It seems that oracle user is no longer required when IFS User is created in IFS Cloud.
So, when IFS Cloud is set to use Internal IDP for user authentication, where is the user password stored? If there is Oracle user for the IFS user, will Oracle password be used at all?
Neno
Hi
The IAM solution takes care of this for you. Refer this link for details. The Users section in the IFS documentation explains the 3 types of users in IFS cloud in detail.
IFS IAM (Identity and Access Management) is the default access management of IFS Cloud software which is based on an Open Source Identity Access Management called 'Keycloak'. It secures the IFS Cloud software with standard security protocol OAuth 2.0.
Regarding the question:
“If there is Oracle user for the IFS user, will Oracle password be used at all?”
This will depend on the type of user and the client used to log in. For example, it is recommended to Lock Application Owner account in IFSCLOUD. In this instance, it is necessary to disable app owner from both oracle and IFS user account. To my knowledge the oracle user credentials will not be accepted to login through the Aurena client as the users are managed from keycloak.
Thanks,
Kasun
Thank you for your answer, It’s good to know that Oracle password is not used.
But, I would like to know where user’s password is stored exactly (when Internal IDP is used). We need to make sure that part och IFs Cloud is secure and proper backed.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.