Oracle 在APEX 18.1上设置单点登录

我想知道如何在Oracle Application Express (APEX) 上设置单点登录 (SSO)？我目前正在使用APEX 18.1。目标是以链接到活动目录 (AD) 的方式设置它，以便用户只能使用一个用户名和密码。

谢谢你的关注。

蒂姆·霍尔 (Tim Hall) 在这里迈出了很好的一步

https://oracle-base.com/articles/misc/oracle-application-express-apex-ldap-authentication

您还可以将整个Apex实例转换为100% ldap托管。

MOS Note 2035320.1对此有一个步骤，在此解释:

Implementing LDAP Authentication

1.  It is recommend that you test an application first using an LDAP authentication scheme to verify that LDAP authentication is working with your LDAP users.  The settings used for the LDAP authentication scheme will be the same as those used for setting up Flexible Workspace Authentication.

2.  Once step 1 has been completed and is working successfully, from a browser Navigate to the APEX Admin Instance Admin -> Manage Instance -> Security -> Authentication Control.

3.  Select the Edit icon for the LDAP Directory scheme.

4.  Enter the LDAP attributes.  For example:

  - Host: ldap.server.information
  - Port: (You can leave empty if using the default port - 389)
  - Use SSL: No SSL
  - Distinguished Name (DN) String: cn=%LDAP_USER%,cn=users,dc=us,dc=mycompany,dc=com  (Replace the dc values with those for your domain)
  - Use Exact Distinguished Name (DN): No
  - Search Filter: uid=%LDAP_USER%
  - LDAP Username Edit Function: (leave empty)
  - Username Escaping: Standard
NOTE: In the above example the "Use Exact Distinguished Name (DN): No", if LDAP is set to disallow or deny anonymous binds then the Exact Distinguished Name section (DN): needs to  be Yes.
 

5.  Select the  Make Current Scheme option.  NOTE:  When you select this option you will received the following warning:

"Changing the current authentication scheme can render Application Express inaccessible, if parameters and the web server are not configured correctly.  In case of problems, you can set the internal authentication scheme back to the default with apex_instance_admin.set_parameter('APEX_BUILDER_AUTHENTICATION','APEX');

Are you sure that you want to change the current authentication schema now?"
6.  Select OK.

Create the Corresponding LDAP Users

The first thing that should be done is create a user with APEX Instance Administrator privileges.

1. Manage Workspaces -> Manage Developers and Users -> Create User

2. Enter  Username and Email address as a minimum.  This assumes you have an LDAP user named "adminldap."

3.  Since this will be an APEX Instance administrator, choose the Account Privileges as listed below.

4.  The Password information does not apply to the LDAP user so you can leave it blank.

5. Repeat the above to create the other Workspace Users with the appropriate APEX privileges.