Longrider2
Member
All,
We are exploring our options for using Multi-factor authentication (MFA) for custom Mobile apps (specifically Azure).
If it matters, Mobile development is planned to be done using React toolset (NOT native Oracle ADF toolset)
But we are planning to access JDE via AIS server , same way as ADF apps do)
My understanding, that as per Oracle the only official way to be able to access AIS server using MFA (Multi-factor authentication services like Azure) is to configure SSO on JDE end which in turn requires setup of OAM (Oracle Access Manager)
In that case Mobile client can obtain JWS token from Azure and pass it to AIS/JDE/OAM
Although we do have some experience with OAM, we really would prefer to avoid using it due to various factors (complexity being one of them)
So, I am wondering if there are any other options that will allow us to access AIS server using Azure/MFA that do not involve OAM.
(Obviously we can setup VPN software on mobile devices as an option, but that will require users to enter their credentials multiple times which is no very convenient)
We do have LDAP integration enabled, so JDE users are authenticated against Windows Domain controllers.
We do not yet have ‘long user ID’ feature enabled, but this can be done implemented relatively quickly so logins like [email protected] will work in JDE.
App 9.1
Tools 9.2.2.4
SQL 2014, WLS 12.2.1.3, Windows 2016
We are exploring our options for using Multi-factor authentication (MFA) for custom Mobile apps (specifically Azure).
If it matters, Mobile development is planned to be done using React toolset (NOT native Oracle ADF toolset)
But we are planning to access JDE via AIS server , same way as ADF apps do)
My understanding, that as per Oracle the only official way to be able to access AIS server using MFA (Multi-factor authentication services like Azure) is to configure SSO on JDE end which in turn requires setup of OAM (Oracle Access Manager)
In that case Mobile client can obtain JWS token from Azure and pass it to AIS/JDE/OAM
Although we do have some experience with OAM, we really would prefer to avoid using it due to various factors (complexity being one of them)
So, I am wondering if there are any other options that will allow us to access AIS server using Azure/MFA that do not involve OAM.
(Obviously we can setup VPN software on mobile devices as an option, but that will require users to enter their credentials multiple times which is no very convenient)
We do have LDAP integration enabled, so JDE users are authenticated against Windows Domain controllers.
We do not yet have ‘long user ID’ feature enabled, but this can be done implemented relatively quickly so logins like [email protected] will work in JDE.
App 9.1
Tools 9.2.2.4
SQL 2014, WLS 12.2.1.3, Windows 2016