Add an Oracle JD Edwards Application
The purpose of this tutorial is to walk through the process of setting up an Oracle JD Edwards application with Okta through the Access Gateway Admin UI.
Tip
This application is part of a class of applications which exchange user information using header variables. For more information about the Access Gateway generic header application please see Add a generic header application.
Access Gatewayalso provides a sample header application. Please see Add a sample header application for more information.
Before You Begin
- Access Gateway is installed and configured for use.
See Manage Access Gateway deployment. - Access Gateway has been configured to use your Okta tenant as IDP.
See Configure your Okta tenant as Identity Provider for more information about configuring your Okta tenant as an IDP. - You have administrator rights on your Okta tenant and can assign applications to users, and create groups.
- You have access to the JD Edwards EnterpriseOne Server Manager Management console and can configure Single Sign on.
What’s covered in this guide
- Enable Single sign-on in JD Edwards EnterpriseOne Console
- Create the Application in Access Gateway
- Configure the Application
- Test the Application
Enable Single sign-on in JD Edwards EnterpriseOne Console
To enable single sign-on in the JD Edwards environment:
- Sign in to the JD Edwards EnterpriseOne Server Manager Management console as an administrator.
- In Select Instance, select EnterpriseOne HTML Server.
- In the Configuration tile, select View as Advanced, and then click Security.
- Select the Enable Oracle Access Manager check box, and then enter
https://jde-appgate.example.com/spgwLogout in the Oracle Access Manager Sign-Off URL field. - Click Apply in the Security Server Configuration section.
- In Select Instance, select EnterpriseOne HTML Server,
- Click Stop, and confirm that you want to stop the managed instance.
If a message indicates that the web server configuration (jas.ini) is out-of-date, click Synchronize Configuration. - Click Start and confirm that you want to start the managed instance.
Create the Application in Access Gateway
To create the application in Access Gateway:
- Sign into the Access Gateway Admin UI console.
-
Click the Applications tab.
-
Click +Add to add a new application.
-
Select Oracle JD Edwards Enterprise One from the application menu, and click Create.
Note
Please see the Supported technologiessection in Supported technologies support matrix for supported applications and software versions.
Configure the Application
To configure the Access Gateway JD Edwards application.
- In the Essentials pane enter:
Field Value Label The name of the application,
For example: JD EdwardsPublic Domain The externally facing URL of the application.
For example: https://jde-external.<gateway.info>Protected Web Resource The URL and port combination of the Oracle JD Edwards Implementation being protected.
For example: http://jde-app.domain.tld:7005Post Login URL Enter an appropriate target URL.
For example https://jde-external.<gateway.info>.com/jde/owhtml.
Note that the post login URL may contain other elements specific to the implementation.Group The group containing users who can access the JD Edwards instance. -
Click Next.
The Attributes pane appears.For detailed information on the attribute options, see Application attributes .
- Confirm the IDP login field.
Note
By default the JD Edwards application template send the login field as the JDE_SSO_UID header.
Change the value of the header field if required.
In addition, you may add any additional header fields required by the application -
Click Next.
The Policies pane displays.For detailed information on the advanced policy directives seeAdvanced Access Gateway Policy
- On the root policy row click the Pencil icon
. - Expand the Advanced sub-tab.
- In the Custom configuration tab enter a proxy redirect for the target JD Edwards application.
For example:
proxy_redirect http://jde-app.domain.tld:7005 https://$host:$server_port; -
Click Not validated when complete.
If all values are entered correctly the Not Validated button will change to green/Validated.
- Click Okay.
- Click Done.
Test the Application
-
Select SP Initiated or IDP Initiated from the drop down menu associated with the application.
Note
Your Okta tenant administrator may need to assign the application to you.
In addition, if you do not already have an active session for Okta open in your browser, you may be prompted to log in to your Okta account and provide credentials. - Verify that you are logged into Oracle JD Edwards application correctly.
See Also
- For information about the generic header application please see Add a generic header application.
- For information about the sample header application please see Add a sample header application.
- For information on the sample policy application please see Add a sample policy application.
- For general application troubleshooting please see Troubleshoot applications.
- Add or review application essential settings. For more details see About application essentials and Manage application essentials.
- Add application behaviors. For details and examples of behaviors see About application behaviors.
- Add fine grained policy to further protect resources. An overview of user policy can be found in About application policy.
For details and examples of policy see Manage application policy . - Extend existing policy using Custom configuration, see Advanced Access Gateway Policy.
- Define one or more certificates for use with this application. See Configure certificates.
- Add supplemental database or LDAP based data stores. For more information see Administer data stores.