Oracle® Identity Manager Connector Guide for SAP Enterprise Portal Release 9.0.1 Part Number B31136-01 |
|
|
View PDF |
Oracle Identity Manager automates access rights management, security, and provisioning of IT resources. Oracle Identity Manager connectors are used to integrate Oracle Identity Manager with third-party applications. The connector for SAP Enterprise Portal is used to integrate Oracle Identity Manager with SAP Enterprise Portal.
Note:
Oracle Identity Manager connectors were referred to as resource adapters prior to the acquisition of Thor Technologies by Oracle.This chapter contains the following sections:
The following table lists the functions that are available with this connector.
Function | Type | Description |
---|---|---|
Create User | Provisioning | Creates a user in the SAP system |
Update User | Provisioning | Updates a user in the SAP system |
Delete User | Provisioning | Deletes a user from the SAP system |
Reset Password | Provisioning | Updates the user password in the SAP system |
Lock User | Provisioning | Locks a user in the SAP system |
UnLock User | Provisioning | Unlocks a locked user in the SAP system |
Add Role | Provisioning | Adds a role to a user in the SAP system |
Add Group | Provisioning | Adds a group to a user in the SAP system |
Remove Role | Provisioning | Removes the role of a user in the SAP system |
Remove Group | Provisioning | Removes a group from a user in the SAP system |
List Roles of User | Provisioning | Lists the roles of a user in the SAP system |
List Groups of User | Provisioning | Lists the groups of a user in the SAP system |
List All Roles | Provisioning | Lists all the roles present in the SAP system |
List All Groups | Provisioning | Lists all the groups present in the SAP system |
Reconciliation Insert Received | Reconciliation | Inserts a user into Oracle Identity Manager if a user is created in the SAP system |
Reconciliation Update Received | Reconciliation | Updates a user in Oracle Identity Manager if a user is updated in the SAP system |
Reconciliation Delete Received | Reconciliation | Deletes a user in Oracle Identity Manager if a user is deleted in the SAP system |
Note:
This release of the SAP Enterprise Portal connector does not support Secure Network Communication (SNC) or Secure Sockets Layer (SSL).This section describes the elements that the reconciliation module extracts from the target system to construct a reconciliation event record. The following are features of these elements:
The default data elements of each reconciliation event record are Organization, Xellerate type, and Role.
The default labels for the data elements in each reconciliation event record are:
Event Linked
(for successful reconciliation)
No Matched Found
(for failed reconciliation)
The TimeStamp
parameter present in the IT Resource is used for the reconciliation. Its value is the date and time from which records for reconciliation must be fetched.
The IsTrustedSource
parameter of the Task Scheduler specifies whether user reconciliation is in trusted or nontrusted mode.
When Oracle Identity Manager and the SAP Enterprise Portal system are reconciled, the following fields are mapped:
Street
City
State
Zip
Country
TimeZone
Department
ValidFrom
ValidTo
Locked
UserID (Required Field)
Password
ITResourceType
FirstName
LastName
EmailID
Language
Telephone
Fax
Mobile
Groups
Group
Roles
Role
For user reconciliation to work, the following lookup definitions must be available and the lookup values must be reconciled before the user reconciliation scheduled task is triggered.
Lookup.SAP.EP.Country
Lookup.SAP.EP.Groups
Lookup.SAP.EP.Language
Lookup.SAP.EP.Roles
Lookup.SAP.EP.TimeZone
The following fields must be specified for a provisioning task to work for SAP Enterprise Portal resource objects:
User ID
Password
First Name
Last Name
Email ID
ValidFrom
ValidTo
Note:
For the Create User task to work without portal roles, users might not be able to view the portal content in SAP Enterprise Portal.The files and directories that comprise this connector are compressed in the SAP Enterprise Portal Rev 1.0.0.zip
file, which is in the following directory on the installation media:
Enterprise Applications\SAP Enterprise Portal\
These files and directories are listed in the following table.
Instructions to copy these files into the required directories are given in Chapter 2, "Deploying the Connector".