1. Security Administration Guide
  2. Oracle WebCenter Spaces

Oracle WebCenter Spaces

With an EnterpriseOne single sign-on setup for Oracle WebCenter Spaces, a single sign-on token is generated by the EnterpriseOne provider server. The provider server can be an Oracle WebLogic Server or IBM WebSphere Application Server and can be used as a standalone HTML Server. You should set up a new node for supporting single sign-on from the provider server. You should create a single sign-on node configuration using the EnterpriseOne SSO application.

The TokenGen.ini file contains node name and node password in plain text. You need to secure this file using operating system security.

In addition to the above recommendations, follow the guidelines in the JD Edwards EnterpriseOne HTML Server Security section in this guide to secure your web environment.

Oracle recommends setting up an SSL configuration for Oracle WebCenter Spaces. For instructions, see "Securing the Spaces Connection to Portlet Producers with SSL" in the Oracle Fusion Middleware Administrator's Guide for Oracle WebCenter Portal:

https://docs.oracle.com/cd/E28280_01/webcenter.1111/e12405/wcadm_security_ssl.htm#WCADM6449