Presentation is loading. Please wait.

Presentation is loading. Please wait.

Single Sign On/Integration Server/Workflow Enhancements

Similar presentations


Presentation on theme: "Single Sign On/Integration Server/Workflow Enhancements"— Presentation transcript:

1 Single Sign On/Integration Server/Workflow Enhancements
Technology Update

2 Introductions Brent Mosher, Senior Sales Consultant, Applications Technology, Rocky Mountain Region Jason Reedy, Senior Sales Consultant, Applications Technology, Northern California Region

3 Topics Single Sign On Workflow Enhancements Integration Server Q & A

4 Single Sign On

5 Overview OracleAS SSO supports single sign-on for web (browser) clients OracleAS SSO allows web users who access OracleAS to sign in once, and be authenticated to multiple web applications including Oracle Portal, Oracle E-Business Suite, and non-Oracle applications These web applications are classified as either a “partner” or “external” application.

6 Product Features in 11.5.10 Single Sign-On Forced Authentication
Automatic Language Selection Linking Multiple User Accounts Support for Third Party Directories Extensible Authentication Single Sign-On - Release 11i.10 supports user authentication through the Single Sign-On Server. Once authenticated, the user can access all applications that are registered with the SSO Server without re-authenticating Forced Authentication - For sensitive transactions, users with valid sessions can be required to re-authenticate for additional security Automatic Language Selection - SSO Server detects the browser language setting and compares it with a list of languages installed in the E-Business Suite. If the detected language is installed, the login page is rendered in that language. If the browser language is not installed, the page is rendered in English (OID) AutoConfig support for OID - OID registration and provisioning are automated through AutoConfig. The following deployment scenarios are supported: • The E-Business Suite is the source of truth. Changes in the E-Business Suite are propagated to OID. • OID is the source of truth. Changes in OID are propagated to the E-Business Suite. • OID and the E-Business Suite are synchronized with each other. Changes in either repository are propagated to the other (OID) Linking Multiple User Accounts - You can link multiple E-Business Suite user accounts to a single Enterprise User Name in OID. This feature can be accessed from the Personal Home Page and enables users with multiple accounts to take advantage of Single Sign-on. Access to an account that has not been linked requires separate authentication, after which the user is prompted to link the account to OID if desired (OID) Replicate Users between OID and the E-Business Suite - Export tools are provided to move user records from the E-Business Suite to OID and vice-a-versa (OID) Party Attributes to be Imported into OID - Over 30 Party attributes stored in the E-Business Suite can be imported into OID (OID) Synchronization of Groups between OID and the E-Business Suite - One-way synchronization allows information about groups and group membership in OID to be imported into the E-Business Suite’s Workflow Directory. This enables the administrator to manage group information in a single source Support for Third Party Directories - User identities can be managed in third party directories as well as in Oracle Internet Directory (OID). This is accomplished through the Directory Integration Platform (DIP) component of Oracle Identity Management, which is included in Oracle Application Server 10g. DIP allows bi-directional synchronization of information between third party directories and OID, and therefore allows Oracle products (including the E-Business Suite) to access and manage information in these directories. DIP provides out-of-the-box support for the iPlanet directory and Microsoft Active Directory, and can be customized to support other directories Extensible Authentication - The extensibility features of Oracle Identity Management enable you to use advanced authentication technologies (in addition to username and password) and to leverage third party authentication products. Oracle Application Server 10g Single Sign-On (SSO), which the E-Business Suite can use for authentication, supports password-based, X.509v3 certificate-based, and Microsoft Windows Kerberos-based authentication out-of-the-box. Microsoft Kerberos support in SSO means that the E-Business Suite can obtain user identity information from Windows, so that users who have authenticated their Windows environment are automatically authenticated to the E-Business Suite. SSO can be configured to support other authentication mechanisms such as biometrics, and other SSO products such as Netegrity Siteminder, through installation of third party authentication adapters.

7 Benefits Users Administrators
Improved productivity through quicker access to applications Improved usability with single user identity and credentials and application personalization Administrators Lower costs and improved accuracy in user provisioning Better security through centralized management of security policies and authorizations Scalable administration through delegation Single Source of Truth Application developers can focus on extracting the data. Business consultants can create templates using familiar tools such as Acrobat, Word, Excel and others. End users can publish documents in multiple output formats, multiple languages, and multiple delivery options.

8 1st Case: The first time a user requests an application URL
Partner Application Oracle The Way Things Work Client Browser 6. Application Success URL sets session cookie and then redirects to the requested application URL 1. User requests Partner or Oracle Application URL 2. User gets redirected to the SSO server 3. User provides user name and password through Login form 5. User gets redirected to the Success URL with URLC token passed SSO cookie set User Repository (Local or External) SSO Server 4. Password verification

9 The Way Things Work (cont’d)
2nd Case: User is already authenticated but requests another application Partner Application Oracle The Way Things Work (cont’d) 4. Application Success URL sets session cookie and then redirects to the requested application URL Client Browser 1. User requests Partner application URL 2. User gets redirected to the SSO server SSO cookie sent from browser 3. User gets redirected to the Success URL with URLC token passed SSO Server User Repository (Local or External)

10 Product Dependencies Oracle Application Server 10g (OAS 9.0.4)

11 Third Party Integration Points
Single Sign On Windows Native Authentication (Kerberos) Netegrity SiteMinder, Entrust, Thor X.509v3 Digital Certificates Other SSO systems via custom adapter Oracle Internet Directory Sun ONE /iPlanet Microsoft Active Directory Any LDAP directory via LDIF files Any other directory via custom DIP agent

12 Workflow Enhancements & Integration Gateway

13 Oracle Workflow Embedded Process Management Engine of
the Oracle E-Business Suite Oracle Application Server 10g Integration technologies Database/Application Server 10g releases

14 Business Benefits Visual documentation of the business process
Crosses organizational, company boundaries Analyze time and costs of entire processes with multi-dimensional analysis Business processes will change You can only fix what you can see Enabling dynamic processes sympathetic to change Change business processes without changing code (Reduced cost of ownership)

15 Workflow Enabled e-business Suite
Release 11i highlights Workflow Enabled e-business Suite ERP Order Management Internet Procurement Self Service Financials Advanced Planning System Projects HRMS Candidate Offer Career Management Reviews CRM Call Center Service Contacts Support Marketing iStore And many more...

16 Traditional Workflow: Expense Report
AP Standard Expense Report Process

17 Oracle Workflow 11.5.10 Enhancements

18 Oracle Workflow 11.5.10 Enhancements Usability

19 Worklist Access feature

20 Worklist Access feature

21 End User Usability Enhancements
OA Framework for User Interface Embedded Framework Regions Include Product Specific Framework Regions in Notifications Simple Framework Regions in

22 Embedded Framework Regions

23 Automated Task Management
FYI Notifications Response Required Notifications e.g.. Approvals Browser based Oracle Workflow Worklist Automatically Notify Users of Tasks Sends Notifications to Roles (users and groups) Drill down capability (URL, Attachments) Escalation Management Vacation Handling

24 Automate Task Management

25 Worklist Configuration Capabilities
Control Notification Filtering, Column Display and Order

26 Choose Column Display and Order

27 Choose Notifications to Display

28 Notification Content

29 Notification Mailer Based on Java Mail APIs, XML and JMS
Outbound SMTP, Inbound IMAP HTML, Text, Summary formats Managed & Configured using the Oracle Workflow Manager Some customers send up to outbound s/day

30 Electronic Signatures
What are Electronic Signatures Password Based E-Signatures (PSIGS) Digital Signatures (PKCS7 / X.509) Biometrics, etc. Why Electronic Signatures Government Requirements Contractual Obligations High Value Transactions Security Consciousness Discuss various kinds of signatures

31 End User Security Enhancements
Notification Security Reminder! Responses via Notification Detail Page using requires login SEND_ACCESS_KEY feature obsolete

32 Oracle Workflow 11.5.10 Enhancements Integration

33 Business Event System Applications raise events Declaratively register
Actions to Business Events (no coding required) Actions include Launching a workflow Publishing XML to JMS Executing Code Read the slide first. Next say the following: Oracle9iAS Integration provides out of the box connectivity to disparate applications via pre-built adapters and uses a model driven architecture that speed deployment time. In addition it provides a single platform for EAI, B2B, and Web Services thus eliminating the need for spending time and money on purchasing additional integration products and integrating the integration solutions. Moreover, Oracle9iAS Integration is built on open standards and does not require retraining of your IT resources on proprietary technologies. Thus reducing the total cost of integration and future proofing your integration infrastructure.

34 Why? Don’t hardcode your business actions or process to your application Achieve maximum flexibility to make additions and modifications without changing code Identifying business events already key part of the development process Register Events, optionally register actions

35 Integration Enhancements
Java Business Event System Java Raise API Simple Java Interface Supports Heterogeneous Subscriptions Synchronous / Asynchronous and Java / PL/SQL Supports any serializable Java Business Object Payload Supports Java Generate Function Independent of Event raise technology – PL/SQL or Java Simplified User Interface

36 Integration Enhancements
Business Event System Architecture Java Event Dispatcher Common Registry of Actions Java Application Events PLSQL Workflow Java Actions Notifications PLSQL Actions XML on JMS Web Services Database Event Dispatcher PLSQL Application Events Asynchronous or Synchronous

37 Integration Web Services Support
Exposes key integration points using API and XML Documents Exposes OAG, cXML, Rossetta Net Business Object Documents as Web Services using the Workflow Business Event System Based on open standards – SOAP, WSDL, XML

38 Oracle Workflow Futures

39 Oracle Workflow For Java (OW4J)
Currently Under Development Next generation of Oracle Workflow Java based Business Process Management Integrated with Oracle JDeveloper Application Developer Framework You choose whether your workflow is executed by the database or java engine (based on where your business logic is deployed)

40 Architecture Transformation
OW4J Oracle Workflow JDeveloper IDE (Java) Design Tool (Windows) Web Browser (HTML) PLSQL Engine Java Adapter Java Engine PLSQL Engine Database Repository Database or XML PLSQL Web Toolkit UI JSP UI

41 Today…Oracle Workflow Builder

42 Future……OW4J Modeler OW4J Modeler Applications developer tool
Integrated with Oracle JDeveloper Application Framework Based on XML Leverages Oracle JDeveloper Application Framework metadata services Runs on platforms supported by Oracle JDeveloper

43 OW4J Modeler

44 OW4J Modeler Application Navigator Component Palette Structure Pane
Property Inspector Process Window

45 Future…OW4J Self Service Modeler
Browser Based Process modeler for Business Analysts Optimized for simple use case scenarios (Notification messages editing & simple activity re-sequencing ) Hosted environments

46 OW4J Self Service Modeler

47 Interface Repository: An enabling technology for E-Business Suite Web Services

48 E-Business Suite Interface Repository
Catalog of all E-Business Suite Interfaces Open to Customers, Consultants, Integrators The Single source of truth for Integration projects Powerful User Interface for searching and viewing available interfaces Automatically kept in step with source code, via standard patching technology

49 E-Business Suite Interface Repository
Contains all E-Business Interfaces that a customer may wish to call or expose PL/SQL Procedure Java Class Java Service Beans XML Gateway Messages EDI Messages Interface Table Concurrent Program Workflow Process Web Service Enterprise JavaBean

50 EBS Integration Repository Browsing
By Interface types By Business Entity By Product By Product Family By Standard

51 EBS Integration Repository Searching
Simple Search Name Product Product Family Internal Name Interface Type Advanced Search Business Entity Scope Status Miscellaneous Standard Standard Spec Simple Search By Name – Depends on the Interface Type Product – Official List of Products (Search result may include Interfaces from other products that an owner of the selected product can use Product Family – Official list of Product Families Internal Name – Package name Interface Types – Advanced Search Business Entity Scope --- Public Internal Private Status (Lifecycle) – Planned, Active, Deprecated, Obsolete

52 EBS Integration Repository What do I get…..
More info, faster, better Comprehensive and complete information Rapid Discovery of information Implementation timeline reduced (because you got the right info in the first place) Integration more efficient - found the right stuff with little effort

53 Integration Gateway Components

54 The Customer Data Hub A single source of truth about your customers even if you aren’t using any of the E-Business Suite Leverages E-Business Suite data model and data quality services The Customer Data Hub Siebel PeopleSoft Legacy Broadvision

55 Q & Q U E S T I O N S A N S W E R S A

56 Thank You.


Download ppt "Single Sign On/Integration Server/Workflow Enhancements"

Similar presentations


Ads by Google