Types of Authentication

The Framework Administrator allows you to set the type of authentication used. The available options are:

  • None: All users will have access to all portions of the Framework Administrator. This is not recommended for security reasons.
  • Windows: Users, and the areas of the Framework Administrator they can access, are validated by IIS. This option relies on Microsoft Internet Information Services (IIS) to provide authenticated users. All methods supported by IIS are permitted. When using IIS, the provider module uses the authenticated identity passed in from IIS. IIS authenticates the identity using basic, digest, integrated Windows authentication or some combination of these. You can use impersonation and NTFS ACL permissions to restrict or allow access to protected resources. Intranet Credentials can be entered anonymous website to website access is denied.
  • Custom: DEFAULT OPTION Users can log in through an HTML form. Users that are not logged in can only access non-secure environments. This option collects a user's credentials through a login window. The user enters a user ID and password and then submits the HTML form. If the application authenticates the request, the system issues a cookie that contains the credentials, key, for reacquiring the identity. Subsequent requests are issued with the cookie in the request headers. The requests are authenticated and authorized by an ASP.NET event handler, using whatever validation method the application specifies. The system also allows the administrator to change or reset the password that is encrypted on disk.

OBI Credentials

OBI Publisher is required to generate reports. The credentials in IBFA must match the credentials in OBI Publisher in order for reports to be generated.

ESI Access

Oracle Insurance Insbridge Enterprise Rating Extended Services Interface (ESI) is a library module designed to provide remote services to the Insbridge Enterprise Rating (INSBRIDGE) business services without directly utilizing the system User Interfaces (UI).

ESI allows users to pass information between a user’s source policy or business admin system and the RateManager system or the Insbridge Framework Administrator (IBFA) without using either the RateManager or IBFA UI. Information is passed through a custom built interface that resides on a source

policy or business admin system on the client side to the ESI web service that resides on the Insbridge side. The information is processed and results returned from the ESI web service back to the custom built interface into the client’s source policy or business admin system.

For security purpose, you may want to change the key periodically. Every generated key will be unique.

 

 

 

Copyright © 2022, Oracle and/or its affiliates. All rights reserved. About Oracle Insurance| Customer Support