By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
438,504 Members | 1,884 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 438,504 IT Pros & Developers. It's quick & easy.

Odp.net and Proxy (n-tier) Authentication

P: n/a
We are investigating using Proxy Authentication from asp.net web forms. The
idea is that we could preserve the identity of individual users in Oracle
without maintaining separate Oracle passwords for each of them.

This connection (odp.net) does just that:
con.ConnectionString ="Data Source=DB1;User Id=RealUser;Proxy User
Id=TechnicalUser; Proxy Password=TechnicalUser"

The concern is how to protect the Proxy Password. Leaving it in clear text
in code is not acceptable. I am looking for suggestions of secure methods of
handling this password. I know this is not an 'Oracle server' issue but it
is an issue that must be resolved before we can adopt an attractive feature
of Oracle.

Today we do not store any passwords, each user is prompted to enter his own
password which is then authenticated by Oracle. We do not have Oracle
Advanced Security. We do have more than one Oracle database and the goal is
to reduce the number of passwords each user has to remember and change on a
regular basis.
Jul 19 '05 #1
Share this question for a faster answer!
Share on Google+

This discussion thread is closed

Replies have been disabled for this discussion.