Tables in the Rule Engine Module

This chapter describes the tables that make up the Rule Engine module.

RULES Table

Structure

RULES PK RULE_ID RULENAME DESCRIPTION STATUS_ID TYPE_ID CURRENT_VERSION_ID VERSION_COUNT RULE_CONDITION CREATEUSER UPDATEUSER CREATEDATE UPDATEDATE

Index

Index PK Unique Keys PK_RULES      ✓ Yes RULE_ID

Description

Oracle Identity Analytics can create rules that, based on attributes, assign users and roles to different components in the warehouse. For example, Oracle Identity Analytics rules can assign users and roles to business units based on HR attributes. The RULES table stores information about the rules that are created in Oracle Identity Analytics. Each rule is identified by a unique RULE_ID. The RULE_CONDITION field saves the condition that is used to define the rule. The STATUS_ID and CURRENT_VERSION_ID columns save the status and the version of the rule respectively. The TYPE_ID column identifies whether the rule is a role membership rule or a user business structure rule. In addition, the VERSION_COUNT, CREATEUSER, UPDATEUSER, CREATEDATE, and UPDATEDATE fields are used for audit purposes.

Primary Keys

PK_RULES - column RULE_ID

Foreign Keys

None

Indexes

None

RULE_OWNERS Table

Structure

RULE_OWNERS PK ID RULE_ID RULE_VERSION_ID OWNER_ID OWNER_TYPE

Indexes

Index PK Unique Keys PK_RULE_OWNERS      ✓ Yes ID

Description

The RULE_OWNERS table defines the relationship between a rule and its owner (which can be either a Globaluser or a role in Oracle Identity Analytics). The RULE_ID field refers to the rule in the RULES table, whereas the OWNER_ID field refers to either the GLOBALUSERS table or the ROLES table. The OWNER_TYPE field is used to define if the owner is a global user or a role in Oracle Identity Analytics.

Primary Keys

PK_RULE_OWNERS on column ID

Foreign Keys

None

Indexes

None

RULE_SETS Table

Structure

RULE_SETS PK ID STATUS_ID TYPE_ID RULESETNAME DESCRIPTION CREATEUSER UPDATEUSER CREATEDATE UPDATEDATE

Indexes

Index PK Unique Keys PK_RULE_SETS      ✓ Yes ID

Description

The RULE_SETS table contains grouping of rules. Every rule_set is identified by a unique ID. The RULESETNAME and DESCRIPTION fields give additional information about the rule set.

Primary Keys

PK_RULE_SETS - primary key on column ID

Foreign Keys

None

Indexes

None

RULE_SET_RULES Table

Structure

RULE_SETS RULE_ID RULE_SET_ID

Indexes

None

Description

The RULE_SET_RULES table is a composite table that contains rule-sets-to-rule associations.

Primary Keys

None

Foreign Keys

None

Indexes

None

RULE_TYPES Table

Structure

ARC_ACCOUNT_ATTRIBUTES PK ID LABEL DESCRIPTION

Index

Index PK Unique Keys PK_RULE_TYPES      ✓ YES ID

Description

The RULE_TYPES table is used to define a rule category. Two rule types are available:

• Role membership rule

• User BusinessStructure rule

Primary Keys

PK_RULE_TYPES on column ID

Foreign Keys

None

Indexes

None

RULE_VERSIONS Table

Structure

RULE_VERSIONS PK VERSION_ID VERSION_STATUS_ID VERSION_NUMBER BASE_VERSION_ID WORKFLOW_ID RULE_ID RULENAME DESCRIPTION STATUS_ID TYPE_ID RULE_CONDITION CREATEUSER UPDATEUSER CREATEDATE UPDATEDATE LAST_APPROVER LAST_APPROVAL_DATE LAST_APPROVAL_COMMENTS

Index

Index PK Unique Keys PK_RULE_VERSIONS      ✓ Yes VERSION_ID

Description

When a condition is added or removed from a rule in Oracle Identity Analytics, a rule approval process is initiated by the system. A snapshot of the existing rule is captured and saved into the RULE_VERSIONS table prior to initiation of the rule approval process. This facilitates in maintaining a rule's history, which can be accessed to compare previous versions.

Primary Keys

PK_RULE_VERSIONS - primary key on column VERSION_ID

Foreign Keys

None

Indexes

None

ROLE_MEMBERSHIP_RULE Table

Structure

ROLE_MEMBERSHIP_RULE ID NAME RULE_XML

Index

Index PK Unique Keys      ✓

Description

The ROLE_MEMBERSHIP_RULE table contains information about the rules generated to create associations between global users and roles. The RULE_XML field is a binary representation of the rule details.

Primary Keys

None

Foreign Keys

None

Indexes

None

ROLE_MEMBERSHIP_RULE_DATA Table

Structure

ROLE_MEMBERSHIP_RULE_DATA RULE_ID RULE_VERSION_ID ROLE_ID REMOVAL_ACTION GRACE_PERIOD NOTIFICATION_TEMPLATE_ID

Index

None

Description

The ROLE_MEMBERSHIP_RULE_DATA stores information about which role to assign for a role provisioning rule.

Primary Keys

None

Foreign Keys

None

Indexes

None

ROLE_MEMBERSHIP_RULE_SCANS Table

Structure

ROLE_MEMBERSHIP_RULE_SCANS PK SCAN_ID RULE_ID RULE_VERSION_ID STATUS_ID TYPE_ID RESULT_APPLIED JOB_NAME RULE_VERSION_PREVIEW ARCHIVAL_STATUS_ID ARCHIVAL_DATE DESCRIPTION CREATE_USER CREATE_DATE UPDATE_USER UPDATE_DATE DATA_XML

Index

Index PK Unique Keys PK_ROLE_MEMBERSHIP_RULE_SCANS      ✓ YES SCAN_ID

Description

The ROLE_MEMBERSHIP_RULE_SCANS tables saves information regarding the user set to be processed.

Primary Keys

PK_ROLE_MEMBERSHIP_RULE_SCANS - on column SCAN_ID

Foreign Keys

None

Indexes

None

RM_RULE_SCAN_RESULTS Table

Structure

RM_RULE_SCAN_RESULTS RULE_SCAN_ID USERS_PROCESSED CREATE_DATE UPDATE_DATE DATA_XML

Index

None

Description

The RM_RULE_SCAN_RESULTS table stores information about the users to add or remove when a rule scan is processing users.

Primary Keys

None

Foreign Keys

None

Indexes

None

USER_BU_RULE_SCANS Table

Structure

USER_BU_RULE_SCANS PK ID STATUS_ID JOB_NAME USER_SELECTION_CRITERIA_XML BUSINESSUNIT_IDS_XML USER_IDS_XML USER_FILTER_XML ARCHIVAL_STATUS_ID ARCHIVAL_DATE RESULT_APPLIED DESCRIPTION RULE_ID RULE_VERSION_ID CREATE_USER CREATE_DATE UPDATE_USER UPDATE_DATE SCAN_RESULT_ID TYPE_ID TOTAL_USERS

Index

Index PK Unique Keys PK_USER_BU_RULE_SCANS      ✓ YES ID

Description

The USER_BU_RULE_SCANS table stores information about the user set to be processed, the rule to used during the scan, and the business unit that is associated with the user. In addition, it contains general information about the scan, such as a summary and the state of the scan.

Primary Keys

PK_USER_BU_RULE_SCANS - on column ID

Foreign Keys

None

Indexes

None

USER_BU_RULE_SCAN_RESULTS Table

Structure

USER_BU_RULE_SCAN_RESULTS PK ID RULE_SCAN_ID CREATE_DATE ASSIGNED_USERS_MAP_XML UN_ASSIGNED_USERS_MAP_XML EXISTING_ASSIGNED_MAP_XML USERS_PROCESSED

Index

None

Description

The USER_BU_RULE_SCAN_RESULTS table stores information about the results of completed scans as defined in the USER_BU_RULE_SCAN_RESULTS table. This table stores information about users that are assigned and unassigned to business units as a result of the scan.

Primary Keys

PK_USER_BU_RULE_SCAN_RESULTS - on column ID

Foreign Keys

None

Indexes

None

USER_BU_RULE_EXTENDED_ATTS Table

Structure

USER_BU_RULE_EXTENDED_ATTS PK ID REMOVAL_ACTION BUSINESS_UNIT_ID GRACE_PERIOD NOTIFICATION_TEMPLATE_ID

Index

Index PK Unique Keys PK_USER_BU_RULE_EXTENDED_ATTS      ✓ YES ID

Description

The USER_BU_RULE_EXTENDED_ATTS table stores additional information about the business-structure-to-user association rules.

Primary Keys

PK_USER_BU_RULE_SCAN_RESULTS - on column ID

Foreign Keys

None

Indexes

None

USER_APPLICATION_SCANS Table

Structure

USER_APPLICATION_SCANS PK ID START_DATE END_DATE SUCCESS SCAN_TYPE MEMBERS_FOUND MEMBERS_REMOVED

Index

Index PK Unique Keys PK_AMES      ✓ YES ID

Description

The USER_APPLICATION_SCANS table stores information about application scans, such as the scan's start date and end date, members found and removed, and summary information.

Primary Keys

PK_AMES - on column ID

Foreign Keys

None

Indexes

None

USER_TRANSFERS Table

Structure

USER_TRANSFERS PK ID GLOBALUSER_ID SRM_TRANSFER_DATE

Index

None

Description

The USER_TRANSFERS table holds users for which there is a change in some predefined property. Information stored in this table includes the unique ID of the globaluser and the transfer date.

Primary Keys

None

Foreign Keys

None

Indexes

None