Oracle Cloud Infrastructure Federation with Microsoft Azure Active Directory
Oracle and Microsoft recently announced a cloud partnership that enables cross-cloud networking, unified identity and access management, and a collaborative and integrated support model across Microsoft Azure and Oracle Cloud Infrastructure. In part 1 and part 2 of the blog series “Building Multicloud Applications On Microsoft Azure and Oracle Cloud Infrastructure,” Vinay Rao and I talked about setting up specific multicloud use cases in which applications running on Microsoft Azure access Oracle Autonomous Database on Oracle Cloud.
This post focuses on the unified identity and access management (IAM) between Oracle Cloud Infrastructure and Microsoft Azure.
If your organization already has Azure Active Directory (Azure AD) in place for Office 365 or any other services, then you can extend the use of Azure AD for Oracle Cloud Infrastructure Console and Oracle Applications such as Oracle E-Business Suite and PeopleSoft. Oracle Cloud Infrastructure supports federation with Azure AD, Oracle Identity Cloud Service (IDCS), and other identity providers that support SAML 2.0. This federation lets you use your existing credentials to create and manage Oracle Cloud Infrastructure resources. Enterprises can further drive automation across multicloud deployments by using Terraform and Azure AD.
The federation involves setting up Oracle Cloud Infrastructure as a basic SAML single-sign-on application in Azure AD. You can start by capturing the federation metadata document from Oracle Cloud Infrastructure and using it to simplify configuration on Azure AD. Then you download the Azure AD SAML metadata document and use it to set up and configure Azure AD as an identity provider (IdP) on Oracle Cloud Infrastructure. Ten main steps are provided in the documentation, but here is a video that shows how to do it in about 10 minutes.
Oracle Cloud Infrastructure federation with Azure AD is the icing on the new partnership. It unifies the identity and access management and helps drive automation. You can learn the general concepts and about federation with other identity providers in the IAM documentation.