Oracle® Secure Enterprise Search Administration API Guide 11g Release 2 (11.2.2) Part Number E23428-01 |
|
|
View PDF |
When performing a secure search on a federation endpoint, the federation broker must transmit the identity of the user to the federation endpoint. If the endpoint instance trusts the broker instance, then the broker instance can proxy as the end user. To establish this trust relationship, Oracle SES instances exchange a secret. This secret is exchanged in the form of a trusted entity.
A trusted entity consists of two values: an entity name and an entity password. Each Oracle SES instance can have one or more trusted entities that it can use to participate in secure federated search. A federated trusted entity is also referred to as a proxy user or a proxy log-in.
Object Type
Creatable
Object Key
name
Object Key Command Syntax
--NAME=object_name -n object_name
State Properties
None
Supported Operations
create createAll delete deleteAll deleteList export exportAll exportList getAllObjectKeys update updateAll
Administration GUI Page
Global Settings - Federation Trusted Entities
XML Description
The <search:proxyLogins>
element describes proxy log-ins:
<search:proxyLogins> <search:proxyLogin> <search:name> <search:password> <search:useIdentityPlugin>
Element Descriptions
Describes proxy log-ins. It contains one or more <search:proxyLogin>
elements.
Describes a proxy log-in. It contains these elements:
<search:name> <search:password> <search:useIdentityPlugin>
Name of the proxy. Required.
Password for the proxy server. Required when <search:useIdentityPlugin>
is false
.
Attribute | Value |
---|---|
encrypted |
Indicates whether the value of <search:password> is encrypted. Set to true if the password is encrypted, or set to false if it is plain text. |
Controls use of an identity plug-in. Set to true
to use the active identity plug-in for authentication, or set to false
otherwise. Required.
Example
This XML document describes two proxy log-ins:
<?xml version="1.0" encoding="UTF-8" ?> <search:config productVersion="11.2.1.0.0" xmlns:search="http://xmlns.oracle.com/search"> <search:proxyLogins> <search:proxyLogin> <search:name>this_proxy</search:name> <search:useIdentityPlugin>true</search:useIdentityPlugin> </search:proxyLogin> <search:proxyLogin> <search:name>that_proxy</search:name> <search:password encrypted="false">password</search:password> <search:useIdentityPlugin>false</search:useIdentityPlugin> </search:proxyLogin> </search:proxyLogins> </search:config>