OraNA :: Oracle News Aggregator

If you want to configure Lost password policy management using Oracle Access Manager for your application, then here it is how you can do. In real time scenario, once the user clicks on Lost Password link, the user will be challenged with questions registered during first login, followed by a change password.

How can we do this?

1. Create an LDIF schema file with a new auxiliary object class and two new attributes as shown below.  Here only 1 challenge attribute is used, if your requirement demands, you can add many more.

dn: cn=schema
changetype: modify
add: attributetypes
attributetypes: ( 1.3.6.1.4.1.9999.1.1094.204 NAME ‘Challenge2′ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15  )
 
dn: cn=schema
changetype: modify
add: attributetypes
attributetypes: ( 1.3.6.1.4.1.9999.1.1094.205 NAME ‘Response2′ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15  )

dn: cn=schema
changetype: modify
add: objectclasses
objectclasses: ( 1.3.6.1.4.1.9999.1.1094.206 NAME ‘oblixAuxPerson4LPM’ DESC ‘User defined objectclass’ SUP top AUXILIARY MAY ( Challenge2 $ Response2 ) )

2. Import the LDIF file into the LDAP where OAM stores user data.

3. Now we have to configure this new object class in the OAM. Goto the Identity System Console and click on Common Configuration tab. Click on object classes in left pane and Add the new class by selecting the type as Person object class.

4. Goto Identity System Console -> System Configuration. Click password policy.

5. Enter the URL for Lost Password Redirect URL. Please remember to enable both checkboxes of Successful Attempts Attribute and Failed Attempts Attribute with attributes oblastSuccessFulLogin and oblastFailedLogin respectively.

6. Click on Lost Password Policy.

7. Enter the name. You can specify the challenge phrases to be user defined or pre-defined or both. If you wish to have pre-defined, then Enter the challenge phrase in the text box and click Add.

8. Enter the values for Minimum Challenges to be configured which specifies the no. of challenge phrases that will appear.

9. Enter values for Challenge Response Minimum Length and Allow Duplicate Responses appropriately.

10. Enter value for Minimum Challenges to be Answered which specifies the no. of challenges that user has to answer.

11. Select value for Challenge Pose Type. All at Once allows all the challenge phrases to appear at the same time. One after the other allows the challenges to appear after the user answers the first question.

12. Enable Send Email after password change if you want to configure SMTP stuff.

13. In the end, enable check box of password policy.

 In your custom application, you can insert the Lost Password link as shown below.

http://machinename:portnumber/identity/oblix/apps/lost_pwd_mgmt/bin/lost_pwd_mgmt.cgi?program=passwordChallengeResponse&login=%scheme1_uid_parameter_value%%scheme2_uid_parameter_value%%schemeN_uid_parameter_value%&target=top

14. To enable the password policies to the resources protected by the OAM, then modify the authentication scheme that protects those resources. In the validate_password plugin of your Authentication Scheme, add this obReadPasswdMode=”LDAP”,obWritePasswdMode=”LDAP” and the new validate_password plugin appears like this

obCredentialPassword=”password”,obReadPasswdMode=”LDAP”, obWritePasswdMode=”LDAP”

For more information, check this.

References:

Oracle Documentation

Share This

Cloud computing is an emerging computing technology that uses the internet and central remote servers to maintain data and applications. Cloud computing allows consumers and businesses to use applications without installation and access their personal files at any computer with internet access. This technology allows for much more efficient computing by centralizing storage, memory, processing and bandwidth. Cloud computing is broken down into three segments: “applications,” “platforms,” and “infrastructure.” Each segment serves a different purpose and offers different products for businesses and individuals around the world.

Oracle just launched "PeopleTools Viewlets" at http://download.oracle.com/peopletools/viewlets.html.  The viewlets are short training videos on PeopleTools topics like Web services & Integration Broker, reporting, security, enterprise 2.0 etc.   They're great if you need a quick refresher or want to see a live example of something you need to do.  Check it out.

Ok - so this evening whilst surfing blog waves I came across Andrejus Baranovskis’s Blog.

First I have to say the logo for Red Samurai is awesome!!
And from what I can see Andrejus Baranovskis’s is definatley a ninja / samurai developer - dedicated to improving Oracle and producing some great detailed guides in his blog - even spending the time to screenshot and note whats going on!

Anyways; I`m still pretty new to the world of JDeveloper - but I did come across his extension ‘Validate ADF Code Quality‘ that looks pretty good.. A validation tool!
This is exactly what is needed within any organisation developing adf code - I`m going to put this as a recommendation for anyone working with JDev to get this installed now!

I don`t want to see any sloppy code - if I ever have to work with you

There’s a nice technical white paper released today over at Fishbowl Solutions you should check out - on one way to integrate ECM with Portals!

But if you are feeling more adventurous and have 10gr4 setup for your websites - check out this oracle snippet document on how to bring back content to your portlets.

Instead of using CIS just use the UCM services to bring back and display your require content into a portlet.
You can even setup the ability to edit content directly from your portlet if required just as you do with UCM ‘ctrl + shift  + f5′.

However if your not feeling adventurous - I would recommend Fishbowl in the US they have a proven tested system in place and use ckeditor - up to date version of fckeditor
If you are UK based however you could contact Ether Solution who have already done the former integration with Webcenter - maybe you`ll even see me working on it.

Hi all,

As you might have observed that the integration between Oracle Access Manager and WebLogic server varies with different versions of WebLogic Server and hence it’s architecture varies.

So I would like to give a brief on how the architecture looks like and what are the components needed for this integration.

Until WebLogic Server 10.3.0, the connector used between OAM and WebLogic is the SSPI and is available for download seperately. It is evident that SSPI Connector configuration is not very easy to get it working as customers will end up with running into lot of issues with access privileges or weblogic startup etc., . However there is no difference in components used for this integration in both WebLogic versions except the separate SSPI Connector. You would need a proxy infront of WebLogic if you want to achieve Single Sign-On and just an access gate if you want to authenticate to the WebLogic as an OAM user. If you are just looking for authentication only, then you can’t achieve SSO which demands a proxy server. From architecture perspective, you will need a Connector (installed explicitly) sitting inside the WebLogic server.  The working authentication schemes are Basic and Form.

Moving to the new version, from WebLogic Server 10.3.1 onwards, the connector has been removed. Therefore the integration becomes very easy and so the architecture is.  Here, a jar file called oamAuthnProvider.jar (for OAM 10.1.4.3) has been introduced which acts as an alternative to SSPI connector. Internally, it contains classes to talk to WebLogic Server and OAM access server. This jar file has to be copied to lib directory of weblogic server for which we are attempting to do the integration. An Identity Asserter has to be created in the WebLogic server which listens to the ObSSOCookie. The recommended authentication scheme for WLS 10.3.1 is Form Login.

References:

Blog by Josh Bregman

OAM Documentation

Please reply your comments/suggestion and it is highly appreciated.

Share This

My usual day started with early morning meetings, catching up on email, looking up my memory for the to-do tasks and following up with my team by writing more emails, participating in meetings, and resulting in more emails.

As you can imagine, it was pretty hectic, a reactive work style and of my own doing. However much I tried to come out of it, I sunk in further so decided to take help from the “Productivity” class – one of the cool benefits of working @ Oracle is the access to a wide-variety of development tools (ok – I had to put in my compliments for Oracle somewhere )

My style is now “task based” and its simple –

• I am writing down all tasks – work and personal (using Outlook) with the goal of not relying on memory.
• I have set myself a frequency on checking mail (every 1 hour)
• I am now quickly processing the mail and dividing into 3 buckets
  - If it can be replied quickly in 1 min or less, do it immediately.
  - If it needs an action or following up with someone, create a Task for it and set a Start Date and Due Date. The tendency is to focus more on Due Date but at the same time “Start Date” is critical, as setting it correctly based on the work load for today / tomorrow and the current week, will determine how successfully I will get to it and complete it.
  - If it’s a FYI mail, move it into an archive folder and rely on “search” tools to find it later

• All I am now focused is to get the Tasks done and yes – writing this blog post was a task for Today.

I now have a “0” mail Inbox and a healthy list of 30 tasks that I need to do this week.

The added benefit of having Tasks is that I can now lookup my Tasks for the last week and send my Goals mail (which is the work I did last week + work to do this week) to my team. For some of the larger tasks – I can also pull them easily into my performance review document

My team is also following this approach, and as a result, we are all now competing with each other to show who is more productive. And, just the fact that, I have come out of a 2 year blog hibernation shows how happy I am with the new “me”.

What about you ? Do you have any productivity tips to share ?

So I was a bit bored over the weekend and decided to do the Oracle geek thing and watch a few presentation..

To my surprise; I actually stumbled across quite a good video on Vimeo to do with WCI by Chris Bucchere.
He walks you through quite a few real-world mashups of open source applications written in their own chosen language - PHP, RoR, Python etc.

If your bored and there’s just nothing on TV check out this presentation!

If you are looking for documentation on Oracle WebLogic Server 11g (component in Oracle Fusion Middleware) then here are few good links

1. Recommendation for Oracle WebLogic Server 11g Disaster Recovery here  which covers File System and Network artifacts.

2. If you are using JMS (Java Messaging services)  and T-Logs in WebLogic server then check recommendations for DR here

3. Whole Server Migration : Read about Server migration in WebLogic server (Automatic and Manual server migration) here

4. Service Migration for pinned services (JMS, JTA and user defined singleton service) here

5. If you are planning to use Virtualization and Partitioning technologies (Non Oracle) with WebLogic server then check this

6. Check High Availability configuration for Oracle WebLogic here

More information on High Availability and Disaster Recovery documentation for Fusion Middleware component - SOA, WebCenter, Identity Management (OID, SSO, Access Manager) coming soon …..

If you know any document regarding WebLogic Disaster Recovery (Failover) configuration then  update it under comments section.

Share This

I hope you guys enjoy this latest skin - as you can see its based on the original white design - I did back in December with a few slight alterations.

No I didn’t reskin firefox aswell, before anyone comments
Search for NASA Night Launch to download the firefox skin if you really like it..

Yes I know you are all asking for the extended trinidad css skin files for the design - in a couple of weeks fingers crossed I`ll have them complete and you`ll all be able to get them install them and alter them as you wish.

I’ll also be working on a complete new interface for Spaces approaching it from a Social networking view rather than a portal widget styled design that Spaces currently implements!!
So think facebook, linkedIn, MySpace’d version of Spaces for connecting and collaborating… I have my work cut out for me - but its going to be great fun….

##Update ##

I have thrown together a few widgets.. This is just a quick mockup and not a final representation..
And yes for all you designers obsessed with following the box model guidelines - I`m sorry.. But I prefer randomness than conforming to the rule..
And with this design it seems to actually work

KnowOracle – Starting with Video Tutorials

Starting – How to Use this blog

Go check out the new March 7th Leadership Development Carnival. Dan McCarthy has gathered together over 40 top posts, putting them in an Academy Award categories format. Dan introduces each submission with a brief description to help you decide if you want to read it.

Some notable posts include: Art Petty’s Leadership Caffeine-Learning to Lead in the Project-Focused World, Jason Seiden’s Your Job Sucks? Really? I’m Shocked. Oh, Wait: No I’m Not, Anne Perschel’s Fixing the Hole in the Corporate Soul, Jason Reid’s Multi-tasking – doing things badly in twice as much time, and our own Amy Wilson’s Pay for Performance is Dead…almost.

This is a terrific opportunity for you to get a great sample of a variety of perspectives, thinking, and just plain good writing. Who knows? Maybe you’ll discover a great blog you never heard of before.

Up to Newsletter Index

The chief lesson I have learned in a long life is that the only way to make a man trustworthy is to trust him; and the surest way to make him untrustworthy is to distrust him and show your distrust.  –Henry L. Stimson

If you want to go quickly, go alone. If you want to go far, go together.  –African Proverb

The world is wide, and I will not waste my life in friction when it could be turned into momentum.  –Frances Willard

Every now and then go away—for when you come back to your work your judgment will be surer.  –Leonardo DaVinci

I'm not a genius. I'm just a tremendous bundle of experience.  –R. Buckminster Fuller

Coming together is a beginning, staying together is progress, and working together is success.  –Henry Ford

There is a wisdom of the head, and a wisdom of the heart.  –Charles Dickens

People do not decide to become extraordinary. They decide to accomplish extraordinary things.  –Edmund Hillary

On two occasions I have been asked [by members of British Parliament], 'Pray, Mr. Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question.  –Charles Babbage

Read More...

I love my Tivo.

I think it’s the best invention of it’s decade and a close second to the remote control, as being the most useful invention of my lifetime.

I love it not so much for it’s technology, but for it’s simplicity.  The idea was so simple, all the technical pieces we readily available, and yet it changed the way we watch television forever.

Tivo changed my relationship with television, and in doing that,  it changed my expectations of television.  If it’s true that television has more to do with our generational divide than date of birth, we should expect that we haven’t seen the real result of the impact of Tivo yet.  That’s pretty cool for such a small company.

When I think about what I want for our own industry, I really want the same thing.  I want to change the way we think about systems and business.

I want to change how we look at people in business.

I want to bring the human back to human resources while also making business work better.

I want to realize the statement Laurie said about me.  I want to make work better.

The landscape of business is becoming more complex every day.  Social norms, expectations and markets are all changing.  Rapidly.

Global isn’t an idea, it’s a business imperative for big companies.  Companies are having to make bigger decisions with less insight since management by walking around is a lot harder when you have to walk across an ocean.

We need a new relationship between systems and business and I for one, think that it’s about time.  It all starts with lofty goals in my world.

I found some interesting material about how companies were named and what their names actually mean, take a look below..btw it is quite a long list!

ABN AMRO — In the 1960s, the Nederlandse Handelmaatschappij (Dutch Trading Society; 1824) and the Twentsche Bank merged to form the Algemene Bank Nederland ( ABN; General Bank of the Netherlands). In 1966, the Amsterdamsche Bank and the Rotterdamsche Bank merged to form the Amro Bank. In 1991, ABNand Amro Bank merged to form ABN AMRO.

Acccenture — Accent on the Future. Greater-than ‘accent’ over the logo’s t points forward towards the future. The name Accenture was proposed by a company employee in Norways part of a internal name finding process (BrandStorming). Prior to January 1, 2001 the company was called Andersen Consulting.

Adidas — from the name of the founder Adolf (Adi) Dassler.

Adobe — came from name of the river Adobe Creek that ran behind the houses of founders John Warnock and Chuck Geschke .

AltaVista — Spanish for “high view”.

Amazon.com — Founder Jeff Bezos renamed the company to Amazon (from the earlier name of Cadabra.com) after the world’s most voluminous river, the Amazon. He saw the potential for a larger volume of sales in an online bookstore as opposed to the then prevalent bookstores. (Alternative: It is said that Jeff Bezos named his book store Amazon simply to cash in on the popularity of Yahoo at the time. Yahoo listed entries alphabetically, and thus Amazon would always appear above its competitors in the relevant categories it was listed in.)

Apple — for the favourite fruit of co-founder Steve Jobs and/or for the time he worked at an apple orchard. He was three months late in filing a name for the business, and he threatened to call his company Apple Computer if his colleagues didn’t suggest a better name by 5 p.m. Apple’s Macintosh is named after a popular variety of apple sold in the US. Apple also wanted to distance itself from the cold, unapproachable, complicated imagery created by the other computer companies at the time had names like IBM, NEC, DEC, ADPAC, Cincom, Dylakor, Input, Integral Systems, SAP, PSDI, Syncsort and Tesseract. The new company sought to reverse the entrenched view of computers in order to get people to use them at home. They looked for a name that was unlike the names of traditional computer companies, a name that also supported a brand positioning strategy that was to be perceived as simple, warm, human, approachable and different. Note: Apple had to get approval from the Beatle’s Apple Corps to use the name ‘Apple’ and paid a one-time royalty of $100,000 to McIntosh Laboratory, Inc., a maker of high-end audio equipment, to use the derivative name ‘Macintosh’, known now as just ‘Mac’.

Blaupunkt — Blaupunkt (Blue dot) was founded in 1923 under the name Ideal. Their core business was the manufacturing of headphones. If the headphones came through quality tests, the company would give the headphones a blue dot. The headphones quickly became known as the blue dots or blaue Punkte. The quality symbol would become a trademark, and the trademark would become the company name in 1938.

Cadillac — Cadillac was named after the 18th century French explorer Antoine Laumet de La Mothe , sieur de Cadillac, founder of Detroit, Michigan. Cadillac is a small town in the South of France.

Canon — Originally (1933) Precision Optical Instruments Laboratory the new name (1935) derived from the name of the company’s first camera, the Kwannon, in turn named after the Japanese name of the Buddhist bodhisattva of mercy.

Cisco — short for San Francisco. It has also been suggested that it was “CIS-co” — Computer Information Services was the department at Stanford University that the founders worked in.

Coca-Cola — Coca-Cola’s name is derived from the coca leaves and kola nuts used as flavouring. Coca-Cola creator John S. Pemberton changed the ‘K’ of kola to ‘C’ for the name to look better.

Colgate-Palmolive — formed from a merger of soap manufacturers Colgate & Company and Palmolive-Peet. Peet was dropped in 1953. Colgate was named after William Colgate, an English immigrant, who set up a starch, soap and candle business in New York Cityin 1806. Palmolive was named for the two oils (Palm and Olive) used in its manufacture.

Compaq — from “comp” for computer, and “pack” to denote a small integral object; or: Compatibility And Quality; or: from the company’s first product, the very compact Compaq Portable.

Daewoo — the company founder Kim Woo Chong called it Daewoo which means “Great Universe” in Korean.

Dell — named after its founder, Michael Dell. The company changed its name from Dell Computer in 2003.

DHL — the company was founded by Adrian Dalsey, Larry Hillblom , and Robert Lynn , whose last initials form the company’s moniker.

eBay — Pierre Omidyar, who had created the Auction Web trading website, had formed a web consulting concern called Echo Bay Technology Group. ” EchoBay” didn’t refer to the town in Nevada, the nature area close to Lake Mead, or any real place. “It just sounded cool,” Omidyar reportedly said. When he tried to register EchoBay.com, though, he found that Echo Bay Mines, a gold mining company, had gotten it first. So, Omidyar registered what (at the time) he thought was the second best name: eBay.com.

Epson — Epson Seiko Corporation, the Japanese printer and peripheral manufacturer, was named from “Son of Electronic Printer”

Fanta — was originally invented by Max Keith in Germany in 1940 when World War II made it difficult to get the Coca-Cola syrup to Nazi Germany. Fanta was originally made from by products of cheese and jam production. The name comes from the German word for imagination (Fantasie or Phantasie), because the inventors thought that imagination was needed to taste oranges from the strange mix.

Fiat — acronym of Fabbrica Italiana Automobili Torino (Italian Factory of Cars of Turin).

Fuji — from the highest Japanese mountain Mount Fuji.

Google — the name is an intentional misspelling of the word googol, reflecting the company’s mission to organize the immense amount of information available online.

HP — Bill Hewlett and Dave Packard tossed a coin to decide whether the company they founded would be called Hewlett-Packard or Packard-Hewlett.

Hitachi — old place name, literally “sunrise”

Hotmail — Founder Jack Smith got the idea of accessing e-mail via the web from a computer anywhere in the world. When Sabeer Bhatia came up with the business plan for the mail service, he tried all kinds of names ending in ‘mail’ and finally settled for Hotmail as it included the letters “HTML” — the markup language used to write web pages. It was initially referred to as HoTMaiL with selective upper casing. (If you click on Hotmail’s ‘mail’ tab, you will still find “HoTMaiL” in the URL.)
Hyundai — connotes the sense of “the present age” or “modernity” in Korean.

IBM — named by Tom Watson, an ex-employee of National Cash Register. To one-up them in all respects, he called his company International Business Machines.

ICL — abbreviation for International Computers Ltd, once the UK’s largest computer company, but now a service arm of Fujitsu, of Japan.

IKON — copier company name derived from I Know One Name.

Here Below is the most famous verse of Bhagwat Gita which explains that one should excel in doing his work without keeping the end result in mind. If you do not work with the end result or preset outcome in mind & rather enjoy the way, the process, the path in doing any work, you shall certainly succeed in your work. So it is always better to perform your actions and carry out your duty in an efficient way rather than caring or worrying about the results.

कर्मण्ये  वाधिकारस्ते

माँ  फलेसु  कदाचन

माँ  कर्म -पहला -हेतुर  भुर

माँ  ते  संगो  ’सत्व  अकर्मणि

“Karmanye vadhikaraste

ma phalesu kadachana

ma karma-phala-hetur bhur

ma te sango ’stv akarmani “(Bhagwat Gita: Chapter Two verse 47)”

“Sri Krishna said to Arjuna: You have a right to perform your prescribed duty, but you are not entitled to the fruits of action. Never consider yourself the cause of the results of your activities, and never be attached to not doing your duty.”