| Revision as of 11:26, 18 February 2012 editMark R. Bannister (talk | contribs)8 edits →Components: Sun's product was "Sun DSEE" not "Sun LDAP"← Previous edit | Latest revision as of 15:32, 11 December 2023 edit undoLoverOfHiking (talk | contribs)52 editsNo edit summaryTag: Visual edit | ||
| (39 intermediate revisions by 29 users not shown) | |||
| Line 1: | Line 1: | ||
| '''Oracle Identity Management''' |
'''Oracle Identity Management''', a ] marketed by ], provides ] (IAM) technologies. | ||
| The name of the software suite |
The name of the software suite closely resembles the name of one of its components, ].<ref>{{Cite web |date=2020-08-21 |title=Identity and Access Management: Oracle's OIM Configuration |url=https://restless.co.uk/course/identity-and-access-management-oracles-oim-conf-udemy-119946/ |access-date=2023-12-11 |website=Rest Less |language=en-GB}}</ref> | ||
| == Components == | == Components == | ||
| Line 13: | Line 13: | ||
| | ] (OID) | | ] (OID) | ||
| | OIM | | OIM | ||
| | An ] directory server |
| An ] directory server that stores its data in an Oracle database. | ||
| | | | | ||
| | Following its acquisition of ], ] maintains both Oracle Internet Directory and the Sun Directory Server Enterprise Edition (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP directory server products. | | Following its acquisition of ], ] maintains both Oracle Internet Directory and the Sun Directory Server Enterprise Edition (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP directory server products. | ||
| Line 19: | Line 19: | ||
| | Directory Integration Platform (DIP) | | Directory Integration Platform (DIP) | ||
| | OIM/OID | | OIM/OID | ||
| | A directory synchronization and provisioning framework included in OID. Supports synchronization of data between |
| A directory synchronization and provisioning framework included in OID. Supports synchronization of data between heterogeneous systems, include multiple vendor LDAPs, databases, flat files and ] HRMS. | ||
| | | | | ||
| | | | | ||
| |- | |- | ||
| | Oracle Authentication Services for Operating Systems ( |
| Oracle Authentication Services for Operating Systems (OAS4OS) | ||
| | OIM/OID | | OIM/OID | ||
| | A product |
| A product that configures Linux/Unix systems to authenticate against OID via PAM/NSS, etc. | ||
| | | | | ||
| | | | | ||
| Line 32: | Line 32: | ||
| | OIM | | OIM | ||
| | An ] directory server. | | An ] directory server. | ||
| | ] | |||
| ⚫ | | Sun |
||
| | |
| Following its acquisition of ], ] maintains both Oracle Internet Directory and the Sun Directory Server Enterprise Edition (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP directory server products. | ||
| ⚫ | |- | ||
| | Oracle Unified Directory (OUD) | |||
| | OIM | |||
| | An ] directory server including proxy. | |||
| ⚫ | | Sun ] | ||
| | Java-based Directory Server including proxy, synchronization and virtualization capabilities. | |||
| |- | |- | ||
| | Oracle Virtual Directory (OVD) | | Oracle Virtual Directory (OVD) | ||
| | OIM | | OIM | ||
| | A directory virtualization solution. | | A directory virtualization solution that combines information from multiple LDAP directories and presents them as a single directory and single schema. | ||
| | OctetString VDE | | OctetString VDE | ||
| | | | | ||
| Line 43: | Line 49: | ||
| | ] (OAM) | | ] (OAM) | ||
| | OIM | | OIM | ||
| | Oracle's strategic solution for access management. | | Oracle's strategic solution for access management and web single sign-on. | ||
| | Oblix CoreID | | Oblix CoreID | ||
| | The 10g version was written in C; in the 11g version, the server itself has been |
| The 10g version was written in C; in the 11g version, the server itself has been rewritten in Java, although some of the integration components (web gates) are still written in C. The Sun Secure Token Service was added to the Oracle Access Management Suite following the Sun acquisition. | ||
| |- | |- | ||
| | Oracle ] |
| Oracle ] | ||
| | OIM | | OIM | ||
| | Access management. | | Access management. | ||
| | Sun ] | | Sun ] Enterprise | ||
| | Oracle Access Manager (OAM) is the strategic product |
| Oracle Access Manager (OAM) is the strategic product. | ||
| |- | |- | ||
| | Oracle Single Sign-On (OSSO) | | Oracle Single Sign-On (OSSO) | ||
| Line 61: | Line 67: | ||
| | Oracle Identity Federation (OIF) | | Oracle Identity Federation (OIF) | ||
| | OIM | | OIM | ||
| | An identity federation solution, supporting ] and ] protocols. | | An identity federation solution, supporting ] and ] protocols for federated single sign-on. | ||
| | | | | ||
| | Formerly an ] product. | | Formerly an ] product, combined with Sun Fedlet following the Sun acquisition. | ||
| |- | |- | ||
| | ] (OAAM) | | ] (OAAM) | ||
| Line 79: | Line 85: | ||
| | Oracle Identity Analytics (OIA) | | Oracle Identity Analytics (OIA) | ||
| | OIM | | OIM | ||
| | Provides role mining, compliance attestation/recertification, and dashboards and reports for identity analytics. | |||
| | Provides role management. | |||
| | ] | | ] | ||
| | Replaces the former Oracle Role Manager (ORM) component. | | Replaces the former Oracle Role Manager (ORM) component. | ||
| Line 86: | Line 92: | ||
| | OIM | | OIM | ||
| | Provides provisioning, reconciliation, request-based provisioning, self-service, and integration with heterogenous identity systems through connectors (LDAP, operating systems, mainframe/midrange, ERP packages, email/collaboration suites, databases, etc.). | | Provides provisioning, reconciliation, request-based provisioning, self-service, and integration with heterogenous identity systems through connectors (LDAP, operating systems, mainframe/midrange, ERP packages, email/collaboration suites, databases, etc.). | ||
| | Thor Xellerate | |||
| | | |||
| | From the ] (Thortech) acquisition (2005).<ref> | | From the ] (Thortech) acquisition (2005).<ref> | ||
| {{cite news | {{cite news | ||
| Line 93: | Line 99: | ||
| | last = McAllister | | last = McAllister | ||
| | authorlink = | | authorlink = | ||
| | url = |
| url = https://books.google.com/books?id=xzcEAAAAMBAJ | ||
| | newspaper = InfoWorld Vol. 27, No. 48 | | newspaper = InfoWorld Vol. 27, No. 48 | ||
| | publisher = InfoWorld Media Group, Inc | | publisher = InfoWorld Media Group, Inc | ||
| Line 99: | Line 105: | ||
| | date = 2005-11-28 | | date = 2005-11-28 | ||
| | page = 11 | | page = 11 | ||
| ⚫ | | |
||
| | accessdate = 2011-10-12 | | accessdate = 2011-10-12 | ||
| | quote = Oracle acquired two new identity-related companies . With the purchase of Thor Technologies, Oracle gains strong cross-platform user provisioning capabilities. | | quote = Oracle acquired two new identity-related companies . With the purchase of Thor Technologies, Oracle gains strong cross-platform user provisioning capabilities. | ||
| Line 119: | Line 124: | ||
| | Oracle Enterprise Single Sign-On (eSSO) | | Oracle Enterprise Single Sign-On (eSSO) | ||
| | OIM | | OIM | ||
| | This provides desktop-based ] (SSO), including support for |
| This provides desktop-based ] (SSO), including support for retrofitting single sign-on into legacy fat client applications via automated login form fill-in, and doing the same for web and 3270-based applications. | ||
| | | | | ||
| | This was originally OEM-ed from Passlogix, although Passlogix |
| This was originally OEM-ed from Passlogix, although Passlogix has now been acquired by Oracle.<ref>{{cite web|title=Oracle and Passlogix|url=http://www.oracle.com/us/corporate/Acquisitions/passlogix/index.html}}</ref> | ||
| |- | |- | ||
| | ] (OES) | | ] (OES) | ||
| Line 134: | Line 139: | ||
| | | | | ||
| | | | | ||
| ⚫ | |- | ||
| ⚫ | | ] | ||
| | N/A | |||
| | A ]. (no longer a product) | |||
| ⚫ | | | ||
| | This is free, open source software written in Java, originally from Sun. This is no longer offered as a product, but continues as an open-source project. | |||
| |- | |- | ||
| | Oracle Applications Access Control Governor (OAACG) | | Oracle Applications Access Control Governor (OAACG) | ||
| | Applications | | Applications | ||
| | Provides ] (SOD) functionalities for ] and ]. The relevant OIM connectors |
| Provides ] (SOD) functionalities for ] and ]. The relevant OIM connectors call out to OAACG to ensure the SOD policies are enforced via the SIL (SOD Invocation Library). SIL also supports interfacing with ] to perform SOD for SAP systems, and is extensible to integrate OIM with arbitrary SOD frameworks. | ||
| | | | | ||
| | | | | ||
| Line 160: | Line 159: | ||
| |} | |} | ||
| == |
== Sun rebranding == | ||
| After Oracle acquired Sun Microsystems, they re-branded a number of products that overlapped in function. (See table below.) The re-branding, and Oracle's commitment to ongoing support and maintenance of these products were revealed by Hasan Rizvi, Senior Vice President of Oracle Fusion Middleware in an Oracle and Sun Identity Management Strategy webcast in 2010.<ref> | |||
| ⚫ | Originally, in the 10g and earlier versions, the Java-based portions of the suite ran mainly on ], although some components (e.g. OIM) supported other J2EE appservers. |
||
| {{cite news | |||
| | title = Oracle and Sun Identity Management Strategy webcast | |||
| | first = Hasan | |||
| | last = Rizvi | |||
| | authorlink = | |||
| | url = http://oracle.com.edgesuite.net/ivt/4000/8104/9236/12628/lobby_external_flash_clean_480x360/default.htm | |||
| | work = oracle.com | |||
| ⚫ | | year = 2010 | ||
| | accessdate = 2012-02-18 | |||
| }} | |||
| </ref> | |||
| {| class="wikitable" | |||
| ⚫ | As of |
||
| !Old Name | |||
| !New Name | |||
| ⚫ | |- | ||
| | Sun Directory Server Enterprise Edition | |||
| | Oracle Directory Server Enterprise Edition | |||
| ⚫ | |- | ||
| ⚫ | | Sun OpenDS | ||
| | Oracle Unified Directory | |||
| |- | |||
| | Sun Role Manager | |||
| | Oracle Identity Analytics | |||
| |- | |||
| | Sun Identity Manager | |||
| | Oracle Waveset | |||
| |- | |||
| | Sun OpenSSO Enterprise | |||
| | Oracle OpenSSO | |||
| |} | |||
| == Other information {{anchor|Oblix}}== | |||
| ⚫ | ==References== | ||
| ⚫ | Originally, in the 10g and earlier versions, the Java-based portions of the suite ran mainly on ], although some components (e.g. OIM) supported other J2EE appservers. For the 11g version, Oracle Corporation ported the OC4J-based components to ]. | ||
| ⚫ | {{reflist}} | ||
| ⚫ | {{As of | 2008 | November}} the software was undergoing ] evaluation process.<ref>{{cite news |title=Oracle Identity Management products earn Common Criteria Security Evaluation |url=http://www.net-security.org/secworld.php?id=6778 |work=net-security.org |date=2008-11-26 |accessdate=9 December 2008 }} | ||
| </ref> | |||
| In March 2005 Oracle acquired Oblix and incorporated their web access control software into Oracle Identity Management.<ref name="KingOfKings">{{cite web|url=http://www.oracle.com/us/corporate/press/016784_EN|website=Oracle|title=Oracle Acquires Oblix, Expanding Oracle's Integrated Security And Identity Management Capability|date=28 March 2005|access-date=24 October 2018|url-status=live|archive-url=https://web.archive.org/web/20180224165946/http://www.oracle.com/us/corporate/press/016784_EN|archive-date=24 February 2018|df=dmy-all}}</ref> | |||
| ==See also== | ==See also== | ||
| * ] | |||
| * ] | |||
| * ] | |||
| * ] | * ] | ||
| ⚫ | ==References== | ||
| ⚫ | {{reflist}} | ||
| ==External links== | ==External links== | ||
| * | * | ||
| * | |||
| ] | ] | ||
| {{compu-soft-stub}} | |||
| {{security-software-stub}} | |||
Latest revision as of 15:32, 11 December 2023
Oracle Identity Management, a software suite marketed by Oracle Corporation, provides identity and access management (IAM) technologies.
The name of the software suite closely resembles the name of one of its components, Oracle Identity Manager.
Components
| Product | Software Stack | Description | Original name | Notes |
|---|---|---|---|---|
| Oracle Internet Directory (OID) | OIM | An LDAP directory server that stores its data in an Oracle database. | Following its acquisition of Sun Microsystems, Oracle Corporation maintains both Oracle Internet Directory and the Sun Directory Server Enterprise Edition (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP directory server products. | |
| Directory Integration Platform (DIP) | OIM/OID | A directory synchronization and provisioning framework included in OID. Supports synchronization of data between heterogeneous systems, include multiple vendor LDAPs, databases, flat files and Oracle eBusiness Suite HRMS. | ||
| Oracle Authentication Services for Operating Systems (OAS4OS) | OIM/OID | A product that configures Linux/Unix systems to authenticate against OID via PAM/NSS, etc. | ||
| Oracle Directory Server Enterprise Edition | OIM | An LDAP directory server. | Sun DSEE | Following its acquisition of Sun Microsystems, Oracle Corporation maintains both Oracle Internet Directory and the Sun Directory Server Enterprise Edition (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP directory server products. |
| Oracle Unified Directory (OUD) | OIM | An LDAP directory server including proxy. | Sun OpenDS | Java-based Directory Server including proxy, synchronization and virtualization capabilities. |
| Oracle Virtual Directory (OVD) | OIM | A directory virtualization solution that combines information from multiple LDAP directories and presents them as a single directory and single schema. | OctetString VDE | |
| Oracle Access Manager (OAM) | OIM | Oracle's strategic solution for access management and web single sign-on. | Oblix CoreID | The 10g version was written in C; in the 11g version, the server itself has been rewritten in Java, although some of the integration components (web gates) are still written in C. The Sun Secure Token Service was added to the Oracle Access Management Suite following the Sun acquisition. |
| Oracle OpenSSO | OIM | Access management. | Sun OpenSSO Enterprise | Oracle Access Manager (OAM) is the strategic product. |
| Oracle Single Sign-On (OSSO) | OIM | Oracle's legacy single sign-on (SSO) solution. | As of 11g, the server component of SSO has been discontinued, but the Apache module (mod_osso) is still provided, with OAM 11g able to interoperate with mod_osso. OSSO is focused on integrating with Oracle products, and has more limited support for integrating with products from third-party vendors than OAM. | |
| Oracle Identity Federation (OIF) | OIM | An identity federation solution, supporting SAML and Liberty protocols for federated single sign-on. | Formerly an Oblix product, combined with Sun Fedlet following the Sun acquisition. | |
| Oracle Adaptive Access Manager (OAAM) | OIM | Provides fraud detection and countermeasures including strong authentication. | From the Bharosa acquisition. | |
| Oracle Role Manager (ORM) | N/A | Provides role management. (product discontinued) | From the Bridgestream acquisition. Discontinued in favor of Oracle Identity Analytics (OIA) post-Sun acquisition. | |
| Oracle Identity Analytics (OIA) | OIM | Provides role mining, compliance attestation/recertification, and dashboards and reports for identity analytics. | Sun Java System Role Manager | Replaces the former Oracle Role Manager (ORM) component. |
| Oracle Identity Manager (OIM) | OIM | Provides provisioning, reconciliation, request-based provisioning, self-service, and integration with heterogenous identity systems through connectors (LDAP, operating systems, mainframe/midrange, ERP packages, email/collaboration suites, databases, etc.). | Thor Xellerate | From the Thor Technologies (Thortech) acquisition (2005). The name of this component closely resembles the name of the software suite as a whole. |
| Oracle Waveset | OIM | Similar features as Oracle Identity Manager (OIM). | Sun Identity Manager | Oracle Corporation continues to maintain this product, but with Oracle Identity Manager as the strategic product. Sun Identity Manager was renamed to Oracle Waveset to avoid confusion, which is actually a reversion to the original name from before Sun acquired Waveset Technologies. Waveset also incorporates connectors and adapters for interfacing to heterogenous systems, similar in principle to those included in Oracle Identity Manager. |
| Oracle Certificate Authority (OCA) | N/A | An X.509 certificate authority. (product discontinued) | This component has been discontinued in the 11g release with no replacement. | |
| Oracle Enterprise Single Sign-On (eSSO) | OIM | This provides desktop-based single sign-on (SSO), including support for retrofitting single sign-on into legacy fat client applications via automated login form fill-in, and doing the same for web and 3270-based applications. | This was originally OEM-ed from Passlogix, although Passlogix has now been acquired by Oracle. | |
| Oracle Entitlements Server (OES) | OIM | Provides centralized management of security policies, expressible in XACML. Disparate applications can use OES to provide a common framework for managing access control policies. | Originally a BEA Systems product. | |
| Oracle Security Developer Tools (OSDT) | OIM | A library providing implementations of encryption algorithms, XML security, etc., for use by application programmers. | ||
| Oracle Applications Access Control Governor (OAACG) | Applications | Provides segregation of duties (SOD) functionalities for Oracle eBusiness Suite and PeopleSoft. The relevant OIM connectors call out to OAACG to ensure the SOD policies are enforced via the SIL (SOD Invocation Library). SIL also supports interfacing with SAP Virsa to perform SOD for SAP systems, and is extensible to integrate OIM with arbitrary SOD frameworks. | ||
| Oracle Web Services Manager (OWSM) | SOA Suite | Provides web-services security, including the WS-Security protocol. | This is part of the Oracle SOA Suite rather than the Identity Management stack, but overlaps with a number of areas of identity management. | |
| Oracle Information Rights Management (Oracle IRM) | Content Management | Provides for the securing and tracking of sensitive digital information wherever it is stored and used. | This is part of the Oracle Content Management suite (from the Stellent acquisition) rather than the Identity Management stack, but overlaps with a number of areas of identity management. |
Sun rebranding
After Oracle acquired Sun Microsystems, they re-branded a number of products that overlapped in function. (See table below.) The re-branding, and Oracle's commitment to ongoing support and maintenance of these products were revealed by Hasan Rizvi, Senior Vice President of Oracle Fusion Middleware in an Oracle and Sun Identity Management Strategy webcast in 2010.
| Old Name | New Name |
|---|---|
| Sun Directory Server Enterprise Edition | Oracle Directory Server Enterprise Edition |
| Sun OpenDS | Oracle Unified Directory |
| Sun Role Manager | Oracle Identity Analytics |
| Sun Identity Manager | Oracle Waveset |
| Sun OpenSSO Enterprise | Oracle OpenSSO |
Other information
Originally, in the 10g and earlier versions, the Java-based portions of the suite ran mainly on OC4J, although some components (e.g. OIM) supported other J2EE appservers. For the 11g version, Oracle Corporation ported the OC4J-based components to WebLogic.
As of November 2008 the software was undergoing Common Criteria evaluation process.
In March 2005 Oracle acquired Oblix and incorporated their web access control software into Oracle Identity Management.
See also
- Oracle Directory Server Enterprise Edition
- Oracle Internet Directory
- Oracle Technology Network
- Oracle Fusion Middleware
References
- "Identity and Access Management: Oracle's OIM Configuration". Rest Less. 2020-08-21. Retrieved 2023-12-11.
-
McAllister, Neil (2005-11-28). "CA, Oracle Renew Identity Suites". InfoWorld Vol. 27, No. 48. InfoWorld Media Group, Inc. p. 11. ISSN 0199-6649. Retrieved 2011-10-12.
Oracle acquired two new identity-related companies . With the purchase of Thor Technologies, Oracle gains strong cross-platform user provisioning capabilities.
- "Oracle and Passlogix".
- Rizvi, Hasan (2010). "Oracle and Sun Identity Management Strategy webcast". oracle.com. Retrieved 2012-02-18.
- "Oracle Identity Management products earn Common Criteria Security Evaluation". net-security.org. 2008-11-26. Retrieved 9 December 2008.
- "Oracle Acquires Oblix, Expanding Oracle's Integrated Security And Identity Management Capability". Oracle. 28 March 2005. Archived from the original on 24 February 2018. Retrieved 24 October 2018.
External links
 | This security software article is a stub. You can help Misplaced Pages by expanding it. |