoft Human Resources.

 

All up, there are now more than 300 Service Providers registered in our Shibboleth metadata.

 

thanks,

jeff

 

 

--
jeff kennedy
Enterprise Architecture Manager
IT Strategy, Policy, and Planning
The University of Auckland
mobile: +6421446049
skype: jeff.alston.kennedy
http://twitter.com/elbanoitca

 
From: Identity Management Constituent Group Discussion list [IDM@LISTSERV.EDUCAUSE.EDU] on behalf of Gary Chapman [gary.chapman@NYU.EDU]
Sent: Friday, 14 September 2012 8:29 a.m.
To: IDM@LISTSERV.EDUCAUSE.EDU
Subject: Re: [IDM] Oracle Access Manager and Oracle Identity Federation in Campus

Did that include Peoplesoft "Campus Solutions" (SIS) as well?  (We'd like to do this...)

- Gary Chapman, NYU

Would be greatly appreciated!

Same question for anyone else that has a Shibblolized PeopleSoft that is communicating with a federation of IdPs, i.e., includes some sort of discovery service. Bonus points if there's an IdP proxy used between the PS SP and the federated IdPs.

Thanks,

--- Eric

This is a timely thread. UWM is also looking to front our PSoft SIS with Shib. I had guessed there were several solutions out in the community. Would there be any interest in forming an adhoc group to poll the community for existing solutions and put together some form of pattern book of existing practice? Regards, Mark ------------------------------------------ Mark Rank Middleware and Identity Management Group University Information Technology Services UW-Milwaukee Email: rankm@uwm.edu Phn: 414-229-3706 ------------------------------------------ ----- Original Message ----- From: "Eric Goodman" To: IDM@LISTSERV.EDUCAUSE.EDU Sent: Thursday, September 13, 2012 4:03:22 PM Subject: Re: [IDM] Oracle Access Manager and Oracle Identity Federation in Campus Would be greatly appreciated! Same question for anyone else that has a Shibblolized PeopleSoft that is communicating with a federation of IdPs, i.e., includes some sort of discovery service. Bonus points if there's an IdP proxy used between the PS SP and the federated IdPs. Thanks, --- Eric
Mark, If someone (cough, cough) were willing to take on the role of cat herder, I suspect there would be cats willing to be herded. Regards, --Keith ______________ On Sep 13, 2012, at 4:22 PM, Mark John Rank wrote: > This is a timely thread. UWM is also looking to > front our PSoft SIS with Shib. I had guessed > there were several solutions out in the community. > > Would there be any interest in forming an adhoc > group to poll the community for existing solutions > and put together some form of pattern book of > existing practice? > > Regards, > Mark > > ------------------------------------------ > Mark Rank > Middleware and Identity Management Group > University Information Technology Services > UW-Milwaukee > Email: rankm@uwm.edu > Phn: 414-229-3706 > ------------------------------------------ > > ----- Original Message ----- > From: "Eric Goodman" > To: IDM@LISTSERV.EDUCAUSE.EDU > Sent: Thursday, September 13, 2012 4:03:22 PM > Subject: Re: [IDM] Oracle Access Manager and Oracle Identity Federation in Campus > > Would be greatly appreciated! > > Same question for anyone else that has a Shibblolized PeopleSoft that is > communicating with a federation of IdPs, i.e., includes some sort of > discovery service. Bonus points if there's an IdP proxy used between the PS > SP and the federated IdPs. > > Thanks, > > --- Eric > >
I'd be happy to take comments and summarize.

There's a high likelihood our IdP doesn't release to whatever site should summarize the responses to, so may need help posting them elsewhere than this list.

--- Eric 

Eric and Keith: I would be willing to help. As for publishing the results... maybe we could beg for a space on the InCommon Collaboration wiki... https://spaces.internet2.edu/display/InCCollaborate/Home;jsessionid=56C0... Other options come to mind as well... Eric if you are game, let's have an email exchange of list. Others are certainly welcome... Mark ------------------------------------------ Mark Rank Middleware and Identity Management Group University Information Technology Services UW-Milwaukee Email: rankm@uwm.edu Phn: 414-229-3706 ------------------------------------------ ----- Original Message ----- From: "Eric Goodman" To: IDM@LISTSERV.EDUCAUSE.EDU Sent: Thursday, September 13, 2012 5:05:06 PM Subject: Re: [IDM] Oracle Access Manager and Oracle Identity Federation in Campus I'd be happy to take comments and summarize. There's a high likelihood our IdP doesn't release to whatever site should summarize the responses to, so may need help posting them elsewhere than this list. --- Eric
On Sep 13, 2012, at 18:05:24, Mark John Rank wrote: > Eric and Keith: > > I would be willing to help. As for publishing the results... > maybe we could beg for a space on the InCommon Collaboration > wiki... > > https://spaces.internet2.edu/display/InCCollaborate/Home;jsessionid=56C0... That or someplace like it on the I2 spaces wiki. I'll look into it. --Keith > > Other options come to mind as well... Eric if you are game, > let's have an email exchange of list. Others are certainly welcome... > > Mark > > > ------------------------------------------ > Mark Rank > Middleware and Identity Management Group > University Information Technology Services > UW-Milwaukee > Email: rankm@uwm.edu > Phn: 414-229-3706 > ------------------------------------------ > > ----- Original Message ----- > From: "Eric Goodman" > To: IDM@LISTSERV.EDUCAUSE.EDU > Sent: Thursday, September 13, 2012 5:05:06 PM > Subject: Re: [IDM] Oracle Access Manager and Oracle Identity Federation in Campus > > I'd be happy to take comments and summarize. > > There's a high likelihood our IdP doesn't release to whatever site should > summarize the responses to, so may need help posting them elsewhere than > this list. > > --- Eric > >
Close
Close


Annual Conference
September 29–October 2
Register Now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

Close

Digital Badges
Member recognition effort
Earn yours >

Career Center


Leadership and Management Programs

EDUCAUSE Institute
Project Management

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

 

Close
EDUCAUSE organizes its efforts around three IT Focus Areas

 

 

Join These Programs If Your Focus Is

Close

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

 

Close

2014 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.