Externalized Authentication (Single Sign-On)

You can setup SSO to enable a SAML 2.0 compliant identity provider (IdP) to authenticate users for Oracle Fusion Cloud Enterprise Performance Management and Oracle Enterprise Data Management Cloud environments.

This configuration satisfies the requirement of ensuring that users can no longer access Cloud EPM and Oracle Enterprise Data Management Cloud after leaving the organization. Since users login using the same SSO credentials that they use for network resources, removing their access to Cloud EPM and Oracle Enterprise Data Management Cloud is as simple as revoking their network access.

Additionally, communication between Oracle Access Manager, the default service provider for Cloud EPM and Oracle Enterprise Data Management Cloud, and your SAML 2.0 IdP is secured with the MD5 algorithm.

For detailed information on configuring SSO, see Configuring Single Sign-On.