{"id":970,"date":"2008-11-22T20:37:25","date_gmt":"2008-11-23T00:37:25","guid":{"rendered":"http:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/"},"modified":"2015-12-03T08:50:48","modified_gmt":"2015-12-03T12:50:48","slug":"security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users","status":"publish","type":"post","link":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/","title":{"rendered":"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users"},"content":{"rendered":"

\"\"<\/a><\/p>\n

Security Providers<\/u> <\/strong>– are modules that provide security service to application to protect W<\/strong>eblogic resource<\/strong>. Types of security providers in WebLogic Server are
\nAuthentication <\/strong>Provider, Authorization <\/strong>Provider, Auditing <\/strong>Providers, Credential Mapping<\/strong> Provider, Identity Assertion<\/strong> Provider, Principal Validation<\/strong> Provider, Adjudication<\/strong> Providers, Role Mapping<\/strong> Providers, Certificate Lookup and Validation <\/strong>Providers, Keystore<\/strong> Providers and\u00a0Realm Adapter <\/strong>providers.<\/p>\n

Security Provider Database<\/u><\/strong> – contains users, groups, security roles, security policies and credentials. This database can be embedded LDAP server<\/strong>, properties file<\/strong> or physical database<\/strong>.<\/p>\n

Embedded LDAP server<\/u><\/strong>– WebLogic Server uses its embedded LDAP server as security provider database to store users, groups, security roles and security policies.<\/p>\n

Security Realm<\/u><\/strong>– Security Realm comprises mechanism of protecting WebLogic Resource. Each Security realm consists of security providers<\/strong>, users<\/strong>, groups<\/strong>, security roles<\/strong> and security policies<\/strong>. User must be defined in a security realm in order to access any weblogic resource belonging to that realm. Default realm in Weblogic is myrealm<\/strong>.
\nYou can configure multiple security realm in a domain but only one realm can be active at a time<\/strong>.<\/p>\n

You can configure security realm using WebLogic Console<\/strong> or WLST <\/strong>(WebLogic Scripting Tool) or JMX<\/strong> (Java Management Extension) API.<\/p>\n

.
\n\"\"<\/a><\/p>\n

.<\/p>\n

\"\"<\/a><\/p>\n

.<\/p>\n

.<\/p>\n

All Security providers<\/strong> exists within context of realm, some security provider type are compulsory<\/strong> in a security realm while others are optional<\/strong>.<\/p>\n

\"\"<\/a><\/p>\n

.<\/p>\n

Authentication Provider <\/strong>– is to prove identity of user or system.<\/p>\n

Auditing Provider <\/strong>–\u00a0 is to provide auditing services. Audit information may be written to LDAP server, Database or simple file.
\nPrincipal<\/u><\/strong> – is identity assigned to user or group as result of authentication.<\/p>\n

Subject<\/u> <\/strong>– after successful authentication, principal<\/strong> are signed and stored in subject<\/strong> for future use.<\/p>\n

\"\"<\/a><\/p>\n

.<\/p>\n

LoginModules<\/u><\/strong> – is part of Authentication Provider and responsible for authenticating users within security realm<\/strong> and for populating subject<\/strong> with necessary principal<\/strong> (user, group)
\n.<\/p>\n

Authentication<\/u><\/strong>– is process to provide credentials (username\/password, Certificate..) to provide identity of user\/system. Weblogic support following type of authentication
\na) Username\/Password<\/strong>– Username and password with or without SSL
\nb) Certificate Authentication <\/strong>– one way or two way SSL authentication where Server authenticate itself by showing SSL certificate and server can ask client for certificate.
\nc) Digest Authentication<\/strong>– using nonce, timestamp, username and digest
\nd) Perimeter Authentication<\/strong> – process of authenticating identity of remote user outside of application server domain.<\/p>\n

Authorization<\/u> <\/strong>– is process which determines which user has access on which WebLogic Resources.<\/p>\n

WebLogic Resource<\/u><\/strong>– is an Object (which represents WebLogic entity) which can be protected. for ex. ear, ejb, network etc.<\/p>\n

Security Policy<\/strong><\/u> – is kind of ACL<\/strong>(Access Control List) which determines who (user, group, role) has access to which weblogic resource. WebLogic resource is not protected till you assign security policy to it.<\/p>\n

Weblogic Server provides SSO<\/strong> with following environments
\n–<\/strong> Web Browser and HTTP Client (via SAML)
\n–<\/strong> Desktop client
\nMore on Single Sign-On with Oracle WebLogic Server coming soon ..<\/span><\/p>\n

 <\/p>\n

\n

Learn Oracle Weblogic Server Administration<\/h2>\n

 <\/p>\n

Get 100 USD OFF + 100% Money Back Guarantee<\/p>\n

Click here to get Early Bird Discounts<\/a><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

Security Providers – are modules that provide security service to application to protect Weblogic resource. Types of security providers in […]<\/p>\n","protected":false},"author":115,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[37,217],"tags":[],"class_list":["post-970","post","type-post","status-publish","format-standard","hentry","category-security","category-weblogic"],"yoast_head":"\nSecurity in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -\" \/>\n<meta property=\"og:description\" content=\"Security Providers – are modules that provide security service to application to protect Weblogic resource. Types of security providers in […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/\" \/>\n<meta property=\"article:published_time\" content=\"2008-11-23T00:37:25+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2015-12-03T12:50:48+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG\" \/>\n<meta name=\"author\" content=\"Masroof Ahmad\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Masroof Ahmad\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/\",\"url\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/\",\"name\":\"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -\",\"isPartOf\":{\"@id\":\"https:\/\/onlineappsdba.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG\",\"datePublished\":\"2008-11-23T00:37:25+00:00\",\"dateModified\":\"2015-12-03T12:50:48+00:00\",\"author\":{\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\"},\"breadcrumb\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage\",\"url\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG\",\"contentUrl\":\"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/onlineappsdba.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/onlineappsdba.com\/#website\",\"url\":\"https:\/\/onlineappsdba.com\/\",\"name\":\"\",\"description\":\"Oracle Implementation & Training Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/onlineappsdba.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\",\"name\":\"Masroof Ahmad\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"caption\":\"Masroof Ahmad\"},\"url\":\"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/","og_locale":"en_US","og_type":"article","og_title":"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -","og_description":"Security Providers – are modules that provide security service to application to protect Weblogic resource. Types of security providers in […]","og_url":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/","article_published_time":"2008-11-23T00:37:25+00:00","article_modified_time":"2015-12-03T12:50:48+00:00","og_image":[{"url":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG","type":"","width":"","height":""}],"author":"Masroof Ahmad","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Masroof Ahmad","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/","url":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/","name":"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users -","isPartOf":{"@id":"https:\/\/onlineappsdba.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage"},"image":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage"},"thumbnailUrl":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG","datePublished":"2008-11-23T00:37:25+00:00","dateModified":"2015-12-03T12:50:48+00:00","author":{"@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb"},"breadcrumb":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#primaryimage","url":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG","contentUrl":"http:\/\/onlineappsdba.com\/wp-content\/uploads\/2008\/11\/weblogic_sec_2.JPG"},{"@type":"BreadcrumbList","@id":"https:\/\/onlineappsdba.com\/index.php\/2008\/11\/22\/security-in-oracle-weblogic-realm-security-provider-authentication-authorization-users\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/onlineappsdba.com\/"},{"@type":"ListItem","position":2,"name":"Security in Oracle WebLogic : Realm, Security Provider, Authentication, Authorization, Users"}]},{"@type":"WebSite","@id":"https:\/\/onlineappsdba.com\/#website","url":"https:\/\/onlineappsdba.com\/","name":"","description":"Oracle Implementation & Training Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onlineappsdba.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb","name":"Masroof Ahmad","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","caption":"Masroof Ahmad"},"url":"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/"}]}},"_links":{"self":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/970","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/users\/115"}],"replies":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/comments?post=970"}],"version-history":[{"count":0,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/970\/revisions"}],"wp:attachment":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/media?parent=970"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/categories?post=970"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/tags?post=970"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}