Contents

• Title and Copyright Information
• Get Help

1 Overview

• Preface
• Shared Security Responsibility
• Security Evaluation or Penetration Test
• General Security Principles
  • Overall Goals of Security
  • General Principals
  • Service Components

2 Service Security Features

• Security Model Overview
• Domains

3 User Management

• Oracle Transportation Management Users
  • Oracle Transportation Management Service Default Users
  • Oracle Transportation Management Service Automatic User Creation
  • Oracle Transportation Management Service User Recommendations
• Authentication
  • Interactive End User Authentication
  • Integration User Authentication
• Authorization/Access Control
  • Authorization Overview
  • User Roles
  • Access Control Lists/Functional Security
    • Oracle Transportation Management Service Entry Points
  • User Access
• Oracle Identity Cloud Service
  • Oracle Cloud Console
  • Creating Users in Oracle Single Sign-On
    • Creating Users in Single Sign-On: Oracle Cloud Classic
      • Creating Application Administrator Users in Single Sign-On
      • Creating Application Users in Single Sign-On
    • Creating Users in Single Sign-On: Oracle Cloud Console
    • Oracle Transportation Management User Synchronization to Oracle Identity Management
  • Federated Single Sign-On
  • 3-Legged OAuth for Oracle Identity Cloud Service
  • Advanced Configuration
    • Identity Domain Management Service
• Data Access Control
  • Virtual Private Database Overview
  • Additional Data Access Constraints
• Auditing
• Password Storage
  • Third Party Authentication

4 Secure Configuration

• Secure Configuration Overview

5 Break Glass Support for Environments

• Break Glass for Oracle Applications
• Oracle Managed Access (Break Glass)
• Customer Managed Keys for Oracle Break Glass

6 Security Considerations

• Security Evaluation or Penetration Test
• Modifying Service Security Data
• Integrating Security Data
• Troubleshooting User Sign in Problems
• Content Links Embedded by Email
• Content Virus Checking
• Content Use Cases
• File Content Analysis
• Further Secure the Inbound HTTP Request External Integration URLs
• Additional Configuration
• Oracle Transportation Mobile Web Application
• Integrating with Other Components
• Automation Agents

7 Appendix: Generic Secure Configuration Checklist

• Security Checklist

8 Appendix: General Properties

• General Properties