Oracle Access Manager 11gr2 (OAM 11.1.2.2) Federation - How to Evaluate a Token Issuance Policy (Doc ID 2293011.1)

Last updated on AUGUST 11, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.2.8 and later
Information in this document applies to any platform.

Goal

Oracle Access Manager 11gr2 (OAM 11.1.2.2) Federation - How to Evaluate a Token Issuance Policy

When OAM Federation authenticates a user on behalf of remote SAML / OpenID 2.0 partners, it will issue a token (SAML or OpenID) containing information about the user that the partner will consume to identify the user. As a part of the creation of the token, Federation Identity Provider (IdP) can be configured to evaluate a Token Issuance Policy that will indicate if the user is allowed to perform Federation Single Sign-On (SSO) with that particular Service Provider (SP).

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms