Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo
back

Oracle Cloud Resources

Managing Oracle Identity Providers

search

Please Note:

Managing Oracle Identity Providers

This section describes how to manage Oracle identity providers on CCKM. Before proceeding, a connection to your Oracle account must exist on the CipherTrust Manager. Refer to Connection Manager for details.

Oracle identity providers can be added, viewed, modified, or deleted on the External Vaults tab of the Oracle Vaults page. Oracle identity providers are required when adding the Oracle external vaults, refer to External Vaults for details.

Creating Identity Providers

An issuer or an openId configuration URL is required to create an identity provider.

To create an identify provider:

  1. Open the Cloud Key Manager Application.

  2. In the left pane, click Containers > Oracle Vaults.

  3. Click the External Vaults tab.

  4. Under IDENTITY PROVIDERS, click Create Identity Provider. The Create Identity Provider screen is displayed.

  5. Specify a unique Name for the provider. This is a mandatory field.

  6. Select the Provider Verifier. This is a mandatory field.

    The verifier can be:

    • Issuer: Select and specify the valid Issuer and jwksURL. The jwksURL field is optional, and is populated automatically based on the specified issuer.

    • OpenId Configuration URL: Select and specify the OpenId Configuration URL. The URL must be valid. For example, when using SafeNet Trusted Access (STA) as an identity provider, the URL is represented by WELL KNOWN CONFIGURATION URL on the STA Management Console.

  7. Click Next. The Confirm and Create screen is displayed.

  8. Verify the provider details. If the details are incorrect or you want to modify them, click Back and update the details.

  9. Click Save.

The newly created identity provider appears in the providers list. Similarly, add as many identity providers as required.

Viewing Identity Providers

The Oracle Vaults page shows the available identity providers. The IDENTITY PROVIDERS section shows the Name, Issuer, OpenID Configuration URL, and jwksURL.

To view identity providers:

  1. Open the Cloud Key Manager application.

  2. In the left pane, click Containers > Oracle Vaults.

  3. Click the External Vaults tab.

  4. Navigate to IDENTITY PROVIDERS. The list of identity providers is displayed.

    The following details are shown:

    ColumnDescription
    NameName of the identity provider.
    IssuerIssuer string from the identity provider JWT.
    OpenID Configuration URLURL of the OpenID configuration.
    jwksURLURL of JWKS.

Deleting Identity Providers

When an identity provider is no longer needed, delete it from the CipherTrust Manager. Before deleting the provider, ensure that it is not in use by any external vaults.

To delete an identify provider:

  1. Open the Cloud Key Manager application.

  2. In the left pane, click Containers > Oracle Vaults.

  3. Click the External Vaults tab.

  4. Under IDENTITY PROVIDERS, click the overflow icon Overflow Icon corresponding to the provider you want to delete.

  5. Click Delete.

    A warning message appears stating that the provider will be deleted permanently. Do you want to delete this identity provider?

  6. Select I wish to delete the identity provider.

  7. Click Delete.

The identity provider is removed from the providers list.