469,366 Members | 2,546 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,366 developers. It's quick & easy.

Odp.net and Proxy (n-tier) Authentication

We are investigating using Proxy Authentication from asp.net web forms. The
idea is that we could preserve the identity of individual users in Oracle
without maintaining separate Oracle passwords for each of them.

This connection (odp.net) does just that:
con.ConnectionString ="Data Source=DB1;User Id=RealUser;Proxy User
Id=TechnicalUser; Proxy Password=TechnicalUser"

The concern is how to protect the Proxy Password. Leaving it in clear text
in code is not acceptable. I am looking for suggestions of secure methods of
handling this password. I know this is not an 'Oracle server' issue but it
is an issue that must be resolved before we can adopt an attractive feature
of Oracle.

Today we do not store any passwords, each user is prompted to enter his own
password which is then authenticated by Oracle. We do not have Oracle
Advanced Security. We do have more than one Oracle database and the goal is
to reduce the number of passwords each user has to remember and change on a
regular basis.
Jul 19 '05 #1
0 2131

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

4 posts views Thread by O. Koch | last post: by
2 posts views Thread by toa | last post: by
1 post views Thread by Brian Campbell | last post: by
1 post views Thread by ThatsIT.net.au | last post: by
1 post views Thread by CARIGAR | last post: by
1 post views Thread by Marylou17 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.