Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Any experience/blogs/articles about 2-factor/multi-factor authentication with OBIEE?

Received Response
12
Views
7
Comments
3240307
3240307 Rank 4 - Community Specialist
edited Aug 13, 2024 6:00PM in Oracle Analytics Cloud and Server

Hello,

We would like to implement 2-factor or multi-factor authentication with OBIEE 12.2.1.1. Any ideas about how to implement it natively/without use of external tools like OAM would be helpful.

Please advise.

Answers

  • Sherry George
    Sherry George Rank 7 - Analytics Coach

    Not done it, but a quick google search shows Oracle access manager supports multi-factor authentication. And you can setup single sign-on for OBIEE with OAM.

    https://docs.oracle.com/middleware/1221/biee/BIESC/sso.htm#BIESC368

  • 3240307
    3240307 Rank 4 - Community Specialist

    Thanks for the google results Sherry. I've updated my request, need a native/creative solution (because I know weblo supports 2FA and MFA).

  • handat
    handat Rank 5 - Community Champion

    Just configure two Authentication providers as REQUIRED. You will then need to authenticate successfully to both in order to login. That's really it. If you want to get fancier, you can write your own custom Authentication provider for example to ask for an OTP, or buy some fancy product that allows you to use a hardware token or biometrics and plugin in your authentication provider if they provide one or use their API and write a custom authenticator for it. Here's an article that will help you write your custom auth provider if required: http://www.oracle.com/technetwork/articles/idm/default-2030737.html

  • 3240307
    3240307 Rank 4 - Community Specialist

    How would 2 authentication providers work for 2FA exactly? If I configured 2 providers, both SUFFICIENT, wouldn't 1 of them just let you in if you existed there?

  • 3240307
    3240307 Rank 4 - Community Specialist

    Sorry, didn't read your post carefully. I will try this and report results.

  • Sherry George
    Sherry George Rank 7 - Analytics Coach

    Pardon my ignorance, but how does setting up two authentication providers constitute a multi/two factor authentication? I believe you will still be using the same username/password to perform authentication.

  • 3240307
    3240307 Rank 4 - Community Specialist

    I was just working on typing the same thing out, you beat me to it.