Skip Headers
Oracle® Identity Manager Connector Guide for Microsoft Active Directory Password Synchronization
Release 9.1.1

E11218-13
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
PDF · Mobi · ePub

What's New in Oracle Identity Manager Connector for Microsoft Active Directory Password Synchronization?

This chapter provides an overview of the updates made to the software and documentation of the Microsoft Active Directory Password Synchronization connector in release 9.1.1.5.

The updates discussed in this chapter are divided into the following categories:

Software Updates

The following sections discuss software updates:

Software Updates in Release 9.1.1.5

The following is a software update in release 9.1.1.5:

Support for New Oracle Identity Manager Release

From this release onward, the connector can be installed and used on a target system that can access a running instance of Oracle Identity Manager 11g release 1 (11.1.1). Where applicable, instructions specific to this Oracle Identity Manager release have been added in the guide.

See Section 1.2, "Certified Components" for more information.

Software Updates in Release 9.1.1.4

The following are software updates in release 9.1.1.4:

Support for Customizing the Location of OU

From this release onward, you can customize the location of OU (Persistent Store) only while installing the connector. You can now create it under a different OU. However, once the OU is created, you cannot change its location.

See Section 2.2.1, "Installing the Connector" for more information about Persistent Store.

Resolved Issues

The following are issues resolved in release 9.1.1.4:

Bug Number Issue Resolution

9110130

The connector did not allow the setting of time delay to less than one minute.

If the connector was installed on two Domain Controllers, and the password change operations were initiated on both within one minute, then the order in which the password reset operations were processed was incorrect.

This issue has now been resolved. The password change operations are now carried out in the correct sequence.


Software Updates in Release 9.1.1

The following are software updates in release 9.1.1:

Architecture of the Connector Has Been Modified

The architecture of the password synchronization connector has been completely modified. Major changes made in the new, fault-tolerant architecture of the connector are discussed in the subsequent sections.

No Dependency on the Microsoft Active Directory User Management Connector

In earlier releases, you had to install the Microsoft Active Directory User Management connector before you could start using the password synchronization connector. From this release onward, the password synchronization connector does not use any component of the user management connector. At the same time, password propagation from Microsoft Active Directory to Oracle Identity Manager can be configured to complement the features offered by the user management connector.

Support for Password Propagation through SPML Web Service

In earlier releases, the connector used the Oracle Identity Manager APIs for password propagation from Active Directory to Oracle Identity Manager. From this release onward, the connector uses SPML Web service for password propagation to Oracle Identity Manager.

Support for Storing Configuration Parameters in the Registry

The connector stores all configuration parameters of the connector in the Microsoft Windows Registry. This enables you to reconfigure the configuration parameters without reinstalling the connector. This feature also replaces the xlconfig.xml file that was used to store configuration parameters in earlier releases.

See "Reconfiguring the Connector" for more information.

Support for Retrying Password Propagation when Oracle Identity Manager is not Available

In the earlier releases, if Oracle Identity Manager was not available, then the connector did not retry propagating the password to Oracle Identity Manager. From this release onward, the connector retries password propagation if Oracle Identity manager is not available.

See "Connector Architecture" for more information.

No Requirement for Creating an Attribute in Microsoft Active Directory to Track Password Changes

In earlier releases, the connector required an attribute to be created in Microsoft Active Directory to act as a flag for tracking password changes initiated by Oracle Identity Manager. From this release onward, this attribute is not required.

No Requirement for Reinstalling the Connector if the Account Used by the Connector for Logging in to Oracle Identity Manager is Changed

In earlier releases, if you had changed the password of the account that the connector used to log in to Oracle Identity Manager during a password synchronization operation, then you had to reinstall the connector with the changed password. From this release onward, you can reconfigure the connector whenever you change the login credentials of the account that the connector uses for logging in to Oracle Identity Manager during a password synchronization operation. This eliminates the need for reinstalling the connector.

See "Reconfiguring the Connector" for more information.

Resolved Issues

The following are issues resolved in release 9.1.1:

Bug Number Issue Resolution

7276037

IT resource name in the adsynch.log file was not localized.

This issue does not apply for this release of the connector. In this release, the IT resource name is not recorded in the log file.

7272742 and 7293723

After you installed the connector, logging was automatically enabled. You could not disable it. In addition, you could not specify or change or the log level.

This issue has now been resolved. You can now enable and disable logging for the password synchronization connector.

See "Enabling and Disabling Logging" for more information.


Additions to the List of Known Issues

In the "Known Issues" chapter, the following items has been added:

Bug 8361237

Information about events that occur during connector installation are recorded in the oimpwdsync.log file, which is located in the %TEMP% directory.

The oimpwdsync.log file is not deleted when you reinstall or reconfigure the password synchronization connector.

Software Updates in Release 9.1.0.1

The following is a software update in release 9.1.0.1:

Single Installer for Both 32-Bit and 64-Bit Microsoft Windows

A single installer has been developed for Microsoft Active Directory running on 32-bit and 64-bit Microsoft Windows. Corresponding changes have been made in this release of the guide.

Software Updates in Release 9.1.0

The following are software updates in release 9.1.0:

Support for 32-Bit and 64-Bit Microsoft Windows

The password synchronization connector has separate installers for Microsoft Active Directory running on 32-bit and 64-bit Microsoft Windows.

Oracle Identity Manager Flag Field for Tracking Password Changes Is Automatically Created

An Oracle Identity Manager flag field is used to track password changes propagated by the connector. In earlier releases, you had to manually create this field in Oracle Identity Manager. From this release onward, the field is automatically created in Oracle Identity Manager when you install the Microsoft Active Directory User Management connector.

Support for Signature-Based Authentication

The password synchronization connector supports signature-based authentication. This is an alternative to password-based authentication for connecting to Oracle Identity Manager during password synchronization operations.

Information specific to signature-based authentication has been provided at various places in this guide.

Documentation-Specific Updates

The following sections discuss documentation-specific updates:

Documentation-Specific Updates in Release 9.1.1.5

The following documentation-specific update has been made in revision "13" of release 9.1.1.5:

The "Oracle Identity Manager" and "Target systems and target system host platforms" rows of Table 1-2, "Certified Components" have been modified.

The following documentation-specific updates have been made in revision "12" of release 9.1.1.5:

The following documentation-specific updates have been made in the earlier revisions of release 9.1.1.5:

Documentation-Specific Updates in Release 9.1.1.4

The following are documentation-specific updates in release 9.1.1.4:

Documentation-Specific Updates in Release 9.1.0.1

The following are documentation-specific updates in release 9.1.0.1: