Oracle Entitlement Server - Managing Organisations

607 views 20 slides Sep 23, 2013
Slide 1
Slide 1 of 20
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20

About This Presentation

Do you require a way to manage Complex Application Entitlements across a range of applications?

Size: 598.84 KB
Language: en
Added: Sep 23, 2013
Slides: 20 pages

Slide Content

Oracle Entitlement Server Managing Organizations

What are we here for Learn about what OES does How it might be used to solve problems Demo maybe

Security Specialized area Brittle security when built in Difficult to change

The Problems Managing access to resources Governance Auditing Accommodating changes

Identity Management RBAC Authentication and Authorization Latency high response for authorization

OES Overview

Entitlement Server Features XACML Fine Grain Entitlement Management RBAC ABAC

XACML and Database Database auditing can be done with XACML – Note 1375460.1 Database security is not currently available Use database http server to query PEP Database performance???

Business Problem Application has rules Rules need to change Are your rules hard coded? Policy engine provides way to support

Admin Console CRUD on policy and objects Mapping policies to users Policies Resources Entitlements Roles Applications

Roles – Role Categories Roles – User, developer, manager Role Categories are tags

Role Hierarchies Set up Role Hierarchies Director -> Manager -> Call Centre Worker Employee -> Payroll Admin -> Accountant Role Mapping – Dynamic Assignment

Resources Add resources A resource can be a URL or field on a page A business object – transfer funds Authorization Policy to grant or deny Can the user complete a task Time based access

Entitlements Action that can be performed on a resource Uses the legal actions defined in parent resource type Targets – could be more than one resource

Policy Has at least one principal – user, role, Ex or app At least one target Grant/deny permissions Conditions

Attributes & Functions Used in conditions Attribute can be dynamically assigned a value Evaluated at run time -perhaps location Can be multivalued list Condition builder

Condition Builder

Administration Delegated administration Application Administration View or manage rights Policy Domains to delegate Allows for delegation to specific areas

Questions

Bio Peter McLarty Director Turagit Consulting Chameleon DBA, Middleware, Architecture http://www.turagit.com
Tags
oracle entitlement server manage complex application security reduce complexity in the enterprise
Categories
Business Design
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 607
  • Slides 20
  • Age 4451 days
Related Slideshows
DTI BPI Pivot Small Business - BUSINESS START UP PLAN 1
DTI BPI Pivot Small Business - BUSINESS START UP PLAN
MeljunCortes
28 views
CATHOLIC EDUCATIONAL Corporate Responsibilities 1
CATHOLIC EDUCATIONAL Corporate Responsibilities
MeljunCortes
30 views
Karin Schaupp – Evocation; lançamento: 2000 11
Karin Schaupp – Evocation; lançamento: 2000
alfeuRIO
28 views
Pillars of Biblical Oneness in the Book of Acts 10
Pillars of Biblical Oneness in the Book of Acts
JanParon
26 views
7-10. STP + Branding and Product & Services Strategies.pptx 31
7-10. STP + Branding and Product & Services Strategies.pptx
itsyash298
27 views
Business Legislation PPT - UNIT 1 jimllpkggg 44
Business Legislation PPT - UNIT 1 jimllpkggg
slogeshk98
29 views
View More in This Category