3-10 Oracle Fusion Middleware Concepts Guide

3.3 Oracle Identity Management

Oracle Identity Management is an enterprise identity management system that automatically manages users access privileges within the resources of an enterprise. The architecture of Oracle Identity Management works with the most demanding business requirements without requiring changes to existing infrastructure, policies, or procedures. Oracle Identity Management is designed to manage user access privileges across all the resources in an enterprise. Oracle Identity Management manages throughout the entire identity management lifecycle; from initial creation of access privileges to dynamically adapting to changes in enterprise business requirements. Oracle Identity Management products provide for a shared infrastructure for all Oracle applications. It also provides services and interfaces that facilitate third-party enterprise application development. These interfaces are useful for application developers who must incorporate identity management into their applications. Oracle Identity Management includes the following components: ■ Oracle Identity Manager ■ Oracle Internet Directory ■ Oracle Directory Integration Platform ■ Oracle Identity Federation ■ Oracle Virtual Directory ■ Oracle Platform Security Services ■ Oracle Role Manager ■ Oracle Entitlements Server ■ Oracle Directory Services Manager ■ Oracle Access Manager ■ Oracle Adaptive Access Manager ■ Oracle Identity Navigator ■ Oracle Authorization Policy Manager

3.3.1 Oracle Identity Manager

Oracle Identity Manager is a user provisioning and administration solution that automates the process of adding, updating, and deleting user accounts from applications and directories; and improves regulatory compliance by providing granular reports that identify which users have access to which applications. Oracle Identity Manager is available as a stand-alone product or as part of Oracles Identity and Access Management Suite. Automating user identity provisioning can reduce Information Technology IT administration costs and improve security. Provisioning also plays an important role in regulatory compliance. Key features of Oracle Identity Manager include password Note: Oracle Application Server Single Sign-On is now part of Oracle Access Manager. For more information see the Oracle Fusion Middleware Installation Guide for Oracle Identity Management. Oracle Fusion Middleware Components 3-11 management, workflow and policy management, identity reconciliation, reporting and auditing, and extensibility through adapters. See the following for more information about Oracle Identity Manager: ■ Application Management in the Oracle Fusion Middleware Administrators Guide for Oracle Identity Manager ■ Concepts in the Oracle Fusion Middleware Developers Guide for Oracle Identity Manager ■ Feature Overview in the Oracle Fusion Middleware Users Guide for Oracle Identity Manager

3.3.2 Oracle Internet Directory

Oracle Internet Directory is a Lightweight Directory Access Protocol LDAP v3 directory that takes advantage of the scalability, high availability, and security features of the Oracle Database. Oracle Internet Directory serves as the central user repository for Oracle Identity Management, a component of Oracle Fusion Middleware, simplifying user administration in the Oracle environment and providing a standards-based general purpose directory for the heterogeneous enterprise. Oracle Internet Directory has a multi threaded, multi-instance process model with Oracle Database as the directory data store. This unique architecture translates to tremendous flexibility, enabling several high availability configurations, and opens up scalability possibilities on all kinds of hardware configuration. For security, Oracle Internet Directory supports Oracle Database Vault and Oracle Transparent Data Encryption, as well as multiple levels of access control and sophisticated password policy management capabilities. See the following for more information about Oracle Internet Directory: ■ Introduction to Directory Services in the Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ■ Understanding Oracle Internet Directory Concepts and Architecture in the Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ■ Understanding Process Control of Oracle Internet Directory Components in the Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ■ Understanding Oracle Internet Directory Organization in the Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory ■ Understanding Oracle Internet Directory Replication in the Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory

3.3.3 Oracle Directory Integration Platform