Oracle Identity Management Components
Oracle
Identity Management 11g includes the following components.
Oracle Identity Manager
Oracle
Identity Manager (OIM) typically answers the question "Who has access to
What,
When, How,
and Why?". OIM is designed to administer both intranet and extranet user
access
privileges
across a company's resources throughout the entire identity management life
cycle,
from initial
on-boarding to final de-provisioning of an identity. In extranet environments,
OIM’s
superior scalability allows enterprises to support millions of customers
accessing a
company’s
resources using traditional clients (e.g., browsers) or smart phones.
Oracle Identity Analytics
Oracle Identity
Analytics (OIA) brings a new dimension to Oracle Identity Management in the
area of
identity and access governance. OIA helps you address regulatory mandates,
automate
processes,
and quickly make compliance a repeatable and sustainable part of business. OIA
provides a
comprehensive solution for access certification (correlating identity and
access data
across the
enterprise), enterprise-level segregation of duties (SoD) enforcement, and an
identity
warehouse designed to consolidate identities, resources, and entitlement
information.
Oracle Access Manager
Oracle
Access Manager (OAM) provides centralized, policy-driven services for
authentication,
single sign-on (SSO), and identity assertion. OAM integrates with a broad
array of
authentication mechanisms, third-party web servers and application servers, and
standards-based
federated SSO solutions to ensure maximum flexibility and a well-integrated,
comprehensive
web access control solution. OAM complements its own coarse-grained
authorization
and attribute assertion capabilities by integrating with Oracle Entitlements
Server to
provide fine-grained authorization to applications, portals, databases, and web
services.
Oracle Web Services Manager
Oracle Web
Services Manager (OWSM) is to web services what Oracle Access Manager is to
web
applications. OWSM is designed to protect access to multiple types of resources
including
standards-compliant web services (Java EE, Microsoft .NET, PL/SQL, etc.);
service-oriented
architecture (SOA) composites including Business Process Execution
Language
(BPEL) and enterprise service bus (ESB) processes; and Oracle WebCenter’s
remote
portlets. OWSM is delivered as part of Oracle SOA.
Oracle Identity Federation
Oracle
Identity Federation (OIF) is a self-contained solution enabling browser-based,
crossdomain single sign-on using industry standards (SAML, Liberty ID-FF,
WS-Federation,
Microsoft
Windows CardSpace). In addition, with a Fedlet packaged as a Web Archive
(WAR), a
service provider can immediately federate with an identity provider without
requiring a
full-blown federation solution in place.
Security Token Service
Oracle’s
Security Token Service (STS) establishes a trust relationship between online
partners
through web
services. STS provides both standard (e.g., SAML, Kerberos) and proprietary
(e.g.,
PeopleSoft, Siebel) security token issuance, validation, and exchange. STS is
part of
Identity and
Access Management Suite Plus and Access Management Suite Plus.
Oracle Enterprise Single Sign-On
Oracle
Enterprise Single Sign-On (eSSO) is a Microsoft Windows desktop-based suite of
products
providing unified authentication and single sign-on to both thick- and
thin-client
applications
with no modification required to existing applications. Using Oracle eSSO,
enterprise
users benefit from single sign-on to all of their applications, whether users
are
connected to
the corporate network, traveling away from the office, roaming between
computers,
or working at a shared workstation.
Oracle Entitlements Server
Oracle
Entitlements Server (OES) is a fine-grained authorization engine that
externalizes,
unifies, and
simplifies the management of complex entitlement policies. OES secures access
to
application resources and software components (such as URLs, Enterprise
JavaBeans, and
Java Server
Pages) as well as arbitrary business objects (such as customer accounts or
patient
records in a
database). OES provides a centralized administration point for complex
entitlement
policies across a diverse range of business and IT systems.
Oracle Adaptive Access Manager
Oracle
Adaptive Access Manager (OAAM) provides resource protection through real-time
fraud
prevention, software-based multifactor authentication, and unique
authentication
strengthening.
OAAM consists of two primary components that together create one of the
most
powerful and flexible weapons in the war against fraud. Adaptive Strong
Authenticator
provides
multifactor authentication and protection mechanisms for sensitive information
such
as
passwords, tokens, account numbers, and other credentials. Adaptive Risk
Manager
provides
real-time and offline risk analysis, and proactive actions to prevent fraud at
critical
log-in and
transaction checkpoints.
Oracle Directory Services
Oracle Directory Server Enterprise
Edition (ODSEE)
offers best-of-breed Lightweight
Directory
Access Protocol (LDAP)-based services recommended for heterogeneous
applications
and multi-vendor environments. ODSEE is the industry-leading carrier-grade
directory
solution.
Oracle Internet Directory (OID) provides Oracle Fusion Middleware
components, Oracle
Fusion
applications and in-house enterprise applications with a highly-scalable
LDAP-based
mechanism
for storing and accessing identity data such as user credentials (for
authentication),
access privileges (for authorization), and profile information.
Oracle Virtual Directory (OVD) is designed to provide real-time
identity aggregation and
transformation
without data copying or data synchronization. OVD hides the complexity of
underlying
data infrastructures by providing industry-standard LDAP and XML views of
existing
enterprise identity information, without moving data from its native location.
Oracle Platform Security Services
Oracle
Platform Security Services (OPSS) provides enterprise product development
teams,
systems
integrators, and independent software vendors with a standards-based, portable,
integrated,
enterprise-grade security framework for Java Platform, Standard Edition (Java
SE)
and Java
Platform, Enterprise Edition (Java EE) applications. OPSS insulates developers
from
the
intricacies of tasks not directly related to application development by
providing an
abstraction
layer in the form of standards-based application programming interfaces. OPSS
is
the security
foundation for Oracle Fusion Middleware: all Oracle Fusion Middleware 11g
components
and Oracle Fusion applications “consume” the OPSS framework’s services.
No comments:
Post a Comment