My Oracle Support Banner

Questions Regarding Implementing OFSAA with LDAP (Doc ID 1380894.1)

Last updated on MAY 31, 2018

Applies to:

Oracle Financial Services Analytical Applications Infrastructure - Version 7.2 and later
Information in this document applies to any platform.
Oracle Financial Services Analytical Applications (OFSAA)
Lightweight Directory Access Protocol (LDAP)
Active Directory (AD)


This document lists frequently asked questions regarding implementing Oracle Financial Services Analytical Applications (OFSAA) with LDAP security and Microsoft Active Directory (MS AD).

Questions and Answers

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Questions and Answers
 How do you configure OFSAA with LDAP?
 Is the use of multiple LDAP directories supported in OFSAA?
 Can you exclude high-level administration accounts from the LDAP Login Process?
 For Microsoft LDAP, does OFSAA support having the user login using the Windows login credentials?
 For MS LDAP, are there instructions for configuring OFSAA so that, when a user enters the application URL, their credentials are validated automatically against MS Active Directory (AD), the login page is bypassed, and they are automatically forwarded to the application screen?
 Can you create user groups in the MS AD so that addition/deletion/modification of users to the predefined groups can be done in the MS AD without having to do at the OFSAA application level?
 Are any patches required to install MS LDAP with OFSAA 7.2 (patches were required for 7.1)?
 Does OFSAA Support Oracle Identity Manager (OIM)?
 Which versions of Oracle Internet Directory and MS Active Directory is Infrastructure 7.2.9 compatible with?
 Is OPEN LDAP 2.2.29 required if OFSAA can directly link to MS Active Directory (AD)?
Does OFSAA persistently connect/bind?
Will the OFSAA support the disable of DNS caching?
Will the OFSAA support searching with a blank or anonymous ID/Password?
Will the OFSAA require the extension of the directory schema?
How will the OFSAA search for users in the directory?
Is there an OFSAA requirement for group nesting?
How will OFSAA authorize users?
Does OFSAA use internal tables to store authorization information?
Does OFSAA pull the authorization attribute from the user?
Does OFSAA make a LDAP query against the user for authorization?
Does OFSAA pull the authorization attribute from a group?

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.