Identity Manager


OIM 11g r2 ps2 - how to use tcDataSet from remote client without logging in as XELSYSADM


Hi All, I have a client application which uses the oimclient.jar to interface with OIM 11g r2 ps2 system. When i execute the tcDataSet as any other user than XELSYSADM then i get tcDataAccessException. Please note my client application is also hosted in the same server as the OIM application but in different weblogic domain. Is there any way where in I can decrypt the XELSYSADM password using OIMClient API classes (As i said since that my client and OIM runs in the same server, I have access to OIM domain/ keys/cert)orIs there any way to execute the tcDataSet as a non admin user? Please let me know.
If it's running on the same application server you can store the credentials in the enterprise manager in the same way it's used for the SOA integration and the CSF credential store. Then you can grab the xelsysadm or other credentials you've stored there. -Kevin
Thanks Kevin for your response. Both OIM and the client ADF application that interfaces with OIM are hosted in the same Linux server but in different Weblogic domains.  Currently i am also maintaining in the XELSYSADM password in the enterprise manager where the client ADF application is hosted. I thought of checking if there is any other approach in reading the XELSYSADM password directly from OIM domain rather than maintaining in the client application EM - Credential store. Please let me know.
Do you have application protected by OAM? if yes, you can use below example:Oracle Fusion Middleware Security: Authenticating OIM APIs without end user's password ~J
Hi Abhishek, Thanks for your response. We are using OAM for both OIM and for the client application that interfaces with OIM. So when a user logins to the client application and places the request to OIM via API then the SSO works since I have established trust between the OIM and client application weblogic domains. But when logged in as non administrator (normal user) to OIM via API, you wont be able to use tcDataSet to execute the query as it throws tcData Access Exception. In OIM 11gR2PS2 tcDataSet query execution works fine only with administrator login like XELSYSADM. Also I do have a requirement where in I need to fetch second level manager of the logged in user via API. Only accessing logged in user manager details is allowed and to access second level manager detail as well you would need XELSYSADM login from API. So for the above reasons I need to maintain the XELSYSADM password in the client application. I am checking on which would be the ideal way to maintain the password. 
Then Credential Store Framework (CSF) will be one way. You can use some SYSTEM service ID created in OIM ( User similar to XESLSYADM) with Infinite password expiry ( 10 years). Oracle Stack: Credential Store Framework (CSF) API Example  ~J

Related Links

Is IdXML going away from OAM?
when defining access control, Unable to expand searchbase
How to use assign someone the oracleDASEditUser priv with limitations
AD to OID integration problems bootstraping.
Oracle Access Manager 10.1.4.0.1 WebPass
How to hide fields in User Form in OIM?
OIM_AD
Problem in SPML configuration
Oracle Access Manger
Approval workflow for EBS responsibilties and AD Groups
Disable Resource in OIM
CSV file feed to OIM
Problem in object form prepopulate
Approvals
OID Compatibility with LDAP v3
OIM: How to use permissions

Categories

ORACLE DEV
Text
E-Business Suite Techn...
Database Upgrade
ODBC
Enterprise Manager [AR...
Database Archived Forums
Web Access Client
Migration (Korean)
Business Process Analy...
Ruby/Ruby On Rails
Python
Automatic Storage Mana...
Industrial Manufacturing
Data Sourcing
CRM On Demand Administ...
Technology - LCM: Orac...
QAZone e-TEST suite Fo...
e-Tester
E-mail, Calendar, & Co...
Test Management/Functi...
e-Manager Enterprise
QA/Testing
On Demand: SaaS and Ma...
E-Business Suite Secur...
Tuxedo Systems and App...
Hyperion DRM/Analytica...
WebLogic Server/Java E...
weblogic.developer.int...
weblogic.developer.int...
Tuxedo Newsgroups
AquaLogic Data Service...
Local Portal API (on p...
WebLogic Communication...
liquid.developer.inter...
EJB Development (Chinese)
2007 BEA TMT创新大赛
Primavera EVM User Com...
Siebel BI (Archived)
Remote Method Invocati...
Java Technologies for ...
Solaris 11
Oracle VM Server for S...
Sun Servers Archived F...
AutoVue Enterprise Vis...
データベース
バックアップ・リカバリ
Oracle SOA Suite (Japa...
ADF Mobile Preview
Platform as a Service ...
Oracle Lite (Korean)
Oracle Application Ser...
Mix Feedback
Single Sign On
My Oracle Support Sear...
OTN Systems Hub
Eloqua For Sales
Colorado Eloqua Users
E10 Users
Sweden Eloqua User Group
Ohio & Kentucky Eloqua...
Road to Revenue Tour
Eloqua for Non-Profit
Seattle Eloqua & Marke...
Darios Sonera group
Interact 2014 Presenta...
SPARC Servers
Java SE Early Access
LWUIT
Discussion - Accenture...
JavaOne
Coming Soon - Oracle A...
TROUG Turkish Oracle U...
Solver
Eclipse開発ツール
Duke's Choice Award 2016
See It
Eloqua Basic Learner
Application Developmen...
Database Application D...
Oracle Services for Mi...
BPEL
Products (Korean)
Oracle Business Rules ...
JD Edwards World Gener...
Hyperion System 9 Appl...
Tuxedo
开发工具
weblogic.SIP.server
コミュニティ
Oracle Enterprise Mana...
OTN ArchBeat Podcast
Middleware Track
PLM Community
Forms Gruppe

Resources

Encrypt Message



code
soft
python
ios
c
html
jquery
cloud
mobile