{"id":3240,"date":"2012-05-01T10:59:55","date_gmt":"2012-05-01T14:59:55","guid":{"rendered":"http:\/\/onlineappsdba.com\/?p=3240"},"modified":"2016-07-13T10:44:39","modified_gmt":"2016-07-13T14:44:39","slug":"oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on","status":"publish","type":"post","link":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/","title":{"rendered":"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On"},"content":{"rendered":"<p>This post covers key points and documents required to integrate Oracle Access Manager (OAM) 11g using Windows Native Authentication (WNA) so that user logged into Windows Active Directory (MS-AD), try to access recourse protected by OAM (using<strong> Kerberos Authentication Scheme<\/strong>) should grant access without logon (zero sign-on).<\/p>\n<p>.<\/p>\n<p><a href=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3248\" title=\"WNA_2\" src=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\" alt=\"\" width=\"450\" height=\"314\" srcset=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png 450w, https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2-300x209.png 300w\" sizes=\"auto, (max-width: 450px) 100vw, 450px\" \/><\/a><\/p>\n<p>.<\/p>\n<p>If you are new to Oracle Access Manager 11g then check my <a href=\"http:\/\/www.amazon.com\/Oracle-Identity-Access-Manager-Administrators\/dp\/1849682682\" target=\"_blank\">book on OAM\/OIM 11g available from Amazon<\/a><\/p>\n<p>.<\/p>\n<p><span style=\"text-decoration: underline;\"><strong>Terminology<\/strong><\/span><\/p>\n<ul>\n<li>WNA : Windows Native Authentication<\/li>\n<li>IWA : Integrated Windows Authentication<\/li>\n<li><a href=\"http:\/\/msdn.microsoft.com\/en-us\/library\/windows\/desktop\/aa378747(v=vs.85).aspx\" target=\"_blank\">Kerberos<\/a> : is a Protocol that defines how clients interact with network authentication service.<\/li>\n<li>KDC : Kerberos Key Distribution Center server issues kerberos ticket<\/li>\n<li><a href=\"http:\/\/msdn.microsoft.com\/en-us\/library\/ms191153.aspx\" target=\"_blank\">SPN<\/a> : Service Principal Name<\/li>\n<li>TGS : Ticket Granting System<\/li>\n<li><a href=\"http:\/\/en.wikipedia.org\/wiki\/NTLM\" target=\"_blank\">NTLM<\/a>\u00a0: <strong>NT<\/strong><strong>L<\/strong>AN <strong>M<\/strong>anager<\/li>\n<li>SPNEGO \u00a0: <strong>S<\/strong>imple and <strong>P<\/strong>rotected GSSAPI <strong>Nego<\/strong>tiation<br \/>\n.<\/li>\n<\/ul>\n<p>Integration of OAM (10g\/11g) with Windows Domain Authentication (WNA\/IWA) is to achieve requirement where user logged in to windows domain should <span style=\"text-decoration: underline;\"><strong>not<\/strong><\/span> be prompted again when trying to access resource protected by OAM using <strong>Kerberos authentication scheme<\/strong>.<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"text-decoration: underline;\"><strong>OAM 10G VS 11G\u00a0for zero Sign-On with Windows Domain<\/strong><\/span><\/p>\n<p><strong>A.<\/strong> <strong>OAM 10g<\/strong> integration with Windows Domain Authentication (this integration is also referred as <strong>IWA<\/strong>) uses <strong>IE Browser<\/strong> and <strong>IIS Web Server<\/strong>. On IIS Web Server, <strong>WebGate<\/strong> is installed with authentication module <strong>UseIISBuiltinAuthentication<\/strong>. If client is authenticated at windows (<strong>NTLM<\/strong> or <strong>Kerberos<\/strong>) and tries to access resource protected by <strong>IIS WebGate<\/strong>, IIS Server requests browser to send an authentication <strong>token<\/strong> to verify. If token (user logged in to windows domain) is verified , the webgate&#8217;s <strong>UseIISBuiltinAuthentication<\/strong> module sets <strong>HTTP Header<\/strong> variable with name of windows domain user (already authenticated in windows domain). OAM server then uses this HTTP Header variable (user logged into domain) to authenticate and authorise user in OAM.<\/p>\n<p><strong>B. OAM 11g<\/strong> integration with Windows Domain Authentication (this integration is also referred as WNA) is based on<strong> SPNEGO<\/strong> and <strong>Kerberos<\/strong>. OAM 11g integration with Windows Domain Authentication (WNA) requires:<br \/>\n<strong>i)<\/strong> User&#8217;s IE Browser setting to have <strong>Integrated Windows Authentication<\/strong> feature enabled<\/p>\n<p><a href=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3245\" title=\"WNA_1\" src=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_1.png\" alt=\"\" width=\"327\" height=\"383\" srcset=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_1.png 327w, https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_1-256x300.png 256w\" sizes=\"auto, (max-width: 327px) 100vw, 327px\" \/><\/a><br \/>\n<strong>ii)<\/strong> Add OAM cookie domain under Local Intranet Zone in browser<br \/>\n<strong>iii)<\/strong> OAM Server to be configured as Service Provider in Microsoft KDC<\/p>\n<p>If an user authenticated via <strong>Kerberos<\/strong> to Windows AD domain, tries to access OAM resource (protected by <strong>Kerberos authentication scheme<\/strong>), OAM returns Not Authorised (HTTP 401) to start SPNEGO. The browser (configured with <strong>IWA<\/strong>) contacts <strong>kerberos KDC<\/strong> to obtain kerberos ticket for OAM Server. The browser sends the Kerberos ticket to the OAM Server. OAM Server (configured with kerberos authentication scheme) reads the kerberos ticket and authenticates\/authorizes user.<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"text-decoration: underline;\"><strong>High Level Integration Steps to configure OAM 11g with Windows Domain<br \/>\n<\/strong><\/span><br \/>\n<strong>1.<\/strong> Create user in Active Directory which OAM will use during <strong>WNA<\/strong><br \/>\n<strong><br \/>\n2.<\/strong> Create <strong>SPN<\/strong> using <strong>ktpass<\/strong> tool of Windows (<span style=\"color: #ff0000;\">This command will create <strong>keytab<\/strong> file and map user service account with AD user created in previous step<\/span>)<br \/>\n<strong><br \/>\n3.<\/strong> Copy <strong>keytab<\/strong> file (generated in previous step) to OAM Server<br \/>\n<strong><br \/>\n4.<\/strong> Create kerberos configuration file (<span style=\"color: #ff0000;\">krb5.conf or any other name<\/span>) with details like <strong>AD Domain<\/strong>, <strong>KDC Server<\/strong><\/p>\n<p><strong>5.<\/strong> At this stage you should have <strong>keytab<\/strong>, <strong>kerberos conf file<\/strong>, and <strong>user used as SPN<\/strong> used earlier<\/p>\n<p><strong>6.<\/strong> Go to OAM and from OAM Console and define Keberos Plug-In (This plug-in uses Identity store defined as default. Make sure AD is defined as <a href=\"https:\/\/onlineappsdba.com\/index.php\/2011\/07\/11\/oid-11g-integration-with-oam-11115-for-identity-store\/\">default Identity Store<\/a>\u00a0in OAM 11g )<\/p>\n<p><a href=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_3.png\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-3248\" title=\"WNA_3\" src=\"https:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_3.png\" alt=\"\" \/><\/a><br \/>\n<strong>7.<\/strong> Verify Kerberos authentication scheme uses challenge method WNA and Authentication Module kerberos<\/p>\n<p><strong>8.<\/strong>\u00a0To enable debug related to kerberos for OAM use java flag<br \/>\n<span style=\"color: #ff0000;\">-Dsun.security.krb5.debug=true \u00a0-Dsun.security.spnego.debug=true<\/span><\/p>\n<p><strong>9.<\/strong> Configure resource in OAM to use <strong>Kerberos Authentication Scheme<\/strong><\/p>\n<p>.<\/p>\n<p><span style=\"text-decoration: underline;\"><strong>References\/Related<\/strong><\/span><\/p>\n<ul>\n<li>1379388.1 OAM 11g : How to use OAM 11.1.1.5 and NTLM\/Kerberos negotiation with Windows 7<\/li>\n<li>1299411.1 OAM 11g : What is the Difference between IWA and WNA ?<\/li>\n<li>1416860.1 OAM 11g WNA Step by Step Setup Guide<\/li>\n<li>1416903.1 Oracle Access Manager 11g WNA Quick Start Guide<\/li>\n<li><a href=\"http:\/\/docs.oracle.com\/cd\/E21764_01\/doc.1111\/e15740\/wna.htm#AIING3945\">OAM 11g integration for WNA<\/a><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This post covers key points and documents required to integrate Oracle Access Manager (OAM) 11g using Windows Native Authentication (WNA) [&hellip;]<\/p>\n","protected":false},"author":115,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[429],"tags":[],"class_list":["post-3240","post","type-post","status-publish","format-standard","hentry","category-oam"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -\" \/>\n<meta property=\"og:description\" content=\"This post covers key points and documents required to integrate Oracle Access Manager (OAM) 11g using Windows Native Authentication (WNA) [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/\" \/>\n<meta property=\"article:published_time\" content=\"2012-05-01T14:59:55+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2016-07-13T14:44:39+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\" \/>\n<meta name=\"author\" content=\"Masroof Ahmad\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Masroof Ahmad\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/\",\"url\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/\",\"name\":\"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -\",\"isPartOf\":{\"@id\":\"https:\/\/onlineappsdba.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\",\"datePublished\":\"2012-05-01T14:59:55+00:00\",\"dateModified\":\"2016-07-13T14:44:39+00:00\",\"author\":{\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\"},\"breadcrumb\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage\",\"url\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\",\"contentUrl\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/onlineappsdba.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/onlineappsdba.com\/#website\",\"url\":\"https:\/\/onlineappsdba.com\/\",\"name\":\"\",\"description\":\"Oracle Implementation &amp; Training Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/onlineappsdba.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\",\"name\":\"Masroof Ahmad\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"caption\":\"Masroof Ahmad\"},\"url\":\"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/","og_locale":"en_US","og_type":"article","og_title":"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -","og_description":"This post covers key points and documents required to integrate Oracle Access Manager (OAM) 11g using Windows Native Authentication (WNA) [&hellip;]","og_url":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/","article_published_time":"2012-05-01T14:59:55+00:00","article_modified_time":"2016-07-13T14:44:39+00:00","og_image":[{"url":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png","type":"","width":"","height":""}],"author":"Masroof Ahmad","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Masroof Ahmad","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/","url":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/","name":"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On -","isPartOf":{"@id":"https:\/\/onlineappsdba.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage"},"image":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage"},"thumbnailUrl":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png","datePublished":"2012-05-01T14:59:55+00:00","dateModified":"2016-07-13T14:44:39+00:00","author":{"@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb"},"breadcrumb":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#primaryimage","url":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png","contentUrl":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2012\/05\/WNA_2.png"},{"@type":"BreadcrumbList","@id":"https:\/\/onlineappsdba.com\/index.php\/2012\/05\/01\/oam-11g-integration-with-microsoft-windows-active-directory-wna-iwa-kerberos-for-zero-sign-on\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/onlineappsdba.com\/"},{"@type":"ListItem","position":2,"name":"OAM 11g integration with Microsoft Windows Active Directory (WNA, IWA, Kerberos) for Zero Sign-On"}]},{"@type":"WebSite","@id":"https:\/\/onlineappsdba.com\/#website","url":"https:\/\/onlineappsdba.com\/","name":"","description":"Oracle Implementation &amp; Training Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onlineappsdba.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb","name":"Masroof Ahmad","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","caption":"Masroof Ahmad"},"url":"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/"}]}},"_links":{"self":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/3240","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/users\/115"}],"replies":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/comments?post=3240"}],"version-history":[{"count":0,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/3240\/revisions"}],"wp:attachment":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/media?parent=3240"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/categories?post=3240"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/tags?post=3240"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}