We reviewed several solutions:
Solution 1) Traditional EBS SSO
Requires licensing costs for Oracle Access Manager 11g (OAM) and Oracle Internet Directory 11g (OID) and for a minimum of 4 servers for the production tech stack only.
Users are replicated from Active Directory (AD) to OID to EBS.
Solution 2) Oracle IDCS
Requires licensing costs for IDS Suite which provides SSO features plus a whole lot of other options. See https://docs.oracle.com/en/cloud/paas/identity-cloud/uaids/oracle-identity-cloud-service.html#GUID-BC4769EE-258A-4B53-AED5-6BA9888C8275
Users are replicated from AD to IDCS. You pay and admin two identity management products.
Solution 3) Pythian Solution
Non-Proprietary configuration solution to enable SAML-aware reverse proxy.
Users are not replicated, so you pay for only one identity management product (AD).
We decided to try Pythian's solution because it was easier to administer and less costly. The two-factor authentication will be handled by AD.
We have not yet started implementation, so I cannot comment on the outcome. You may use me as a reference if you want to contact Pythian for more details.
The Oracle Applications & Technology Users Group (OATUG), formerly the Oracle Applications Users Group (OAUG), is the world’s largest education, networking and advocacy forum for Oracle Applications & Technology users.
Copyright © 2021 Oracle Applications & Technology Users Group. | All Rights Reserved. | OATUG PoliciesAll material, files, logos, and trademarks within this site are properties of their respective organizations.