(Weblogic|Fusion Middelware) - Credential Store Framework (CSF)

Card Puncher Data Processing

About

A credential store is the repository of security data that certify the authority of entities used by Java 2, J2EE, and ADF applications. Applications can use the Credential Store, a single, consolidated service provider to store and manage their credentials securely.

Obiee11g Credential Store

A credential store provider is responsible for storing and providing access to credentials.

The default credential store provider store Credentials in files in the domain. You can reconfigure the domain to use Oracle Internet Directory, rather than files, to store Credentials.

All the credentials are stored in the file cwallet.sso. You can find it on the FMW configuration directory:

Middleware_Home\user_projects\domains\domain name\config\fmwconfig

Integration of software (OBIEE with BIP, OBIEE with EPM suite) use intensively this mechanisms. For OBIEE 10g, it was the credentialstore.xml file.

WLST

Example of WLST script from the installation of sample app to add credentials in the credential store.

connect(sys.argv[1], sys.argv[2],sys.argv[3])
createCred(map="oracle.bi.enterprise",key="wsil.browsing",user="abell",password="Admin123",desc="BI Web Services for SOA browsing key")
createCred(map="oracle.bi.actions",key="JNDIUser",user="abell",password="Admin123",desc="Used for Actions Invoking EJB Methods")
createCred(map="oracle.wsm.security",key="keystore-csf-key",user="owsm",password="Admin123",desc="Credential to open default keystore")
createCred(map="oracle.wsm.security",key="enc-csf-key",user="orakey",password="Admin123",desc="Credential to encode messages")
createCred(map="oracle.wsm.security",key="sign-csf-key",user="orakey",password="Admin123",desc="Credential to sign messages")
exit()

where:





Discover More
Obi Edition
OBIEE / Weblogic 11G - (Create|Recreate) a default authentication provider (with administrator, )

How to recreate a default OBIEE authentication provider with the following user: Weblogic Admin (Group: Administrators,BIAdministrators ) OracleSystemUser (Group: OracleSystemGroup ) BISystemUser...
Saw Object
OBIEE 11G - Action

Users can create actions in the Oracle BI Presentation Services user interface. Actions provide functionality to: navigate to related content invoke operations, functions, or processes in external...
Obiee Obiactionparameter
OBIEE 11G - Action Framework - How to create and invoke a Java Method (EJB)

This article gives insights on how an EJB session bean must be created and then invoked by the OBIEE action framework. JNDI Location: Action Framework expects EJBs to be deployed to the default...
Obiee Bisystemuser Credential
OBIEE 11G - BISystemUser

BISystem User is an internal administrator user created during installation in the Weblogic LDAP store for trusted communication between components. The password is created at random. It owns the Oracle...
Obiee11g Architecture Functional Component
OBIEE 11G - New Features and changes 11G

Oracle Business Intelligence Enterprise Edition (OBIEE) 11g is the most significant release of OBIEE since 2006. This article contains the significant changes and new features of OBIEE 11g. Oracle...
Obiee11g Security Overview
OBIEE 11G - Security

Oracle Business Intelligence uses a role-based access control model.Security is defined in terms of Application Roles that are mapped to directory server groups and users. To define a complete security...
Wlst Migratesecuritystore Migrateidstoremapping
WLST - migrateSecurityStore

Migration utility of the security stores: ... This utility works online and offline. More: You can find a configFile example: in the config fmw directory (fmw_home/user_projects/domains/bifoundation_domain/config/fmwconfig)...
Opss Architecture
Weblogic - Oracle Platform Security services (OPSS)

OPSS provides an abstraction layer in the form of standards-based application programming interfaces (APIs) that insulates developers from security and identity management implementation details. With...



Share this page:
Follow us:
Task Runner