Understand Oracle Identity Cloud Service SDKs and Applications
You're an identity domain administrator or security administrator who wants to enable mobile and Web applications to authenticate with Oracle Identity Cloud Service. To do this, you use one of the options below.
You may want to integrate your Oracle E-Business Suite environment with Oracle Identity Cloud Service for authentication and password management purposes. To do this, you use a lightweight Java application known as the Oracle E-Business Suite (EBS) Asserter.
You may want to integrate your Linux environment with Oracle Identity Cloud Service to perform end user authentication with first and second factor authentication. To do this, you use the Oracle Identity Cloud Service Linux Pluggable Authentication Module (PAM).
If your web application supports header based authentication, then use App Gateway to protect access to your application. App Gateway acts as a reserve proxy protecting web applications by restricting unauthorized network access to them.These applications are called Enterprise Applications in Oracle Identity Cloud Service.
Oracle Identity Cloud Service can be used to provide single sign-on for your applications. These applications can be integrated with Oracle Identity Cloud Service using one of the following options:
-
App Catalog: The App Catalog contains ready-to-use templates to integrate with most of your cloud-based applications.
-
SAML 2.0: Use Oracle Identity Cloud Service as an identity provider for applications that support the SAML standard.
-
SDKs: Use SDKs to develop applications to use the Oracle Identity Cloud Service authentication mechanism.
-
Open ID Connect: Use Oracle Identity Cloud Service as the authentication server for applications that support the Open ID Connect standard.
-
OAuth 2.0: Use Oracle Identity Cloud Service as the authorization server for applications that support the OAuth standard.
When none of these methods apply to the applications you need to integrate for authentication, use Secure Form Fill. To help you configure Secure Form Fill for your applications, Oracle Identity Cloud Service provides you with an admin client known as the Secure Form Fill Client.
You may want to establish a link between your on-premises apps and Oracle Identity Cloud Service. To do this, create a Provisioning Bridge. Through synchronization, account data that is created and updated directly on the apps is pulled into Oracle Identity Cloud Service (through the Provisioning Bridge) and stored for the corresponding Oracle Identity Cloud Service users and groups. As a result, any changes to this data will be transferred into Oracle Identity Cloud Service. So, if a user is deleted in one of your apps, then this change will be propagated into Oracle Identity Cloud Service. As a result, the state of each record is synchronized between your apps and Oracle Identity Cloud Service.
Creating a Provisioning Bridge includes using the Identity Cloud Service console to add a bridge, and then installing the client for this bridge.
Adaptive Security is an advanced feature of Oracle Identity Cloud Service that provides strong authentication capabilities for your users, based on their behavior within Oracle Identity Cloud Service, and across multiple heterogeneous on-premises applications and cloud services.
When activated, the Adaptive Security feature can analyze a user’s risk profile within Oracle Identity Cloud Service when they sign in to access the service, based on their historical behavior and real-time device context, such as access from unknown devices.
Adaptive Security uses the concept of risk providers to allow administrators to configure various contextual and threat events to be analyzed within Oracle Identity Cloud Service. A default risk provider within Oracle Identity Cloud Service is seeded automatically with a list of supported contextual and threat events, such as Access from an unknown device. For this event, if a user accesses Oracle Identity Cloud Service from a device that hasn’t been previously used to access the service, then this event (commonly referred to as Device Fingerprinting) is triggered.
Although Oracle Identity Cloud Service has a sign-in page, you may prefer to use your own page. If so, then you can use the Identity Cloud Service Device Fingerprint Utility to enable the Access for an unknown device event of Adaptive Security for your custom sign-in page.
Oracle Identity Cloud Service has a centralized location in the Identity Cloud Service console where you can download SDKs, the EBS Asserter, the Secure Form Fill Client, the Linux PAM, the Identity Cloud Service Provisioning Bridge Client, or the Identity Cloud Service Device Fingerprint Utility.
For this version of Oracle Identity Cloud Service, the following SDKs and applications are available:
| Name | Type | Description |
|---|---|---|
| Identity Cloud Service E-Business Suite Asserter | Application | Use this Java application to integrate Oracle E-Business Suite with Oracle Identity Cloud Service. |
| App Gateway for Identity Cloud Service | Application | Use this software appliance to integrate web applications, also known as enterprise applications with Oracle Identity Cloud Service for authentication purposes. |
| Identity Cloud Service Secure Form Fill Client | Application | Use this admin client to configure Secure Form Fill for your applications. |
| Identity Cloud Service Provisioning Bridge | Application | Use this application to install, start, or stop the client for the Provisioning Bridge. |
| Identity Cloud Service Linux Pluggable Authentication Module (PAM) | Application | Use this module to integrate Linux environments with Oracle Identity Cloud Service for authentication purposes. |
| Identity Cloud Service Device Fingerprint Utility | Application | Use this utility to enable Adaptive Security for your custom UI. |
| Identity Cloud Service SDK for Java | SDK | Use this SDK to develop your web-based Java applications. |
| Identity Cloud Service SDK for Node.js | SDK | Use this SDK to develop web-based Node.js applications. |
| Identity Cloud Service SDK for Python | SDK | Use this SDK to develop web-based Python applications. |
| Identity Cloud Service SDK for .NET | SDK | Use this SDK to develop web based ASP.NET applications |
| Identity Cloud Service SDK for Android | SDK | Use this SDK to develop mobile Android applications. |
| Identity Cloud Service SDK for iOS | SDK | Use this SDK to develop mobile iOS applications. |