Table of Contents
- Title and Copyright Information
- Documentation Accessibility
- Documentation Feedback
- 1 About EPM System Security
-
2
SSL-Enabling EPM System Components
- Assumptions
- Information Sources
- Location References
- About SSL-Enabling EPM System Products
- Supported SSL Scenarios
- Required Certificates
- Terminating SSL at the SSL Offloader
-
Full SSL Deployment of EPM System
- Deployment Architecture
- Assumptions
-
Configuring EPM System for Full SSL
- Reconfiguring EPM System Common Settings
- Optional: Installing Root CA Certificate for WebLogic Server
- Installing Certificate on the WebLogic Server
- Configuring WebLogic Server
- Enabling HFM Server Connection with an SSL-Enabled Oracle Database
- Oracle HTTP Server Procedures
- Configuring EPM System Web Components Deployed on WebLogic Server
- Update the Domain Configuration
- Restarting Servers and EPM System
- Testing the Deployment
- Configuring SSL-Enabled External User Directories
- Terminating SSL at the Web Server
- SSL for Essbase 11.1.2.4
- SSL for Essbase 21c
-
3
Enabling SSO with Security Agents
- Supported SSO Methods
- Enabling OAM SSO for Essbase 21c embedded with EPM 11.2.15 and above
- Single Sign-on from Oracle Access Manager
- OracleAS Single Sign-on
- Protecting EPM System Products for SSO
- Header-based SSO with Identity Management Products
- Configuring EPM System for Header-based SSO with Oracle Identity Cloud Services
- SiteMinder SSO
- Kerberos Single Sign-on
- Configuring EPM System for SSO
- Single Sign-on Options for Smart View
-
4
Configuring User Directories
- User Directories and EPM System Security
- Operations Related to User Directory Configuration
- Oracle Identity Manager and EPM System
- Active Directory Information
- Configuring OID, Active Directory, and Other LDAP-based User Directories
- Configuring Relational Databases as User Directories
- Testing User Directory Connections
- Editing User Directory Settings
- Deleting User Directory Configurations
- Managing the User Directory Search Order
- Setting Security Options
- Regenerating Encryption Keys
- Using Special Characters
- 5 Using a Custom Authentication Module
-
6
Guidelines for Securing EPM System
- Implementing SSL
- Changing the Admin Password
- Regenerating Encryption Keys
- Changing Database Passwords
- Securing Cookies
- Reducing SSO Token Timeout
- Reviewing Security Reports
- Customizing Authentication System for Strong Authentication
- Disabling EPM Workspace Debugging Utilities
- Changing Default Web Server Error Pages
- Support for Third-Party Software
- A Custom Authentication Sample Code
- B Implementing a Custom Login Class
- C Migrating Users and Groups Across User Directories