close

   

   

E-Business R12 LDAP SSO

Integration customization :Multi-Domain

   

(OAF Version 0.97)

 有購買需求請連繫我!

(If you want to buy this product , please contact me.)

 

   

Nolem_lin@hotmail.com

   

   

   

   

   

   

   

   

   

   

   

目前授權AD USER (current authorization AD User)

   

 

ERP 建立DOMAIN RECORD LOOKUP CODE and VALUE (create ebs lookup with name "XXDOMAIN", and create domain information record)

LOOKUP CODE= XXDOMAIN

VALUE

CODE : (網域全名) DOMAIN FULL NAME

MEANING: (LDAP主機IP) LDAP HOST IP

DESCRIPTION: (LDAP主機搜尋BASE) LDAP SEARCH BASE

TAG: (LDAP服務連接埠)LDAP SERVICE PORT

 

ERP 建立Ad user / EBS user 對照表 (Create AD / EBS user linkage)

select lu.* , u.user_name

from XXLDAP_EBS_USER    lu ,fnd_user u

where lu.user_id=u.user_id

   

USER_ID (EBS USER_ID)

SAMACCOUNTNAME (LDAP ACCOUNT_NAME)

DOMAIN_NAME (LDAP FULL DOMAIN NAME)

ACTIVATE (enable ldap ebs link)

USER_NAME (EBS USER_NAME)

 

   

   

ERP LDAP 整合設定PROFILE (EBS customization profile)

XXLDAP_AUTHORIZATION :是否啟動LDAP整合驗證 (enabled ldap user authorization)

XXLDAP_AUTO_DOMAIN : 自動決定DOMAIN (auto search domain by username)

XXLDAP_ORG : 預設網域( user default Domain)

注意: XXLDAP_AUTO_DOMAIN 只支援AD帳號在多網域必須是唯一的

Notification: (XXLDAP_AUTO_DOMAIN just support unique ad account name in multi-domain (XXLDAP_EBS_USE)

   

   

   

啟用ldap (AD) 驗證 (enabled ldap user authorization and enabled auto domain profile)

 

啟用ldap (AD) 驗證 ,未啟用自動Domain (enabled ldap user authorization and disabled auto domain profile)

需挑選登入網域, 預設為XXLDAP_ORG網域 (Default domain with Profile XXLDAP_ORG) .

 

   

 ad驗證失敗(ldap user authorization failure)

 

   

Ldap 驗正通過但無ERP帳號 (ldap user authorization passed , but ebs linkage is not activate)

 

 

   

   

驗證成功自動轉EBS 帳號登入 (ldap user authorization and transfer to ebs user passed , automatic login with ebs user account)

   

登入後login 對照表 (audit ebs login with ldap session sql)

   

串接FND_LOGINS (link FND_LOGINS table with ldap sso login)

select sso.login_id, sso.user_name ,sso.samaccountname,

sso.userprincipalname,sso.description,sso.name,

sso.displayname,sso.ipaddress,sso.distinguishedname,

lo.start_time, lo.pid,lo.spid,lo.session_number,

lo.serial#,lo.process_spid

from XXLDAP_SSO_LOGIN sso ,FND_LOGINS lo

where sso.LOGIN_ID=lo.LOGIN_ID

   

   

   

   

關閉LDAP驗證 (disabled ldap authorization)

   

   

關閉後驗正提示 (notification with ebs authorization)

   

   

EBS標準登入後login 紀錄 (audit ebs login without ldap session sql)

select sso.login_id, sso.user_name ,sso.samaccountname,

sso.userprincipalname,sso.description,sso.name,

sso.displayname,sso.ipaddress,sso.distinguishedname,

lo.start_time, lo.pid,lo.spid,lo.session_number,

lo.serial#,lo.process_spid

from XXLDAP_SSO_LOGIN sso ,FND_LOGINS lo

where sso.LOGIN_ID=lo.LOGIN_ID

order by lo.start_time desc

   

  

arrow
arrow
    文章標籤
    EBS SSO AD LDAP E-Business Integration
    全站熱搜
    創作者介紹
    創作者 Nolem 的頭像
    Nolem

    Nolem的部落格

    Nolem 發表在 痞客邦 留言(0) 人氣()

    E-mail轉寄