Skip Headers
Oracle® Identity Manager Administrative and User Console Guide
Release 9.1.0
Part Number E10360-03
Home
Book List
Index
Contact Us
Next
View PDF
Contents
List of Figures
List of Tables
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Documentation Updates
Conventions
Part I General Features
1
Introduction to the Administrative and User Console
Understanding User Roles and Capabilities
Overview of the Resource Model
Approval Processes
Provisioning Processes
2
Self-Registration Using the Administrative and User Console
Creating Oracle Identity Manager Accounts
Changing Passwords
Tracking Self-Registration Requests
Logging In to the Administrative and User Console
Logging Out of the Administrative and User Console
3
Using the Administrative and User Console
Searching in the Administrative and User Console
Constructing a Search (or Query)
Using Wildcards
Understanding How Search Works
Customizing the Display of Data in the Administrative and User Console
Truncating Text Entries
Displaying Process Forms with Child Tables
4
Managing Your Account
Viewing and Modifying Account Profiles
Changing Passwords
Specifying Questions and Answers for Password Change and Retrieval
Delegating Responsibilities to a Proxy
5
Managing Your Resources
Viewing Resources
Viewing Resource Requests
Requesting New Resources
6
Administering Requests
Creating and Managing Requests
Granting Resources
Disabling Resources
Reenabling Resources
Revoking Resources
Tracking Requests
Searching for Requests
Viewing Approval Details
Viewing Provisioning Details
Viewing Provisioning Details by User/Organization
Viewing Provisioning Details by Resource
Viewing Request Comments
Viewing Request Status History
7
Managing Your To-Do List
Reviewing Pending Approvals
Managing the Display of Pending Approvals
Managing Open Tasks
Viewing Open Tasks
Retrying Rejected Tasks
Reassigning Open Tasks
Setting Responses to Open Tasks
Manually Completing Rejected Tasks
Managing the Display of Open Tasks
Managing Attestation Requests
Viewing Attestation Requests
Saving Attestation Actions
Updating Comments and Delegations
Submitting Attestations
8
Creating and Managing Users
Creating Users
Editing User Profiles
Disabling Users
Changing User Passwords
Managing Users
9
Creating and Managing Organizations
Creating Organizations
Managing Organizations
Searching for and Viewing Organizations
Enabling Organizations
Disabling Organizations
Deleting Organizations
Managing Organization Details
10
Creating and Managing User Groups
Creating Groups
Managing Groups
Searching for User Groups
Deleting User Groups
Viewing and Administering a User Group
Members and Subgroups
Menu Items
Administrative Groups
Access Policies
Membership Rules
Data Object Permissions
Allowed Reports
11
Creating and Managing Access Policies
Features of Access Policies
Creating Access Policies
Managing Access Policies
12
Working with Resources
Viewing Resource Details
Working with Organizations Associated with Resources
Using the Resource Administrator Option
Assigning User Groups as Administrators for Resources
Creating Administrator Groups
Updating Permissions of an Administrative Group
Using the Resource Authorizers Option
Using the Resource Workflows Option to View Workflows
Opening the Workflow Visualizer
Elements of the Workflow Visualizer
Using the Provisioning Workflow Definition Event Tabs
Operations on the Workflow Visualizer
Rearranging Elements
Using the Expansion Nodes
Accessing the Task Details
Using the Resource Workflows Option to Create and Modify Workflows
Opening the Workflow Designer
Creating a Workflow
Workflow Designer Main Page
Information
Toolbar
Designer Page
Menu Section
Creating and Configuring Tasks and Responses
General Menu Options
Task Options
Response Options
Link Options
Configuring Tasks
Configuring Responses
Configuring Data Flows
Form Data Flows
Reconciliation Data Flows
Creating IT Resources
Managing IT Resources
Viewing IT Resources
Modifying IT Resources
Deleting IT Resources
Creating Scheduled Tasks
Managing Scheduled Tasks
Viewing Scheduled Tasks
Modifying Scheduled Tasks
13
Using the Deployment Manager
Exporting Deployments
Importing Deployments
Deployment Manager Actions on Reimported Scheduled Tasks
Importing an XML File
Best Practices Related to Using the Deployment Manager
14
Working with Reports
Overview of Operational Reports
Overview of Historical Reports
Running Reports
Display of Data in Report
Using Report Filters
Change Input Parameters
CSV Export
Detail Page Links
Creating Reports Using Third-Party Software
15
Working with the Attestation Feature
About Attestation
Definition of an Attestation Process
Attestation Process Control
Components of Attestation Tasks
Attestation Inbox
Attestation Request
Delegation
Attestation Lifecycle Process
Stage 1: Creation of an Attestation Task
Stage 2: Acting on an Attestation Task
Stage 3: Processing a Submitted Attestation Task
Attestation Engine
Attestation Scheduled Task
Attestation-Driven Workflow Capability
Attestation E-Mail
Notify Attestation Reviewer
Notify Delegated Reviewers
Notify Process Owner About Declined Attestation Entitlements
Notify Process Owner About Reviewers with No E-Mail Defined
Attestation Process Configuration
Menu Structure
System Control
Creating Attestation Processes
Managing Attestation Processes
Editing Attestation Processes
Disabling Attestation Processes
Enabling Attestation Processes
Deleting Attestation Processes
Running Attestation Processes
Managing Attestation Process Administrators
Viewing Attestation Process Execution History
Using the Attestation Dashboard
Viewing Attestation Request Details
E-Mail Notification
Attestation Grace Period Expiry Checker Scheduled Task
16
Working with the Diagnostic Dashboard
Introduction to the Diagnostic Dashboard
Installation Tests
Postinstallation Tests
Installing the Diagnostic Dashboard
Installing the Diagnostic Dashboard on Oracle Application Server
Deploying on JBoss Application Server
Deploying on IBM WebSphere Application Server
Deploying on BEA WebLogic Server
Launching the Diagnostic Dashboard
Using the Diagnostic Dashboard
Test Details and Parameters
Microsoft SQL Server JDBC Libraries Availability Check
Microsoft SQL Server Prerequisites Check
Oracle Database Prerequisites Check
WebSphere Embedded JMS Server Status
Database Connectivity Check
Account Lock Status
Data Encryption Key Verification
Scheduler Service Status
Remote Manager Status
JMS Messaging Verification
Target System SSL Trust Verification
Java VM System Properties Report
WebSphere Version Report
Oracle Identity Manager Libraries and Extensions Version Report
Oracle Identity Manager Libraries and Extensions Manifest Report
SSO Diagnostic Information
Test Basic Connectivity
Test Provisioning
Test Reconciliation
Part II Integration Solutions Features
17
Installing Predefined Connectors
Overview of the Connector Installation Process
Creating the User Account for Installing Connectors
Installing a Predefined Connector
18
Configuring Connectors for Installation and Testing
Structure of the Configuration XML File
connector Element
connector-name Element
connector-version Element
filecopy Element
destination Element
file Element
configuration Element
source Element
file Element
pre-Install Element
title Element
step Element
dependency-connector Element
dependency-connector-name Element
dependency-connector-version Element
Developing the Test Class for the Connector
Structure of the Connector Pack Directory
19
Introduction to Generic Technology Connectors
Requirement for Generic Technology Connectors
Functional Architecture of Generic Technology Connectors
Providers and Data Sets of the Reconciliation Module
Providers and Data Sets of the Provisioning Module
OIM Data Sets
Features of Generic Technology Connectors
Features Specific to the Reconciliation Module
Trusted Source Reconciliation
Account Status Reconciliation
Full and Incremental Reconciliation
Batched Reconciliation
Reconciliation of Multivalued Attribute Data (Child Data) Deletion
Failure Threshold for Stopping Reconciliation
Other Features
Custom Data Fields and Field Mappings
Custom Providers
Multilanguage Support
Custom Date Formats
Propagation of Changes in OIM User Attributes to Target Systems
Roadmap for Information on Generic Technology Connectors in This Guide
20
Predefined Generic Technology Connector Providers Shipped with Oracle Identity Manager
Shared Drive Reconciliation Transport Provider
CSV Reconciliation Format Provider
SPML Provisioning Format Provider
Run-Time Parameters
Design Parameters
Nonmandatory Parameters
Parameters with Predetermined Values
Web Services Provisioning Transport Provider
Configuring SSL Communication Between Oracle Identity Manager and the Target System Web Service
Transformation Providers
Concatenation Transformation Provider
Translation Transformation Provider
Configuring Account Status Reconciliation
Validation Providers
21
Creating Custom Providers for Generic Technology Connectors
Role of Providers
Role of Providers During Generic Technology Connector Creation
Role of Providers During Reconciliation
Role of Providers During Provisioning
Creating Custom Providers
Determining Provider Requirements
Determining the Reconciliation Provider Requirements
Determining the Provisioning Provider Requirements
Identifying the Provider Parameters
Developing Java Code Implementations of the Value Objects
Developing Java Code Implementations of the Provider SPI Methods
Developing Java Code for Logging and Exception Handling
Creating the Provider XML File
Creating Resource Bundle Entries for the Provider
Deploying the Provider
Reusing Providers
Reusing Reconciliation Providers
Reusing Provisioning Providers
22
Creating Generic Technology Connectors
Determining Provider Requirements
Selecting the Providers to Be Included in the Generic Technology Connector
Addressing the Prerequisites for Creating the Generic Technology Connector
Using the Administrative and User Console to Create the Generic Technology Connector
Step 1: Provide Basic Information Page
Step 2: Specify Parameter Values Page
Step 3: Modify Connector Configuration Page
Adding or Editing Fields in Data Sets
Removing Fields from Data Sets
Removing Mappings Between Fields
Removing Child Data Sets
Step 4: Verify Connector Form Names Page
Step 5: Verify Connector Information Page
Configuring Reconciliation
Configuring Provisioning
Enabling Logging for the Generic Technology Connector
23
Managing Generic Technology Connectors
Modifying Generic Technology Connectors
Exporting Generic Technology Connectors
Importing Generic Technology Connectors
Upgrading Generic Technology Connectors to Oracle Identity Manager Release 9.1.0
24
Best Practices for Creating and Using Generic Technology Connectors
Step 1: Provide Basic Information Page
Step 2: Specify Parameter Values Page
Step 3: Modify Connector Configuration Page
Names of Fields
Password Fields
Password-Like Fields
Mappings
OIM Data Sets
Shared Drive Reconciliation Transport Provider
Custom Providers
Connector Objects
Modifying Generic Technology Connectors
25
Troubleshooting Generic Technology Connector Errors
Errors Encountered at the End of the Connector Creation Process
Common Errors Encountered During Reconciliation
Common Errors Encountered During Provisioning
26
Known Issues of Generic Technology Connectors
Names of Generic Technology Connectors and Connector Objects
Step 3: Modify Connector Configuration Page
Multilanguage Support
Connector Objects
General Known Issues
27
Using Oracle Identity Manager As a Target System for Provisioning Operations
28
Connector Objects Created by the Generic Technology Connector Framework
Both Reconciliation and Provisioning Are Selected
Only Reconciliation Is Selected
Only Provisioning Is Selected
Part III Appendixes
A
System Configuration Considerations for Administrators
Index
Scripting on this page enhances content navigation, but does not change the content in any way.