How to Simplify SSO to Oracle eBusiness Suite in Just 3 Steps

Oracle E-Enterprise Suite (EBS) is in use by hundreds of consumers worldwide immediately. A lot of these prospects have applied single sign-on (SSO) to make sure a clean person expertise. From my expertise with prospects, the commonest use case is to ship a clear sign-on expertise from the person’s desktop by means of to EBS.

The Present Strategy

The normal, Oracle EBS SSO licensed strategy for attaining that is by means of the deployment and integration with Oracle Entry Supervisor and both Oracle Web Listing (OID) or Oracle Unified Listing (OUD), as described by my colleague Steven Chan in this weblog put up. A very good abstract of this strategy is proven within the diagram under.

While this strategy is nicely understood and documented, it introduces a variety of further elements and extra complexity to your EBS deployment. For SSO you could deploy Entry Supervisor, a Listing, a WebGate, an AccessGate, and configure every to combine with EBS. All of those further elements should be fed and watered, patched and up to date. For some prospects, this extra complexity has led to not implementing SSO, ensuing within the person expertise struggling.

A New Strategy

Nevertheless, worry not, there’s now a less complicated possibility out there which can nonetheless allow that streamlined person expertise you require, with out the necessity to deploy and handle all the above elements, and with out the necessity to make important configuration adjustments inside EBS, comparable to configuring the mixing with OID or OUD.

Oracle Id Cloud Service is Oracle’s cloud-based Id platform, which now permits SSO to a typical set up of EBS by means of its EBS Asserter. The determine under exhibits this simplified integration, with current elements proven in gray and the brand new elements proven in crimson.

As a cloud-based Id platform, IDCS requires no set up. As well as all the key non-functional necessities comparable to HA, DR, scaling, backup and restore, patching, and upgrading are all taken care of by Oracle as a part of the cloud service. The one part that requires deployment is the EBS Asserter. This acts because the interface between an id token being issued by IDCS and a person’s session being created in EBS.Determine 2 – A simplified structure with IDCS

So coming again to the title of this weblog put up, how one can obtain this simplification in three steps? Straightforward…..
  1. Populate IDCS with customers and teams by organising synchronization between your AD and IDCS (tutorial)
  2. Configure SSO between your on-premise Id Supplier (usually ADFS) and IDCS (tutorial)
  3. Deploy the EBS Asserter and configure integration with EBS and IDCS (tutorial)
As you’ll be able to see, this strategy is significantly less complicated than the earlier strategy. It additionally implies that after getting this integration in place, it’s straightforward to increase using IDCS to different web-based functions and cloud-based functions. You may also make the most of a few of the superior capabilities of IDCS comparable to multi-factor authentication so as to add an additional stage of safety over the person authentication course of. I’ve coated a few of this in a earlier weblog put up (Three Causes Why Id Administration Ought to Be On Your Radar For SaaS).
In abstract, whether or not you’ve gotten an current EBS deployment already built-in with Entry Supervisor immediately and need to simplify your footprint, or whether or not you do not have SSO enabled immediately, utilizing IDCS to ship SSO to EBS can enormously improve the person expertise while on the similar time simplifying your total topology and administration.