Skip to Main Content
Forums

Java Development Tools

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

ADF integration with AD

managed BEANFeb 26 2016 — edited Feb 29 2016

Hello experts

Very respectfully i come to you wishing some expertise clarifications.

I am researching about users login in ADF application (Jdev 12.1.3, but will update to 12.2.1) with AD credentials.

Standard way to make LDAP calls in ADF

http://java2go.blogspot.pt/2012/05/oracle-adf-with-sso-definitive-guide.html

I´m new at ADF and don´t have a minimal ideia about security logins.

What i need is to know if it´s possible to authenticate in ADF applications with AD username and password.

For what i saw, the answer is yes. But they start mentioning OIM, OID, ADFS, OVD, LDAP, etc..., and this got me confused like: OIM, OID and ADF - Confused!!!

So this got me to the very begining: The only way to achieve the ADF logins with ADUsers is with the above mentioned technologys?

My requirement is to get users login in the ADF application with the same credentials as stored in AD, but without the need to copy them to weblogic (with some provider), nor with the use of any aditional cost expensive tecnhology. Is it possible? How? Any tutorials well detailed would be nice to me.

I also need to be able to manage/create the groups/roles for each user for ADF application wich differ of AD roles/groups.

Hope to made my self clear.

Thanks everyone.

Regards,

Carlos

Comments

3156
Hi, Andras,

Please check Reports security policy in your Portal instance.

(1). Is there a Reports Definition File object created for test.jsp? If yes, did you select server rep_dkipcias as one of the Reports server that test.jsp can run against?

(2). Are the SSO user allowed to run the test.jsp against server dkipcias(check Access tab of report and server component)?

This error usually is caused by a security rule setup in your Portal. Please check.

-Jeff
320094
Hi Jeff,

Q(1): Yes.
(Report Name and Servers tab)
Report Server: REP_DKIPCIAS
Oracle Reports File Name: test.jsp
Execute: as JSP
(Other tabs)
Default values. Unchanged.
Q(2): (Acces Tab of Report Component)
Publish to Portal = checked
Inherit Privileges from Portal DB Provider = checked
(Acces Tab of Report Server Component)
Inherit Privileges from Portal DB Provider = checked

(SSO User)
The user I try to run the report with has the following group assignments:
Privilege Group
PORTAL_ADMINISTRATORS
PORTAL_DEVELOPERS
DBA
PORTLET_PUBLISHERS

Additional Info:

To be more specific: The mentioned security check failure exists outside of Portal as well. Eg. when we try to run the default portal test examples (test.jsp, test.rdf) from the iAS home page Demonstartions tab.

Thank You in advance,
Andras
3156
Hi, Andras,

(1). In the Reports Server component, is check box "Run Only Registered Report Definition Files" checked? If yes, try uncheck it.

(2). In the Access tab of Reports server & report component, uncheck the "Inherit Privileges from Portal DB Provider" checkbox. This should give you a list of users/groups who has at least Execute privilege on the report. Please make sure SSO user(or one of its group) is among the list.

BTW, it does not matter whether you run the report from inside Portal, or directly from browser location window. The same security policy will be applied.

Regards,

-Jeff
1 - 3
Locked Post
New comments cannot be posted to this locked post.

Post Details

Locked on Mar 28 2016
Added on Feb 26 2016
#adf, #application-development-in-java, #jdeveloper-and-adf, #oim, #sso
10 comments
2,070 views