This chapter describes new features and changes and updates to this book. See the following sections for details:
Changes for Oracle Adaptive Access Manager 11g Release 2 (11.1.2)
Changes for Oracle Adaptive Access Manager 11g Release 1 (11.1.1)
Oracle Adaptive Access Manager 11g Release 2 (11.1.2) includes many important features and enhancements that were not available with Oracle Adaptive Access Manager 11g Release 1 (11.1.1). The following is a list of the new features and enhancements:
Areas | Features and Enhancements |
---|---|
Enhanced mobile security | Enhanced mobile security includes:
|
Transactional autolearning | New transactional autolearning includes:
|
Investigation tools | New investigation tools have been added to make investigations quicker and easier:
|
Entity enhancements | Enhanced entities includes:
|
Access monitoring toolkit | The Access monitoring toolkit includes:
|
See the following table for information that has been added or updated in this guide.
New Section/Chapters | Information |
---|---|
New section on virtual authentication devices | For information, see Section 1.2.3, "Virtual Authentication Devices." |
New section on mobile access security | For information, see Section 1.2.8, "Mobile Access Security." |
New section on fraud investigation tools | For information, see Section 1.2.10, "Fraud Investigation Tools." |
Revised investigation chapter to include Search and Compare Transactions, Utility Panel features, and enhanced Session Details page | For information, see Chapter 5, "Investigation Using OAAM." |
New chapter on KBA and OTP challenges | For information, see Chapter 9, "KBA and OTP Challenges." |
New OAAM Policy Concepts and Reference chapter. | For information, see Chapter 10, "OAAM Policy Concepts and Reference." |
New section on transaction -based patterns | For information, see Chapter 15, "Using Transaction-Based Patterns." |
New chapter on modeling transactions | For information, see Chapter 18, "Modeling the Transaction in OAAM." |
Updated entities chapter to include more screen examples | For information, see Chapter 19, "Creating and Managing Entities." |
Updated transactions chapter | For information, see Chapter 20, "Managing Transactions." |
New chapter on performance considerations and best practices | For information, see Chapter 28, "Performance Considerations and Best Practices." |
New sections on troubleshooting and frequently asked questions | For information, see Chapter 29, "FAQ/Troubleshooting." |
New appendix on using OAAM. | For information, see Appendix A, "Using OAAM." |
New sections in conditions chapter | For information, see Appendix B, "Conditions Reference." |
New appendix on OAAM properties | For information, see Appendix C, "OAAM Properties." |
Oracle Adaptive Access Manager 11g Release 2 (11.1.1) includes many important features and enhancements that were not available with Oracle Adaptive Access Manager 10g. The following 11g topics have been documented in this guide:
Areas | Features and Enhancements |
---|---|
Interface | The new rich Oracle Adaptive Access Manager user interface provides
|
Security Policies | Newly updated security policies that incorporate:
|
Policy Creation | New features in policy creation enables you to:
|
Rule Creation | Rules are now much easier to create.
|
OTP Anywhere | OTP Anywhere can create universal delivery options for auto-generated one-time-passwords used for secondary, risk-based user challenges to add sophisticated security to basic authentication flows. |
Investigation | New investigation tools have been added to make investigations quicker and easier
|
Encryption Keys | Encryption keys required by Oracle Adaptive Access Manager can be securely managed using Fusion Middleware Control without having to create Keystore files |
Universal Risk Snapshot | Snapshots can be created allowing security administrators to simply and easily migrate security data across environments or restore security configuration to a known state |
Multitenancy | Multitenant access controls for customer service representative interface to allow protection of multiple application tenants with a single instance of OAAM |
OAAM Batch Risk Analysis | Oracle Adaptive Access Manager batch risk analysis tool to be used as:
|
Audit | Most of the administrative operations are now audited using Oracle Audit Service. Audit events can be viewed using the standard audit reports. |
Web Services | Oracle Adaptive Access Manager Web services are implemented using Oracle Web Services. |
Application Logging | Oracle Adaptive Access Manager 11g uses Java logging instead of log4j. Logging can be configured using Fusion Middleware Control. |
Integration with the Dynamic Monitoring System | Some performance metrics are now integrated with Dynamic Monitoring System. These metrics and related reports can be viewed using Fusion Middleware Control |
Customers migrating from Oracle Adaptive Access Manager 10g to 11g will notice key changes. These changes are intended to align terminology used across the Identity Management suite products and simplify administration.
Oracle Adaptive Access Manager provided terminology changes in 11g, as shown in the following table.
Oracle Adaptive Access Manager provided conceptual changes in 11g, as shown in the following table.
For information on Oracle Adaptive Access Manager 11g concepts, see the following chapters:
Oracle Adaptive Access Manager application deployment changes in 11g are as follows:
OAAM Server: Runtime component that includes Adaptive Risk Manager (rules engine), Adaptive Strong Authenticator (end user interface flows), Web services, LDAP integration, and user Web application used in all deployment types except native integration
OAAM Admin: Administration Console for all environment, Adaptive Strong Authenticator, and Adaptive Risk Manager features. It contains customer service and fraud investigation case management functionality
For information on the Oracle Adaptive Access Manager 11g web applications, see Section 1.3, "Oracle Adaptive Access Manager Component Architecture."
Architecture and deployment changes in 11g are listed as follows:
Administration User Interface is a separate Web application called OAAM Admin.
Adaptive Strong Authenticator is now deployed as part of the OAAM Server Web application.
OAAM Web applications are now packaged as EAR files. Exploding them is neither recommended nor supported.
For information on architectural and deployment of Oracle Adaptive Access Manager 11g, see Section 1.3, "Oracle Adaptive Access Manager Component Architecture."