Download presentation
Presentation is loading. Please wait.
Published byLuc Gamache Modified over 6 years ago
1
Single Sign On/Integration Server/Workflow Enhancements
Technology Update
2
Introductions Brent Mosher, Senior Sales Consultant, Applications Technology, Rocky Mountain Region Jason Reedy, Senior Sales Consultant, Applications Technology, Northern California Region
3
Topics Single Sign On Workflow Enhancements Integration Server Q & A
4
Single Sign On
5
Overview OracleAS SSO supports single sign-on for web (browser) clients OracleAS SSO allows web users who access OracleAS to sign in once, and be authenticated to multiple web applications including Oracle Portal, Oracle E-Business Suite, and non-Oracle applications These web applications are classified as either a “partner” or “external” application.
6
Product Features in 11.5.10 Single Sign-On Forced Authentication
Automatic Language Selection Linking Multiple User Accounts Support for Third Party Directories Extensible Authentication Single Sign-On - Release 11i.10 supports user authentication through the Single Sign-On Server. Once authenticated, the user can access all applications that are registered with the SSO Server without re-authenticating Forced Authentication - For sensitive transactions, users with valid sessions can be required to re-authenticate for additional security Automatic Language Selection - SSO Server detects the browser language setting and compares it with a list of languages installed in the E-Business Suite. If the detected language is installed, the login page is rendered in that language. If the browser language is not installed, the page is rendered in English (OID) AutoConfig support for OID - OID registration and provisioning are automated through AutoConfig. The following deployment scenarios are supported: • The E-Business Suite is the source of truth. Changes in the E-Business Suite are propagated to OID. • OID is the source of truth. Changes in OID are propagated to the E-Business Suite. • OID and the E-Business Suite are synchronized with each other. Changes in either repository are propagated to the other (OID) Linking Multiple User Accounts - You can link multiple E-Business Suite user accounts to a single Enterprise User Name in OID. This feature can be accessed from the Personal Home Page and enables users with multiple accounts to take advantage of Single Sign-on. Access to an account that has not been linked requires separate authentication, after which the user is prompted to link the account to OID if desired (OID) Replicate Users between OID and the E-Business Suite - Export tools are provided to move user records from the E-Business Suite to OID and vice-a-versa (OID) Party Attributes to be Imported into OID - Over 30 Party attributes stored in the E-Business Suite can be imported into OID (OID) Synchronization of Groups between OID and the E-Business Suite - One-way synchronization allows information about groups and group membership in OID to be imported into the E-Business Suite’s Workflow Directory. This enables the administrator to manage group information in a single source Support for Third Party Directories - User identities can be managed in third party directories as well as in Oracle Internet Directory (OID). This is accomplished through the Directory Integration Platform (DIP) component of Oracle Identity Management, which is included in Oracle Application Server 10g. DIP allows bi-directional synchronization of information between third party directories and OID, and therefore allows Oracle products (including the E-Business Suite) to access and manage information in these directories. DIP provides out-of-the-box support for the iPlanet directory and Microsoft Active Directory, and can be customized to support other directories Extensible Authentication - The extensibility features of Oracle Identity Management enable you to use advanced authentication technologies (in addition to username and password) and to leverage third party authentication products. Oracle Application Server 10g Single Sign-On (SSO), which the E-Business Suite can use for authentication, supports password-based, X.509v3 certificate-based, and Microsoft Windows Kerberos-based authentication out-of-the-box. Microsoft Kerberos support in SSO means that the E-Business Suite can obtain user identity information from Windows, so that users who have authenticated their Windows environment are automatically authenticated to the E-Business Suite. SSO can be configured to support other authentication mechanisms such as biometrics, and other SSO products such as Netegrity Siteminder, through installation of third party authentication adapters.
7
Benefits Users Administrators
Improved productivity through quicker access to applications Improved usability with single user identity and credentials and application personalization Administrators Lower costs and improved accuracy in user provisioning Better security through centralized management of security policies and authorizations Scalable administration through delegation Single Source of Truth Application developers can focus on extracting the data. Business consultants can create templates using familiar tools such as Acrobat, Word, Excel and others. End users can publish documents in multiple output formats, multiple languages, and multiple delivery options.
8
1st Case: The first time a user requests an application URL
Partner Application Oracle The Way Things Work Client Browser 6. Application Success URL sets session cookie and then redirects to the requested application URL 1. User requests Partner or Oracle Application URL 2. User gets redirected to the SSO server 3. User provides user name and password through Login form 5. User gets redirected to the Success URL with URLC token passed SSO cookie set User Repository (Local or External) SSO Server 4. Password verification
9
The Way Things Work (cont’d)
2nd Case: User is already authenticated but requests another application Partner Application Oracle The Way Things Work (cont’d) 4. Application Success URL sets session cookie and then redirects to the requested application URL Client Browser 1. User requests Partner application URL 2. User gets redirected to the SSO server SSO cookie sent from browser 3. User gets redirected to the Success URL with URLC token passed SSO Server User Repository (Local or External)
10
Product Dependencies Oracle Application Server 10g (OAS 9.0.4)
11
Third Party Integration Points
Single Sign On Windows Native Authentication (Kerberos) Netegrity SiteMinder, Entrust, Thor X.509v3 Digital Certificates Other SSO systems via custom adapter Oracle Internet Directory Sun ONE /iPlanet Microsoft Active Directory Any LDAP directory via LDIF files Any other directory via custom DIP agent
12
Workflow Enhancements & Integration Gateway
13
Oracle Workflow Embedded Process Management Engine of
the Oracle E-Business Suite Oracle Application Server 10g Integration technologies Database/Application Server 10g releases
14
Business Benefits Visual documentation of the business process
Crosses organizational, company boundaries Analyze time and costs of entire processes with multi-dimensional analysis Business processes will change You can only fix what you can see Enabling dynamic processes sympathetic to change Change business processes without changing code (Reduced cost of ownership)
15
Workflow Enabled e-business Suite
Release 11i highlights Workflow Enabled e-business Suite ERP Order Management Internet Procurement Self Service Financials Advanced Planning System Projects HRMS Candidate Offer Career Management Reviews CRM Call Center Service Contacts Support Marketing iStore And many more...
16
Traditional Workflow: Expense Report
AP Standard Expense Report Process
17
Oracle Workflow 11.5.10 Enhancements
18
Oracle Workflow 11.5.10 Enhancements Usability
19
Worklist Access feature
20
Worklist Access feature
21
End User Usability Enhancements
OA Framework for User Interface Embedded Framework Regions Include Product Specific Framework Regions in Notifications Simple Framework Regions in
22
Embedded Framework Regions
23
Automated Task Management
FYI Notifications Response Required Notifications e.g.. Approvals Browser based Oracle Workflow Worklist Automatically Notify Users of Tasks Sends Notifications to Roles (users and groups) Drill down capability (URL, Attachments) Escalation Management Vacation Handling
24
Automate Task Management
25
Worklist Configuration Capabilities
Control Notification Filtering, Column Display and Order
26
Choose Column Display and Order
27
Choose Notifications to Display
28
Notification Content
29
Notification Mailer Based on Java Mail APIs, XML and JMS
Outbound SMTP, Inbound IMAP HTML, Text, Summary formats Managed & Configured using the Oracle Workflow Manager Some customers send up to outbound s/day
30
Electronic Signatures
What are Electronic Signatures Password Based E-Signatures (PSIGS) Digital Signatures (PKCS7 / X.509) Biometrics, etc. Why Electronic Signatures Government Requirements Contractual Obligations High Value Transactions Security Consciousness Discuss various kinds of signatures
31
End User Security Enhancements
Notification Security Reminder! Responses via Notification Detail Page using requires login SEND_ACCESS_KEY feature obsolete
32
Oracle Workflow 11.5.10 Enhancements Integration
33
Business Event System Applications raise events Declaratively register
Actions to Business Events (no coding required) Actions include Launching a workflow Publishing XML to JMS Executing Code Read the slide first. Next say the following: Oracle9iAS Integration provides out of the box connectivity to disparate applications via pre-built adapters and uses a model driven architecture that speed deployment time. In addition it provides a single platform for EAI, B2B, and Web Services thus eliminating the need for spending time and money on purchasing additional integration products and integrating the integration solutions. Moreover, Oracle9iAS Integration is built on open standards and does not require retraining of your IT resources on proprietary technologies. Thus reducing the total cost of integration and future proofing your integration infrastructure.
34
Why? Don’t hardcode your business actions or process to your application Achieve maximum flexibility to make additions and modifications without changing code Identifying business events already key part of the development process Register Events, optionally register actions
35
Integration Enhancements
Java Business Event System Java Raise API Simple Java Interface Supports Heterogeneous Subscriptions Synchronous / Asynchronous and Java / PL/SQL Supports any serializable Java Business Object Payload Supports Java Generate Function Independent of Event raise technology – PL/SQL or Java Simplified User Interface
36
Integration Enhancements
Business Event System Architecture Java Event Dispatcher Common Registry of Actions Java Application Events PLSQL Workflow Java Actions Notifications PLSQL Actions XML on JMS Web Services Database Event Dispatcher PLSQL Application Events Asynchronous or Synchronous
37
Integration Web Services Support
Exposes key integration points using API and XML Documents Exposes OAG, cXML, Rossetta Net Business Object Documents as Web Services using the Workflow Business Event System Based on open standards – SOAP, WSDL, XML
38
Oracle Workflow Futures
39
Oracle Workflow For Java (OW4J)
Currently Under Development Next generation of Oracle Workflow Java based Business Process Management Integrated with Oracle JDeveloper Application Developer Framework You choose whether your workflow is executed by the database or java engine (based on where your business logic is deployed)
40
Architecture Transformation
OW4J Oracle Workflow JDeveloper IDE (Java) Design Tool (Windows) Web Browser (HTML) PLSQL Engine Java Adapter Java Engine PLSQL Engine Database Repository Database or XML PLSQL Web Toolkit UI JSP UI
41
Today…Oracle Workflow Builder
42
Future……OW4J Modeler OW4J Modeler Applications developer tool
Integrated with Oracle JDeveloper Application Framework Based on XML Leverages Oracle JDeveloper Application Framework metadata services Runs on platforms supported by Oracle JDeveloper
43
OW4J Modeler
44
OW4J Modeler Application Navigator Component Palette Structure Pane
Property Inspector Process Window
45
Future…OW4J Self Service Modeler
Browser Based Process modeler for Business Analysts Optimized for simple use case scenarios (Notification messages editing & simple activity re-sequencing ) Hosted environments
46
OW4J Self Service Modeler
47
Interface Repository: An enabling technology for E-Business Suite Web Services
48
E-Business Suite Interface Repository
Catalog of all E-Business Suite Interfaces Open to Customers, Consultants, Integrators The Single source of truth for Integration projects Powerful User Interface for searching and viewing available interfaces Automatically kept in step with source code, via standard patching technology
49
E-Business Suite Interface Repository
Contains all E-Business Interfaces that a customer may wish to call or expose PL/SQL Procedure Java Class Java Service Beans XML Gateway Messages EDI Messages Interface Table Concurrent Program Workflow Process Web Service Enterprise JavaBean
50
EBS Integration Repository Browsing
By Interface types By Business Entity By Product By Product Family By Standard
51
EBS Integration Repository Searching
Simple Search Name Product Product Family Internal Name Interface Type Advanced Search Business Entity Scope Status Miscellaneous Standard Standard Spec Simple Search By Name – Depends on the Interface Type Product – Official List of Products (Search result may include Interfaces from other products that an owner of the selected product can use Product Family – Official list of Product Families Internal Name – Package name Interface Types – Advanced Search Business Entity Scope --- Public Internal Private Status (Lifecycle) – Planned, Active, Deprecated, Obsolete
52
EBS Integration Repository What do I get…..
More info, faster, better Comprehensive and complete information Rapid Discovery of information Implementation timeline reduced (because you got the right info in the first place) Integration more efficient - found the right stuff with little effort
53
Integration Gateway Components
54
The Customer Data Hub A single source of truth about your customers even if you aren’t using any of the E-Business Suite Leverages E-Business Suite data model and data quality services The Customer Data Hub Siebel PeopleSoft Legacy Broadvision
55
Q & Q U E S T I O N S A N S W E R S A
56
Thank You.
Similar presentations
© 2025 SlidePlayer.com Inc.
All rights reserved.