![]() ![]() A RADIUS server is used to bridge the various authentication technologies, including the directory service and the 2FA service.Oracle Database is capable of authenticating against RADIUS servers as an external authentication service.The database user password authentication (including password complexity and management) is offloaded from the database to another directory service such as Microsoft Active Directory or an LDAP service. ![]() The basics of how Oracle Database can leverage 2FA, and how RADIUS primary and secondary authentication works, are covered in that article. Two-factor authentication is usually based on a hardware device or software application that generates a “Time-based One-time Password” (TOTP) code - usually a six-digit numeric code. Incidentally, Oracle Database has supported RADIUS authentication since Oracle8i!Ī previous article covered how to implement Oracle Database authentication including two-factor authentication (2FA). Oracle Database authenticates using the RADIUS protocol, and 2FA authentication services (including Cisco Duo) provide a software appliance that emulates the RADIUS protocol. The key to Oracle Database 2FA is RADIUS. The authentication is on a per-user basis, meaning human users of the database (such as DBAs and developers) can be authenticated using 2FA while application and service accounts are not. And Cisco Duo works very well as the 2FA provider. ![]() Oracle Database connectivity using multi-factor (MFA) or two-factor (2FA) authentication is rather simple to set up, is supported for all Oracle Database versions and editions (including SE2) without requiring any additional licenses, and is easy to use. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |