Oracle E-Enterprise Suite (EBS) is in use by hundreds of consumers worldwide immediately. A lot of these prospects have applied single sign-on (SSO) to make sure a clean person expertise. From my expertise with prospects, the commonest use case is to ship a clear sign-on expertise from the person’s desktop by means of to EBS.
The Present Strategy
The normal, Oracle EBS SSO licensed strategy for attaining that is by means of the deployment and integration with Oracle Entry Supervisor and both Oracle Web Listing (OID) or Oracle Unified Listing (OUD), as described by my colleague Steven Chan in this weblog put up. A very good abstract of this strategy is proven within the diagram under.
While this strategy is nicely understood and documented, it introduces a variety of further elements and extra complexity to your EBS deployment. For SSO you could deploy Entry Supervisor, a Listing, a WebGate, an AccessGate, and configure every to combine with EBS. All of those further elements should be fed and watered, patched and up to date. For some prospects, this extra complexity has led to not implementing SSO, ensuing within the person expertise struggling.
A New Strategy
Nevertheless, worry not, there’s now a less complicated possibility out there which can nonetheless allow that streamlined person expertise you require, with out the necessity to deploy and handle all the above elements, and with out the necessity to make important configuration adjustments inside EBS, comparable to configuring the mixing with OID or OUD.
Oracle Id Cloud Service is Oracle’s cloud-based Id platform, which now permits SSO to a typical set up of EBS by means of its EBS Asserter. The determine under exhibits this simplified integration, with current elements proven in gray and the brand new elements proven in crimson.
As a cloud-based Id platform, IDCS requires no set up. As well as all the key non-functional necessities comparable to HA, DR, scaling, backup and restore, patching, and upgrading are all taken care of by Oracle as a part of the cloud service. The one part that requires deployment is the EBS Asserter. This acts because the interface between an id token being issued by IDCS and a person’s session being created in EBS.Determine 2 – A simplified structure with IDCS
- Populate IDCS with customers and teams by organising synchronization between your AD and IDCS (tutorial)
- Configure SSO between your on-premise Id Supplier (usually ADFS) and IDCS (tutorial)
- Deploy the EBS Asserter and configure integration with EBS and IDCS (tutorial)