Oracle Identity Management
Encyclopedia
Oracle Identity Management (OIM) is a software suite from Oracle providing identity and access management (IAM) technologies.
The name of the software suite is very similar to the name of one of its components, Oracle Identity Manager (OIM).
As of November 2008, the software is undergoing Common Criteria
evaluation process.
The name of the software suite is very similar to the name of one of its components, Oracle Identity Manager (OIM).
Components
| Product | Software Stack | Description | Original name | Notes |
|---|---|---|---|---|
| Oracle Internet Directory Oracle Internet Directory Oracle Internet Directory is a directory service produced by Oracle Corporation, which functions compatible with LDAP version 3.- Functionality :OID makes the following features available from within an Oracle database environment:... (OID) |
OIM | An LDAP directory server which stores its data in an Oracle database. | Following its acquisition of Sun Microsystems Sun Microsystems Sun Microsystems, Inc. was a company that sold :computers, computer components, :computer software, and :information technology services. Sun was founded on February 24, 1982... , Oracle Corporation Oracle Corporation Oracle Corporation is an American multinational computer technology corporation that specializes in developing and marketing hardware systems and enterprise software products – particularly database management systems... maintains both Oracle Internet Directory and the Sun LDAP (renamed to Oracle Directory Server Enterprise Edition) as strategic LDAP products. |
|
| Directory Integration Platform (DIP) | OIM/OID | A directory synchronization and provisioning framework included in OID. Supports synchronization of data between heterogenous systems, include multiple vendor LDAPs, databases, flat files and Oracle eBusiness Suite Oracle eBusiness Suite Within the overall rubric of Oracle Applications - Apps,Oracle Corporation's E-Business Suite consists of a collection of enterprise resource planning , customer relationship management , and supply-chain management computer applications either developed by or acquired by Oracle... HRMS. |
||
| Oracle Authentication Services for Operating Systems (OASOS) | OIM/OID | A product which configures Linux/Unix systems to authenticate against OID via PAM/NSS, etc. | ||
| Oracle Directory Server Enterprise Edition | OIM | An LDAP directory server. | Sun LDAP | With the Sun acquisition, both Oracle Internet Directory and the Sun LDAP (renamed to Oracle Directory Server Enterprise Edition) are maintained as strategic LDAPs. |
| Oracle Virtual Directory (OVD) | OIM | A directory virtualization solution. | OctetString VDE | |
| Oracle Access Manager (OAM) | OIM | Oracle's strategic solution for access management. | Oblix CoreID | The 10g version was written in C; in the 11g version, the server itself has been rewriten in Java, although some of the integration components (web gates) are still written in C. |
| Oracle OpenSSO OpenSSO OpenSSO was an open source access management and federation server platform.Oracle completed their acquisition of Sun Microsystems in February 2010 and shortly thereafter removed OpenSSO downloads from their website in an unannounced policy change... , and also OpenAM |
OIM | Access management. | Sun OpenSSO OpenSSO OpenSSO was an open source access management and federation server platform.Oracle completed their acquisition of Sun Microsystems in February 2010 and shortly thereafter removed OpenSSO downloads from their website in an unannounced policy change... |
Oracle Access Manager (OAM) is the strategic product, but OpenSSO provides some facilities that OAM/OIF does not offer yet, in particular, Secure Token Service (STS). OpenSSO is developed and supported by ForgeRock under the name of OpenAM. |
| Oracle Single Sign-On (OSSO) | OIM | Oracle's legacy single sign-on Single sign-on Single sign-on is a property of access control of multiple related, but independent software systems. With this property a user logs in once and gains access to all systems without being prompted to log in again at each of them... (SSO) solution. |
As of 11g, the server component of SSO has been discontinued, but the Apache module (mod_osso) is still provided, with OAM 11g able to interoperate with mod_osso. OSSO is focused on integrating with Oracle products, and has more limited support for integrating with products from third-party vendors than OAM. | |
| Oracle Identity Federation (OIF) | OIM | An identity federation solution, supporting SAML SAML Security Assertion Markup Language is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider and a service provider... and Liberty Liberty Alliance The Liberty Alliance was formed in September 2001 by approximately 30 organizations to establish open standards, guidelines and best practices for identity management... protocols. |
Formerly an Oblix Oblix The commercial name Oblix may refer either to a suite of software designed to manage authentication identity or to the former company which developed that software.History:... product. |
|
| Oracle Adaptive Access Manager Oracle Adaptive Access Manager The Oracle Adaptive Access Manager is part of the Oracle Identity Management product suite that provides access control services to web and other online applications.- History :... (OAAM) |
OIM | Provides fraud detection and countermeasures including strong authentication. | From the Bharosa acquisition. | |
| Oracle Role Manager (ORM) | N/A | Provides role management. (product discontinued) | From the Bridgestream acquisition. Discontinued in favor of Oracle Identity Analytics (OIA) post-Sun acquisition. | |
| Oracle Identity Analytics (OIA) | OIM | Provides role management. | Sun Java System Role Manager | Replaces the former Oracle Role Manager (ORM) component. |
| Oracle Identity Manager (OIM) | OIM | Provides provisioning, reconciliation, request-based provisioning, self-service, and integration with heterogenous identity systems through connectors (LDAP, operating systems, mainframe/midrange, ERP packages, email/collaboration suites, databases, etc.). | From the Thor Technologies (Thortech) acquisition (2005). The name of this component closely resembles the name of the software suite as a whole. |
|
| Oracle Waveset | OIM | Similar features as Oracle Identity Manager (OIM). | Sun Identity Manager | Oracle Corporation continues to maintain this product, but with Oracle Identity Manager as the strategic product. Sun Identity Manager was renamed to Oracle Waveset to avoid confusion, which is actually a reversion to the original name from before Sun acquired Waveset Technologies. Waveset also incorporates connectors and adapters for interfacing to heterogenous systems, similar in principle to those included in Oracle Identity Manager. |
| Oracle Certificate Authority (OCA) | N/A | An X.509 certificate authority. (product discontinued) | This component has been discontinued in the 11g release with no replacement. | |
| Oracle Enterprise Single Sign-On (eSSO) | OIM | This provides desktop-based single sign-on Single sign-on Single sign-on is a property of access control of multiple related, but independent software systems. With this property a user logs in once and gains access to all systems without being prompted to log in again at each of them... (SSO), including support for retrofiting single sign-on into legacy fat client applications via automated login form fill-in, and doing the same for web and 3270-based applications. |
This was originally OEM-ed from Passlogix, although Passlogix is now being acquired by Oracle. | |
| Oracle Entitlements Server (OES) | OIM | Provides centralized management of security policies, expressible in XACML XACML XACML stands for eXtensible Access Control Markup Language. The standard defines a declarative access control policy language implemented in XML and a processing model describing how to evaluate authorization requests according to the rules defined in policies.As a published standard... . Disparate applications can use OES to provide a common framework for managing access control policies. |
Originally a BEA Systems BEA Systems BEA Systems, Inc. specialized in enterprise infrastructure software products known as "middleware", which connect software applications to databases and was acquired by Oracle Corporation on April 29, 2008.- History :... product. |
|
| Oracle Security Developer Tools (OSDT) | OIM | A library providing implementations of encryption algorithms, XML security, etc., for use by application programmers. | ||
| OpenDS OpenDS OpenDS Software is a free, open source directory service, written in Java, and developed as part of the OpenDS project. OpenDS Software implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory... |
N/A | A directory service Directory service A directory service is the software system that stores, organizes and provides access to information in a directory. In software engineering, a directory is a map between names and values. It allows the lookup of values given a name, similar to a dictionary... . (no longer a product) |
This is free, open source software written in Java, originally from Sun. This is no longer offered as a product, but continues as an open-source project. | |
| Oracle Applications Access Control Governor (OAACG) | Applications | Provides segregation of duties (SOD) functionalities for Oracle eBusiness Suite Oracle eBusiness Suite Within the overall rubric of Oracle Applications - Apps,Oracle Corporation's E-Business Suite consists of a collection of enterprise resource planning , customer relationship management , and supply-chain management computer applications either developed by or acquired by Oracle... and Peoplesoft PeopleSoft PeopleSoft, Inc. was a company that provided Human Resource Management Systems , Financial Management Solutions , Supply Chain and customer relationship management software, as well as software solutions for manufacturing, enterprise performance management, and student administration to large... . The relevant OIM connectors will call out to OAACG to ensure the SOD policies are enforced via the SIL (SOD Invocation Library). SIL also supports interfacing with SAP Virsa to perform SOD for SAP systems, and is extensible to integrate OIM with arbitrary SOD frameworks. |
||
| Oracle Web Services Manager (OWSM) | SOA Suite | Provides web-services security, including the WS-Security WS-Security WS-Security is a flexible and feature-rich extension to SOAP to apply security to web services. It is a member of the WS-* family of web service specifications and was published by OASIS.... protocol. |
This is part of the Oracle SOA Suite Oracle SOA Suite In computing, Oracle SOA Suite is a part of the Oracle Fusion Middleware family of software products.-Features:Oracle SOA Suite is a set of service infrastructure components for building, deploying, and managing SOAs. Oracle SOA Suite enables system developers to set up and manage services and to... rather than the Identity Management stack, but overlaps with a number of areas of identity management. |
|
| Oracle Information Rights Management (Oracle IRM) | Content Management | Provides for the securing and tracking of sensitive digital information wherever it is stored and used. | This is part of the Oracle Content Management suite (from the Stellent acquisition) rather than the Identity Management stack, but overlaps with a number of areas of identity management. |
Other information
Originally, in the 10g and earlier versions, the Java-based poritions of the suite ran mainly on OC4J, although some components (e.g. OIM) supported other J2EE appservers. In the 11g version, the OC4J-based components were ported to WebLogic.As of November 2008, the software is undergoing Common Criteria
Common Criteria
The Common Criteria for Information Technology Security Evaluation is an international standard for computer security certification...
evaluation process.