LDAP解决方案 - Oracle Identity and Access Management

• Oracle Access Management (OAM)  - 单点登陆的实现模块
• Oracle Identity Management (OIM) - 身份供应的实现模块
• Oracle Internet Directory (OID) - LDAP信息存储的数据库

2) Access Management:
A) Access Manager - Controlling User Access to Enterprise resources. It also provides web based Identity Administration & access control to applications & resources. Provides User, password and group management. User access policies can be defined and enforced with high granularity.

B) Identity Federation – Allows companies to operate independently and enable cross domain user provisioning.

C) Single Sign-on - It provides built in integration with customer’s IM and addressing key challenges (for cross domain access) like automatic mapping, identity mapping access control navigation.

D) eSSO - Enterprise SSO is upcoming product which provide true SSO for all application and resource in an enterprise, without modifying existing applications.

3) Identity Management:

A) Identity Manager - Allows automated user identity provisioning and deprovisioning. Key features of Identity Manager are password management, workflow & policy management, Identity reconciliation, reporting and Auditing. Identity manager also supports attestation (confirming access rights by user or system manager periodically). This is requirement from SoX compliance.

B) DAS – Delegating Administrative Services provides trusted proxy based administration at User or Administrator level.