We need to implement security where we have Authentication happening through Active Directory and have Authorisation occurring through database tables. I thought it might be possible to use two security providers with one getting Active Directory authorisation details and then a second provider (Read Only SQL Authenticator) getting group information from the database. But the user details are not stored in the database. So I don't think the database provider will ever work because I assume it tries to authenticate against the database as well. There is no option to just return group information.
I found this site because I see Faisal commented on an Oracle Forum about needing to create a security provider to achieve this. I was wondering if you had any further details on how this can be done.
Login below to reply: