Oracle® Access Manager Access Administration Guide 10g (10.1.4.2.0) Part Number B32420-01 |
|
|
View PDF |
This section describes new features of Oracle Access Manager 10g (10.1.4.0.1) and provides pointers to additional information within this book. Information from previous releases is also retained to help those users migrating to the current release.
The following sections describe the new features in Oracle Access Manager that are presented in this book:
Triggering Authentication Actions After the ObSSOCookie Is Set
Associating WebGates with Specific Virtual Hosts, Directories, and Files
Configuring Lotus Domino and Windows Impersonation Single Sign-On
Note:
For a comprehensive list of new features and functions in Oracle Access Manager 10g (10.1.4.0.1), and a description of where each is documented, see the chapter on What's New in Oracle Access Manager in the Oracle Access Manager Introduction.The original product name, Oblix NetPoint, has changed to Oracle Access Manager. Most component names remain the same. However, there are several important changes that you should know about, as shown in the following table:
All legacy references in the product or documentation should be understood to connote the new names.
WebGates have been updated to use the same code as the Access System, and WebGate configuration parameters that once existed in WebGateStatic.lst have been moved to the Access System user interface.
After installing the new WebGates, you can now configure such parameters as IPValidation and IPValidationExceptions from the Access System GUI. The WebGateStatic.lst file no longer exists.
WebGates can work behind a reverse proxy.
Information on setting up a WebGate behind a reverse proxy has been added to this book.
See Also:
"Placing a WebGate Behind a Reverse Proxy".Preferred HTTP Hosts are now required, and special configuration is needed to support virtual Web hosting.
In this release, you must supply a Preferred HTTP Host when configuring a WebGate. If you use virtual Web hosting, there are new parameters for specifying a preferred HTTP host when your environment supports virtual hosting.
The documentation on URL prefixes and patterns has been updated for clarity.
WebGates can work behind a reverse proxy.
Information on setting up a WebGate behind a reverse proxy has been added to this book.
See Also:
"Placing a WebGate Behind a Reverse Proxy".You can cause authentication actions to be executed after the ObSSOCookie is set.
Typically, authentication actions are triggered after authentication has been processed and before the ObSSOCookie is set. However, in a complex environment, the ObSSOCookie may be set before a user is redirected to a page containing a resource. In this case, you can configure an authentication scheme to trigger these events.
Information has been added about the differences between configuring a form on the server where the WebGate resides and configuring it on a server other than the one hosting the WebGate.
Information has been added about configuring single logout from applications that use form-based authentication.
See Also:
"Configuring Logout".It is no longer necessary to disable an authentication scheme before you modify it.
See Also:
Configuring User Authentication.You can configure an authentication scheme that allows the user to log in for a period of time rather than a single session.
Non-ASCII characters are not permitted in HTTP headers or cookies. As a result, non-ASCII characters are not supported in the header variable Name and Return Attribute fields when you define authentication rule actions.
You can configure the Oracle Access Manager single sign-on logout URL to point to a logout.html
file in the language of the user's browser.
See Also:
"Configuring a Single Sign-On Logout URL".A section has been added on creating custom single sign-on logout URLs and logout pages.
See Also:
"Configuring Logout".You can configure the WebGate to only work with specific virtual hosts, directories, and files.
An additional parameter has been added to this plug-in, to be used for Lost Password Management, when a WebPass is on a different server from the WebGate that protects the requested resource.
See Also:
"Validate Password Plug-In"The appendix on using the Access System with Windows Impersonation has been moved.
See Also:
Oracle Access Manager Integration Guide.The information on configuring single sign-on with Lotus Domino and Windows Impersonation has been moved to another book in this suite.
See Also:
Oracle Access Manager Integration Guide.Information on troubleshooting that was dispersed throughout this manual has been consolidated in a separate appendix.
See Also:
"Troubleshooting Oracle Access Manager".You can now write diagnostic information to a log file.
See Also:
"Capturing Diagnostic Information".New troubleshooting topics have been added.