In this video, we are going to look at Oracle Identity Federation (OIF) which is a part of Oracle Identity and Access Management (IDAM).
OIF is an authentication process across domains. For example, you work in a company and that company has an application hosted somewhere else like salesforce (a cloud application) or that company has tied up a travel agency site or another company that provides travel in terms of booking the flights or hotels so SSO between that service provider and identity provider is a federation part. So this authentication across two different companies or enterprises or domains is called as identity federation. To know in detail about OIF, go through the video below.
Federation has some standards and below are different Protocols supported by Federation.
1. SAML V1 and V2: SAML (Security Assertion Markup Language)
In identity federation, there are always two parties:
1. Identity Provider: identity provider is the enterprise or the domain or the company where users reside.
2. Service Provider: Service provider is from the domain or organization that provides that Service.
Before the federation can happen between these two parties, these two parties must trust each other and that is a part of the federation configuration. There is a metadata which will have the details about service provider or another metadata for the identity provider and they are going to exchange the metadata with each other so that they can trust each other.
So now whats going to happen:
- When the user tries to access service provider, the Service provider will check who is the identity provider for this application.
- Service provider will redirect user to the identity provider and on the identity provider side, user will log in and user has already an account in Identity provider side so user will type their username and password and on typing the username and password, the identity provider will create a SAML token (if you are using SAML Protocol).
- So a token will be created by the Identity provider and will be sent to the service provider. Because there is already a trust between Service provider and identity provider, Service provider will check if this token is issued by the identity provider whom I already trust and then service provider will grant access to that application or it can retrieve identity from that SAML Token.
So this is all in nutshell about Oracle Identity Federation. Please go through the video to know in detail.
We cover this in one of the module of our Oracle Access Manager Training. We cover a lot of other topics like OAM, FMW and WebLogic concepts, OID, OHS, OAM integration with other oracle products, Cloning, HA, DR and much more. Please check our Step by Step Activity Guide You Must Perform to become Expert in IDM to see what all things we cover in this training.
Did You Find this Video useful?
Leave a Comment.
- Overview of Oracle Identity & Access Management Products (OAM, OIM, OID, OUD, OES, OIF….) Click Here
- Documentation & Download of Oracle IDM 12cPS3 here
- IDM 12cPS3 installation and Configuration here.
- Download IDM Software and create Schema click here
- Console in OAM: OAM Console, WebLogic & EM
- OID Consoles Overview: ODSM, Weblogic & EM
- Paid Program for IDM (OAM/OID): Architecture, Install, Configure, Integrate, HA, DR, Troubleshooting etc
Next Task For You
If you are looking for commonly asked interview questions for Oracle Access Manager then just click here and get that in your inbox.
If you like this and would like to learn Oracle Identity & Access Management then get a FREE Mini-Course on IDM/OAM/OID by just one click here.