Installation guide
Integration with Sun ONE Identity Server
130 Sun ONE Identity Server Policy Agents 2.1 • Web Policy Agents Guide • April 2005
Integration with Sun ONE Identity Server
Oracle 9iAS R1 or Oracle Application Server 10g can be integrated with Sun ONE
Identity Server to achieve SSO functionality. In this type of integration, Sun ONE
Identity Server sits in front of Login Server/Oracle SSO Server and provides user
authentication only. Login Server or Oracle SSO Server is still responsible for
managing user accounts, checking account policies, auditing, generating tokens,
and redirecting users to partner applications. Since Login Server/Oracle SSO
Server is still responsible for generating trust tokens, special stepsmust be taken to
ensure that it obtains the user’s identity from Sun ONE Identity Server after
successful authentication.To accomplish this task, Sun ONE Identity Server must
pass the identity of the user to Login Server/Oracle SSO Server via HTTP headers.
Once Login Server/Oracle SSO Server retrieves a user’s identity, it can generate a
trust token for the partner applications and SSO will function normally within the
environment. Since Login Server/Oracle SSO Server handles all of these
responsibilities, the partner applications, which interact solely with Login
Server/Oracle SSO Server, are completely unaware of the integration with Sun
ONE Identity Server.
Software Requirements
This SSO solution requires the following software to be installed.
For Oracle9iAS R1
Table 5-1 Software Requirements for the SSO Solution for Oracle9iAS R1
Software Supported Platforms
Sun ONE Identity Server,
version 6.1
Solaris 8 and 9
Web Policy Agent for
Oracle9iAS R1 Apache
1.3.29
Solaris 8 and 9
Oracle9iAS R1 Solaris 8 and 9