Tamim Khan, profile picture
Uploaded byTamim Khan
PPTX, PDF1,209 views

Presentation- on OIM

1) The document discusses Oracle Identity Governance and Access Management projects for several clients, including integrating numerous applications with OIM and implementing ESSO. 2) It provides an overview of integrating applications with OIM using connectors and protecting web applications using OAM with WebGates deployed. 3) Finally, it outlines different deployment approaches for OAM including agent-based, agent-less, using a terminal server as a gateway, and a hybrid approach combining methods.

Embed presentation

Downloaded 62 times
Implementation of Oracle Identity Governance & Access Management Powered by 1
Our Major Projects on Oracle Identity Governance and Access Management Client: Robi (An Axiata Telecom Company) Project Scope: Supply of hardware and software; integration of 11 applications with OIM; implementation of ESSO on 20 applications Client: Banglalink Project Scope: Integration of 16 applications with OIM; Implementation of ESSO on 24 applications Client: Acleda Bank Plc, Cambodia Project Scope: Implementation of ESSO on 15 applications Client: Grameenphone Ltd Project Scope: Supply of hardware and software; integration of 134 applications with OIM; integration of 700+ nodes with OPAM 2
Integration with OIM using connectors 3 Application Database Recon Employee Master Data Provisioning Reconciliation Adapter Provisioning Adapter Reconciliation HRMS Data From Authentic Source (Trusted Reconciliation) Oracle Identity Manager Identity Connector Framework (ICF) [DBAT]
Protecting Web Application Server using OAM Web Servers (Apache, IIS, OHS etc) Users OAM Cluster LDAP Server (Active Directory/OID/OUD) OAM WebGate Deployed to Protect Resources Verifies User Credentials Pass Security TokensUser Request Web URL
Single Sign On Request Flow in OAM End Users User Store (LDAP) Web Server With WebGate Oracle Access Manager User Request Web URL Check Protection Evaluates & Returns Policy DecisionRedirect To App if Unprotected Sends Login Page if Protected Send User Credentials Verify User Credentials Create Sessions , Cookies or HTTP Headers Check User access 10 Evaluates and Return Authorization 11 Redirects to Application if Authorized 1 2 34 5 6 7 8 9
Integration with OAM for SSO using webgate External Users Front End Proxy (Deploy Webgate) Application Servers Internal Users Oracle Traffic Director Oracle Access Manager Active Directory Oracle Internet Directory
HOLISTIC VIEW OPAM DEPLOYMENT 77 Remote Users VPN SSH/RDP Internal User RDP Access Over LAN OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Session Manager Terminal Server/Jump Server LDAP Server OPAM Windows Agent
AGENT-BASED DEPLOYMENT (WINDOWS) 8 Database Server OPAM Application Server Metadata logs and Video Capture OPAM Windows Agent OPAM Windows Agent OPAM Windows Agent OPAM Windows Agent ActiveDirectoryFileServerApplicationServerDesktop Remote Users VPN RDP RDP RDP Internal User RDP Access Over LAN Local login Direct Login User Session Data Flow Audit Data Flow
AGENT-LESS DEPLOYMENT (LINUX/UNIX) 9Database Server OPAM Application Server Metadata logs and Session Capture Remote Users VPN SSH Internal User SSH OPAMSession Manager User Session Data Flow Audit Data Flow OPAM Session Manager LDAP Server Authentication
TERMINAL SERVER AS A GATEWAY 10 Remote Users VPN RDP Internal User RDP Access Over LAN Putty Web Browsers (Web Portals) OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Agent Terminal Server/Jump Server
FIREWALL CONFIGURATION FOR GATEWAY APPROACH 11 • Network Firewall do not allow end user to bypass Terminal server. RDP Internal User Access Over LAN Remote Users VPN RDP Terminal Server
HYBRID DEPLOYMENT-PROPOSED SOLUTIONS (AGENT-BASED + AGENT LESS + GATEWAY APPROACH) 1212 Remote Users VPN SSH/RDP Internal User RDP Access Over LAN OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Agent Terminal Server/Jump Server LDAP Server OPAM Windows Agent 2FA 2FA 2FA
ORACLE ACCESS MANAGER - 2FA 1313 Remote Users VPN OPAM Self Service Console Internal User User Login using RDP Access Over LAN OPAM Server Terminal Server/Jump Server LDAP Server OAM Server 2FA1 2 Token for 2FA 4 OPAM Windows Agent 3 2 FA Token
ON DEMAND ACCESS 1414 OIM & SOA PlatformEnd Users Approval Policy Terminal Server/Jump Server LDAP Server Reset Password Authentication SSH RDP SSH/Telnet/Web Browser Request for Access Approval Process
Thank you… 15

More Related Content

PDF
Azure 101
byKorry Lavoie
 
PDF
OIM11g R2PS2 Architecture
byAtul Goyal
 
PPT
Oim Poc1.0
byMohamed Atef
 
PDF
Microsoft Office 365 Security and Compliance
byDavid J Rosenthal
 
PPTX
Oracle Identity Manager Basics
byChekka Venkateshwar Rao
 
PPTX
2 Modern Security - Microsoft Information Protection
byAndrew Bettany
 
PPTX
Azure Identity and access management
byDinusha Kumarasiri
 
PDF
Microsoft Azure Active Directory
byDavid J Rosenthal
 
Azure 101
byKorry Lavoie
 
OIM11g R2PS2 Architecture
byAtul Goyal
 
Oim Poc1.0
byMohamed Atef
 
Microsoft Office 365 Security and Compliance
byDavid J Rosenthal
 
Oracle Identity Manager Basics
byChekka Venkateshwar Rao
 
2 Modern Security - Microsoft Information Protection
byAndrew Bettany
 
Azure Identity and access management
byDinusha Kumarasiri
 
Microsoft Azure Active Directory
byDavid J Rosenthal
 

What's hot

PDF
【Oracle Cloud ウェビナー】WebLogic Serverのご紹介
byオラクルエンジニア通信
 
PDF
SCIM presentation from CIS 2012
byTwobo Technologies
 
PDF
Oracle Cloud Infrastructure
byMarketingArrowECS_CZ
 
PDF
Oracle Identity & Access Management
byDLT Solutions
 
PPTX
Azure AD Presentation - @ BITPro - Ajay
byAnoop Nair
 
PPTX
OCI Overview
byKamil Wieczorek
 
PPTX
Microsoft Information Protection: Your Security and Compliance Framework
byAlistair Pugin
 
PPTX
Introduction to Azure AD and Azure AD B2C
byJoonas Westlin
 
PPTX
Oracle Identity Governance - Customer Presentation
byDelivery Centric
 
PDF
Azure security architecture
byKarl Ots
 
PDF
Understanding Azure AD
byNew Horizons Ireland
 
PDF
Azure Information Protection
byRobert Crane
 
PPTX
Basic oracle-database-administration
bysreehari orienit
 
PPTX
Microsoft Purview
byMohammed Chaaraoui
 
PPTX
Getting your enterprise ready for Microsoft 365 Copilot
byVignesh Ganesan I Microsoft MVP
 
PDF
Office 365 migration
byMotty Ben Atia
 
PPTX
Azure Active Directory - An Introduction
byVenkatesh Narayanan
 
PDF
Access Security - Privileged Identity Management
byEng Teong Cheah
 
PPTX
Azure active directory
byRaju Kumar
 
PPT
Building an Effective Identity Management Strategy
byNetIQ
 
【Oracle Cloud ウェビナー】WebLogic Serverのご紹介
byオラクルエンジニア通信
 
SCIM presentation from CIS 2012
byTwobo Technologies
 
Oracle Cloud Infrastructure
byMarketingArrowECS_CZ
 
Oracle Identity & Access Management
byDLT Solutions
 
Azure AD Presentation - @ BITPro - Ajay
byAnoop Nair
 
OCI Overview
byKamil Wieczorek
 
Microsoft Information Protection: Your Security and Compliance Framework
byAlistair Pugin
 
Introduction to Azure AD and Azure AD B2C
byJoonas Westlin
 
Oracle Identity Governance - Customer Presentation
byDelivery Centric
 
Azure security architecture
byKarl Ots
 
Understanding Azure AD
byNew Horizons Ireland
 
Azure Information Protection
byRobert Crane
 
Basic oracle-database-administration
bysreehari orienit
 
Microsoft Purview
byMohammed Chaaraoui
 
Getting your enterprise ready for Microsoft 365 Copilot
byVignesh Ganesan I Microsoft MVP
 
Office 365 migration
byMotty Ben Atia
 
Azure Active Directory - An Introduction
byVenkatesh Narayanan
 
Access Security - Privileged Identity Management
byEng Teong Cheah
 
Azure active directory
byRaju Kumar
 
Building an Effective Identity Management Strategy
byNetIQ
 

Similar to Presentation- on OIM

PDF
Identity & Access Management for Securing DevOps
byEryk Budi Pratama
 
PDF
Oracle Identity Governance Technical Overview - 11gR2PS3
byAtul Goyal
 
PPT
Iam suite introduction
bywardell henley
 
PPTX
Oracle Identity and access management overview
bykalikishoregomattam1
 
PDF
IDM Resume _ Kiran
byKiran Kumar
 
PPTX
Oracle Access Management - Customer presentation
byDelivery Centric
 
PPTX
Overview of Oracle Identity Management - Customer Presentation
byDelivery Centric
 
PDF
Multiple ldap implementation with ebs using oid
bypasalapudi
 
PPTX
Oracle IDAM overview
byEslam Hafez
 
PDF
Securing Oracle EBS on Oracle Cloud Infrastructure_PPT_v2.pdf
byvasuballa
 
PPTX
Con8833 access at scale for hundreds of millions of users final
byOracleIDM
 
PDF
Series of Visual Flow Diagrams
byMike Reams
 
PPTX
Con8811 converged identity governance for speeding up business and reducing c...
byOracleIDM
 
PPTX
Con8813 securing privileged accounts with an integrated idm solution - final
byOracleIDM
 
PPTX
Fusion Applications Bare Metal Provisioning - Lessons Learned
byAndrejs Karpovs
 
PDF
CON8040 Identity as a Service - Extend Enterprise Controls and Identity to th...
byoow123
 
PPT
Oracle 11i OID AD Integration
byMahesh Vallampati
 
PDF
Self Service Access Control - Help Yourself to More Productivity
byAtul Goyal
 
PDF
Whitepaper Oracle Identity Management
byBristlecone SCC
 
PPTX
Jagatjyoti dash
byJagatjyoti Dash
 
Identity & Access Management for Securing DevOps
byEryk Budi Pratama
 
Oracle Identity Governance Technical Overview - 11gR2PS3
byAtul Goyal
 
Iam suite introduction
bywardell henley
 
Oracle Identity and access management overview
bykalikishoregomattam1
 
IDM Resume _ Kiran
byKiran Kumar
 
Oracle Access Management - Customer presentation
byDelivery Centric
 
Overview of Oracle Identity Management - Customer Presentation
byDelivery Centric
 
Multiple ldap implementation with ebs using oid
bypasalapudi
 
Oracle IDAM overview
byEslam Hafez
 
Securing Oracle EBS on Oracle Cloud Infrastructure_PPT_v2.pdf
byvasuballa
 
Con8833 access at scale for hundreds of millions of users final
byOracleIDM
 
Series of Visual Flow Diagrams
byMike Reams
 
Con8811 converged identity governance for speeding up business and reducing c...
byOracleIDM
 
Con8813 securing privileged accounts with an integrated idm solution - final
byOracleIDM
 
Fusion Applications Bare Metal Provisioning - Lessons Learned
byAndrejs Karpovs
 
CON8040 Identity as a Service - Extend Enterprise Controls and Identity to th...
byoow123
 
Oracle 11i OID AD Integration
byMahesh Vallampati
 
Self Service Access Control - Help Yourself to More Productivity
byAtul Goyal
 
Whitepaper Oracle Identity Management
byBristlecone SCC
 
Jagatjyoti dash
byJagatjyoti Dash
 

Presentation- on OIM

  • 1.
    Implementation of OracleIdentity Governance & Access Management Powered by 1
  • 2.
    Our Major Projectson Oracle Identity Governance and Access Management Client: Robi (An Axiata Telecom Company) Project Scope: Supply of hardware and software; integration of 11 applications with OIM; implementation of ESSO on 20 applications Client: Banglalink Project Scope: Integration of 16 applications with OIM; Implementation of ESSO on 24 applications Client: Acleda Bank Plc, Cambodia Project Scope: Implementation of ESSO on 15 applications Client: Grameenphone Ltd Project Scope: Supply of hardware and software; integration of 134 applications with OIM; integration of 700+ nodes with OPAM 2
  • 3.
    Integration with OIMusing connectors 3 Application Database Recon Employee Master Data Provisioning Reconciliation Adapter Provisioning Adapter Reconciliation HRMS Data From Authentic Source (Trusted Reconciliation) Oracle Identity Manager Identity Connector Framework (ICF) [DBAT]
  • 4.
    Protecting Web ApplicationServer using OAM Web Servers (Apache, IIS, OHS etc) Users OAM Cluster LDAP Server (Active Directory/OID/OUD) OAM WebGate Deployed to Protect Resources Verifies User Credentials Pass Security TokensUser Request Web URL
  • 5.
    Single Sign OnRequest Flow in OAM End Users User Store (LDAP) Web Server With WebGate Oracle Access Manager User Request Web URL Check Protection Evaluates & Returns Policy DecisionRedirect To App if Unprotected Sends Login Page if Protected Send User Credentials Verify User Credentials Create Sessions , Cookies or HTTP Headers Check User access 10 Evaluates and Return Authorization 11 Redirects to Application if Authorized 1 2 34 5 6 7 8 9
  • 6.
    Integration with OAMfor SSO using webgate External Users Front End Proxy (Deploy Webgate) Application Servers Internal Users Oracle Traffic Director Oracle Access Manager Active Directory Oracle Internet Directory
  • 7.
    HOLISTIC VIEW OPAMDEPLOYMENT 77 Remote Users VPN SSH/RDP Internal User RDP Access Over LAN OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Session Manager Terminal Server/Jump Server LDAP Server OPAM Windows Agent
  • 8.
    AGENT-BASED DEPLOYMENT (WINDOWS) 8 Database Server OPAMApplication Server Metadata logs and Video Capture OPAM Windows Agent OPAM Windows Agent OPAM Windows Agent OPAM Windows Agent ActiveDirectoryFileServerApplicationServerDesktop Remote Users VPN RDP RDP RDP Internal User RDP Access Over LAN Local login Direct Login User Session Data Flow Audit Data Flow
  • 9.
    AGENT-LESS DEPLOYMENT (LINUX/UNIX) 9DatabaseServer OPAM Application Server Metadata logs and Session Capture Remote Users VPN SSH Internal User SSH OPAMSession Manager User Session Data Flow Audit Data Flow OPAM Session Manager LDAP Server Authentication
  • 10.
    TERMINAL SERVER ASA GATEWAY 10 Remote Users VPN RDP Internal User RDP Access Over LAN Putty Web Browsers (Web Portals) OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Agent Terminal Server/Jump Server
  • 11.
    FIREWALL CONFIGURATION FORGATEWAY APPROACH 11 • Network Firewall do not allow end user to bypass Terminal server. RDP Internal User Access Over LAN Remote Users VPN RDP Terminal Server
  • 12.
    HYBRID DEPLOYMENT-PROPOSED SOLUTIONS (AGENT-BASED+ AGENT LESS + GATEWAY APPROACH) 1212 Remote Users VPN SSH/RDP Internal User RDP Access Over LAN OPAM Windows Agent OPAM Application Server Database Server Metadata logs and Video Capture SSH RDP SSH SSH/Telnet/Web Browser User Session Data Flow Audit Data Flow OPAM Agent Terminal Server/Jump Server LDAP Server OPAM Windows Agent 2FA 2FA 2FA
  • 13.
    ORACLE ACCESS MANAGER- 2FA 1313 Remote Users VPN OPAM Self Service Console Internal User User Login using RDP Access Over LAN OPAM Server Terminal Server/Jump Server LDAP Server OAM Server 2FA1 2 Token for 2FA 4 OPAM Windows Agent 3 2 FA Token
  • 14.
    ON DEMAND ACCESS 1414 OIM& SOA PlatformEnd Users Approval Policy Terminal Server/Jump Server LDAP Server Reset Password Authentication SSH RDP SSH/Telnet/Web Browser Request for Access Approval Process
  • 15.