Skip Navigation Links | |
Exit Print View | |
Oracle Identity Analytics System Integrator's Guide 11g Release 1 |
1. Integrating With Oracle Identity Manager, Preferred Method
2. Integrating With Oracle Identity Manager, Deprecated Method
Understanding Terminology in Oracle Identity Analytics and Oracle Identity Manager
Step 1: Enable Oracle Identity Manager as a Provisioning Server Option
Step 2: Copy the Required .jar Files
Step 3: Designate Oracle Identity Manager as the Provisioning Server
Step 4: Enable Real-Time Updates from Oracle Identity Analytics to Oracle Identity Manager
Populating Oracle Identity Analytics With User Information From Oracle Identity Manager
Use Case 1: Importing Global Users From Oracle Identity Manager Into Oracle Identity Analytics
To Import Users From Oracle Identity Manager Into Oracle Identity Analytics
Use Case 2: Importing Resource Metadata From Oracle Identity Manager Into Oracle Identity Analytics
To Import Resource Metadata From Identity Manager Into Oracle Identity Analytics
Use Case 3: Importing Resources From Identity Manager Into Oracle Identity Analytics
To Import Resources From Identity Manager Into Oracle Identity Analytics
Use Case 4: Importing Roles From Identity Manager Into Oracle Identity Analytics
To Import Role From Identity Manager Into Oracle Identity Analytics
Populating Oracle Identity Manager With Roles Information From Oracle Identity Analytics
Use Case 1: Exporting Roles From Oracle Identity Analytics to Identity Manager
To Export Roles to Identity Manager
Understanding Closed Loop Compliance
To Configure Resources in Oracle Identity Analytics for Remediation
To Configure Certifications in Oracle Identity Analytics for Remediation
3. Integrating With Oracle Waveset (Sun Identity Manager)
4. Integrating With Other Provisioning Servers
6. Integrating With Intellitactics Security Manager
7. Configuring Oracle Identity Analytics For Web Access Control
Oracle Identity Analytics software and Oracle Identity Manager (OIM) software work together seamlessly when integrated using the Thor-API connection mechanism. When integrated, Oracle Identity Manager serves as the automated provisioning and identity synchronization solution, while Oracle Identity Analytics defines the Role-based Access Control (RBAC) framework, the attestation process, and the approach to Segregation of Duties (SoD) policy enforcement. Rather than assigning individual access entitlements, the RBAC framework allows organizations to assign and unassign roles as a means of controlling user access on various applications.
In a fully-integrated scenario, provisioning and role management works in the following manner:
OIM is the authoritative source for users, accounts, and entitlements. Any update made to the users or their corresponding accounts is done in OIM.
Oracle Identity Analytics is the authoritative source for role management and role membership. Oracle Identity Analytics is also the authoritative source for policy entitlement definitions. (Roles in Oracle Identity Analytics correspond to "groups" in OIM, and policies in Oracle Identity Analytics correspond to "access policies" in OIM.)
All roles are defined and created in Oracle Identity Analytics. All entitlements for policies and role-to-user relationships are managed from Oracle Identity Analytics.
Roles managed by Oracle Identity Analytics become read-only in OIM.
Note - Provisioning attribute definitions for Access Policies, which are required to create accounts, is managed in much the same way as the previous Oracle Role Manager(ORM) - OIM integration (by OIM or external process).