471,073 Members | 1,379 Online
Bytes | Software Development & Data Engineering Community
Post +

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 471,073 software developers and data experts.

Odp.net and Proxy (n-tier) Authentication

We are investigating using Proxy Authentication from asp.net web forms. The
idea is that we could preserve the identity of individual users in Oracle
without maintaining separate Oracle passwords for each of them.

This connection (odp.net) does just that:
con.ConnectionString ="Data Source=DB1;User Id=RealUser;Proxy User
Id=TechnicalUser; Proxy Password=TechnicalUser"

The concern is how to protect the Proxy Password. Leaving it in clear text
in code is not acceptable. I am looking for suggestions of secure methods of
handling this password. I know this is not an 'Oracle server' issue but it
is an issue that must be resolved before we can adopt an attractive feature
of Oracle.

Today we do not store any passwords, each user is prompted to enter his own
password which is then authenticated by Oracle. We do not have Oracle
Advanced Security. We do have more than one Oracle database and the goal is
to reduce the number of passwords each user has to remember and change on a
regular basis.
Jul 19 '05 #1
0 2169

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

4 posts views Thread by O. Koch | last post: by
2 posts views Thread by toa | last post: by
1 post views Thread by Brian Campbell | last post: by
1 post views Thread by ThatsIT.net.au | last post: by
reply views Thread by leo001 | last post: by

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.