Oracle Network Products Getting Started Release 2.3.4 for Windows Platforms Go to Product Documentation Library 
Library
Go to books for this product 
Product
Go to Contents for this book 
Contents
Go to Index 
Index


 

Go to previous file in sequence Go to next file in sequence

Using the Advanced Networking Option

This chapter describes the following platform-specific Advanced Networking Option (ANO) configurations:

Setting Up Network Security and Single Sign-On for 
Windows NT and Windows 95

This section describes platform-specific configuration steps to perform for Network Security and Single Sign-On on the Windows NT or Windows 95 operating systems.
Additional Information: 

General configuration instructions that you must perform are described in detail in the Oracle Advanced Networking Option Administrator's Guide.

 

Biometric (Identix) Authentication Adapter

This section describes the following:

General Configuration Instructions

See Chapter 8, "Configuring and Using the Biometric Identix Authentication Adapter," of the Oracle Advanced Networking Option Administrator's Guide.

Configuring the TouchSafe II Device Driver

If during the install of Oracle Enterprise Manager's Biometrics Manager, you choose not to allow the Oracle Installer to set up your Identix TouchSafe II Device Driver, then you can configure it manually as follows.
Note: 

You need to know the IO Port that your Identix TouchSafe II is using before doing this. Refer to the Identix TouchSafe II Hardware documentation. 

 
To install the TouchSAFE II Encrypt device driver for Windows NT:
  1. Change directories to ORACLE_HOME\IDENTIX.
  2. Modify the IoPortAddress parameter in ETSIINT.INI to the current TouchSafe II Encrypt I/O port setting. For example:
  3. IoPortAddress = REG_DWORD 0x00000360  for I/O port 0x360
  4. Modify the Windows NT directory setting in ETSIINT.BAT.
  5. For example:

    COPY ETSIINT.SYS C:\WINNT35\SYSTEM32\DRIVERS
    -> COPY ETSIINT.SYS C:\WINNT351\SYSTEM32\DRIVERS
  6. Run batch file ETSIINT.BAT.
  7. Use the SetKey utility in the Identix demo program to set a hash key in Hex. Set the key to C001BABE, for example. (Do not use this value!). Make sure the hash key matches exactly the one set in the DEFAULT Security policy.
  8. Reboot the system, and the device driver starts to work.
  9. To make sure the device driver is running, check the Control Panel's Devices dialog box after reboot. The device ETSIINT should already be started.

Corrections to the Oracle Advanced Networking Option 
Administrator's Guide

Please note the following corrections and additions to Chapter 8, "Configuring and Using the Biometric Authentication Adapter," in the Oracle Advanced Networking Option Administrator's Guide.

Configuring the Biometric Authentication Service (page 9) 
The Biometric Authentication Service can be created on any 7.3 database using the PL/SQL scripts located in the IDENTIX subdirectory of your Oracle home.

If you plan to use your local Oracle database for Windows NT as your Biometric Authentication Service, you can set up your database using Server Manager as follows:

  1. Change directories to ORACLE_HOME\IDENTIX.
  2. Connect to your database as user SYSTEM from Server Manager. Enter:
  3. C:\>SVRMGR23
    SVRMGR>CONNECT SYSTEM/MANAGER
  4. Enter @nauicat from within Server Manager. For example,
  5. SVRMGR>@nauicat
    If you plan to use a remote Oracle7 database, you may either:
  6. Once you have configured the database server that is to become the authentication server, test the connection by connecting as OFM_ADMIN/OFM_ADMIN.
  7. SVRMGR>CONNECT OFM_ADMIN/OFM_ADMIN
Administering the Oracle Biometric Authentication Service (page 11) 

Before you add users, use the Identix SetKey utility to configure a (hex) hash key on each of the clients (for example: 0001BABE). The key must be the same for each client and match the DEFAULT policy hashkey. See "Add Policy (page 19)".

Add Policy (page 19) 

To add a new policy:

  1. Click Policies.
  2. Click the [+] sign (called the Create button) on the Tool Bar. The dialog box appears.
  3. Tab to or click the boxes in which the data is to be entered.
  4. Type the policy's name and the three threshold levels. See the Identix documentation for a detailed explanation of how to set these three levels.
  5. Choose a hash key (hex) for this policy. For example: C001BABE.
  6. Click the [Create] box.

Configuring the Kerberos Authentication Adapter

To use the Kerberos Authentication Adapter on an Oracle7 database, you need to have the root drive :\TMP subdirectory present.

Configuring the SecurID Authentication Adapter

If you use the SecurID Authentication Adapter on an Oracle7 database, you need the following from your SecurID administrator:

Configuring the CyberSAFE Authentication Adapter

Before using the CyberSAFE Authentication Adapter, you must:

Setting Up for Network Security and Single Sign-On for Windows 3.1x

This section describes platform-specific configuration steps to perform for Network Security and Single Sign-On on the Windows 3.1x operating systems.
Additional Information: 

General configuration instructions that you must perform are described in detail in the Oracle Advanced Networking Option Administrator's Guide.

 

Configuring the CyberSAFE Authentication Adapter

Before using the CyberSAFE Authentication Adapter, you must: Additional Information: To configure SQL*Net for use with the CyberSAFE Adapter, refer to the CyberSAFE Application Security Toolkit documentation and the Oracle Advanced Networking Option Administrator's Guide for detailed information.

Configuring the Kerberos Authentication Adapter

Before using the Kerberos Authentication Adapter, you must

Using the Oracle Kerberos Utility

The Oracle Kerberos Utility (OKU) allows you to obtain and cache Kerberos tickets. After double-clicking the OKU icon in the Oracle Program Group window, the OKU dialog box appears.

To complete configuration for Windows 3.1x:

  1. Log on and select Get Ticket.
  2. If you do not have a valid ticket-granting ticket, request one by providing your user name and password to log in to a Kerberos server. You can change the default attributes of the ticket by clicking the Options button.

  3. Select your Options.
  4. Choose OK to save changes.
  5. Choose Browse to select the cache file you want to use.
  6. You can view the ticket information by clicking Show. To remove the cache file, click Remove.

    You can leave the OKU by clicking Cancel/Close at any time.

Configuring the SecurID Authentication Adapter

You need the following information from your SecurID administrator if you use the SecurID Authentication Adapter on an Oracle7 database:
Go to previous file in sequence Go to next file in sequence 
Prev Next
Oracle 
Copyright © 1997 Oracle Corporation.  
All Rights Reserved.
Go to Product Documentation Library 
Library
Go to books for this product 
Product
Go to Contents for this book 
Contents
Go to Index 
Index