Smart Grid Gateway Security Guide
What’s New In Security
Outbound OAuth2 Support
New Menu Application Security Portal
User Search Now Shows Active Users by Default
User Group Services by Entity Tag
Secure and HttpOnly Cookie Attributes
XStream Initialization
HTTP Method Override
Introducing Security
Security Features
Additional Security Resources
Authentication
Online Authentication
Batch Authentication
Web Service Authentication
Authorization
Authorization Model
Users
User Groups
Access Groups
Managing Security
Online User Management
User Management
Template Users
Assigning To Do Types
Assigning User Portal Preferences
Assigning Bookmarks
Assigning Favorite Links
Assigning Favorite Scripts
Assigning User Characteristics
Defining Users to User Groups
Defining User Groups to Application Services
Defining Users to Data Access Groups
User Enable and Disable
Managing Batch Users
Managing Web Services Users
User Authentication
Advanced Security
Domain Authentication Group
Logon Configuration
Data Ownership Rules
Configuring JMX Security
Default Simple File-Based Security
SSL-Based Security
Other Security Sources
Menu Security Guidelines
Security Types
Default Generic Application Services
Administration Delegation
Secure Communications (SSL)
Data Masking Support
Securing Files
Password Management
Securing Online Debug Mode
Securing Online Cache Management
Web Services Security
Message Driven Bean Security
SOAP Security
Groovy Support
Oracle Cloud Object Storage Support
HTTP Proxy Support
SYSUSER Account
Audit Facilities
Audit Configuration
Audit Query by Table/Field/Key
Audit Query By User
Read Auditing
Integrating to Audit Vault
Database Security
Database Users
Database Roles
Database Permissions
Using Transparent Data Encryption
Using Database Vault
Security Integration
LDAP Integration
Single Sign On Integration
Kerberos Support
Oracle Identity Management Suite Integration
OAuth2 Support
Keystore and Truststore Support
Creating the Keystore and Truststore
Altering the KeyStore/Truststore options
Synchronize Data Encryption
Upgrading from Legacy to Keystore
Importing Keystores/Truststores
Encryption Feature Type
Configuration of Encrypted Fields
Web Services Security
Allowlist Support
URL Allow List
Implementing a Custom URL Allow Lists
SQL Allow List
HTML Allow List
Implementing a Custom HTML Allow List
Groovy Allow List
Custom Authentication Service Provider
What does this Security Provider do?
Where would I use this Security Provider?
Implementing the Security Provider
Federated Security Support
Suggested References
Federated Architecture
Prerequisites for Federated Security
Process Flow
Federated Online Authentication
Overview
Identity Provider Configuration
Oracle HTTP Server/WebGate Configuration
Define Identity Provider Partner in Oracle Access Manager
Enable Just In Time Provisioning in Identity Federation
Define WebGate Agent
Copy WebGate Agent Configuration to OHS/WebGate
Define Authentication Policy for the Product Domain
Export the OAM SAML Metadata (optional)
Configure the Product Identity Asserter and Authenticators
Configure CLIENT-CERT
Federated Web Services
Overview
Process Flow
Set Up OAuth Service
Configure WebGate for SOAP/REST communications
Create OAuth Client
Using Keystores and Credentials
Enable OAuth on Product
Use Oracle Web Service Manager Policies
Federated Outbound Messages
Overview
OAuth Policies
Extendable Lookup Configuration
Message Sender Configuration
Configuring OAuth for the Mobile Framework
Securing JNDI Access
Securing Product Access
Providing Additional Access to the JNDI
Object Erasure Support
Configuration Of Object Erasure
Smart Grid Gateway Security Guide
Oracle Utilities Smart Grid Gateway 2.5.0.0.0 Security Guide