1 About the Connector

Oracle Identity Manager automates access rights management, security, and provisioning of IT resources. Oracle Identity Manager connectors are used to integrate Oracle Identity Manager with third-party applications. The connector for Novell eDirectory is used to integrate Oracle Identity Manager with Novell eDirectory.

Note:

Oracle Identity Manager connectors were referred to as resource adapters prior to the acquisition of Thor Technologies by Oracle.

This chapter contains the following sections:

• Reconciliation Module

• Provisioning Module

• Supported Functionality

• Multilanguage Support

• Files and Directories That Comprise the Connector

• Determining the Release Number of the Connector

Note:

At some places in this guide, Novell eDirectory has been referred to as the target system.

Reconciliation Module

Reconciliation involves duplicating in Oracle Identity Manager additions of and modifications to user accounts on the target system. It is an automated process initiated by a scheduled task that you configure.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Framework Guide for conceptual information about reconciliation configurations

Based on the type of data reconciled from the target system, reconciliation can be divided into the following types:

• Lookup Fields Reconciliation

• User Reconciliation

Lookup Fields Reconciliation

Lookup fields reconciliation involves reconciling organization, organizational unit, group, role, domain scope, and profile master data.

User Reconciliation

User reconciliation involves reconciling the fields discussed in this section.

Reconciled Resource Object Fields

The following fields are reconciled:

Note:

These fields do not have the ldap prefix.

• User ID

• First Name

• Last Name

• Middle Name

• Department

• Location

• Telephone

• Email

• Communication Language

• Timezone

• Logon Script

• Title

• Profile

• Organization Unit

• Security Group (multiple group names can be entered)

• Role

  • Role Name

  • Scope

  • Inheritance

• Trustee Rights

  • Property

  • Supervisor

  • Read

  • Write

  • Compare

  • Add Self

• Network Address

Reconciled Xellerate User Fields

The following fields are reconciled only if reconciliation is implemented in trusted mode:

• User ID

• Organization

• First Name

• Last Name

• User Type

• Employee Type

Provisioning Module

Provisioning involves creating or modifying a user's account information on the target system through Oracle Identity Manager. You use the Administrative and User Console to perform provisioning operations.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Framework Guide for conceptual information about provisioning

For this target system, the following fields are provisioned:

• User ID

• First Name

• Last Name

• Middle Name

• Department

• Location

• Telephone

• Email

• Communication Language

• Timezone

• Logon Script

• Title

• Profile

• Organization Unit

• Server Name

• Security Group

• Role

  • Role Name

  • Scope

  • Inheritance

• Trustee Rights

  • Property

  • Supervisor

  • Read

  • Write

  • Compare

  • Add Self

• Network Address

For provisioning of organizational units, groups, and roles, refer to the "Supported Functionality" section.

Supported Functionality

The following table lists the functions that are available with this connector.

Process Task	Type	Description
Create User	Provisioning	Creates a user in Novell eDirectory
Delete User	Provisioning	Deletes a user in Novell eDirectory
Enable User	Provisioning	Enables a user in Novell eDirectory
Disable User	Provisioning	Disables a user in Novell eDirectory
Move User	Provisioning	Moves a user from one container to another in Novell eDirectory
Update User Password	Provisioning	Updates the password of a user in Novell eDirectory
Add User to Group	Provisioning	Adds a user to a group in Novell eDirectory
Remove User from Group	Provisioning	Removes a user from a group in Novell eDirectory
Assign Role to User	Provisioning	Assigns a role to a user in Novell eDirectory
Remove Assigned Role from User	Provisioning	Removes a role from a user in Novell eDirectory
Assign Trustee Right to User	Provisioning	Adds a trustee right to a user in Novell eDirectory
Remove Trustee Right from User	Provisioning	Removes a trustee right from a user in Novell eDirectory
Add Network Address Restriction to User	Provisioning	Adds a network address restriction to a user in Novell eDirectory
Remove Network Address Restriction from User	Provisioning	Removes a network address restriction from a user in Novell eDirectory
Create OU	Provisioning	Creates an organizational unit
Change OU Name	Provisioning	Changes an organization name
Delete OU	Provisioning	Deletes an organizational unit
Move OU	Provisioning	Moves the organization sub unit to another parent organizational unit
Create eDirectory Group	Provisioning	Creates a Novell eDirectory group
Delete eDirectory Group	Provisioning	Deletes a Novell eDirectory group
New Group Name Updated	Provisioning	Updates the group name
Create eDirectory Role	Provisioning	Creates a Novell eDirectory role
Delete eDirectory Role	Provisioning	Deletes a Novell eDirectory role
New Role Name Updated	Provisioning	Updates a role name
Create User	Reconciliation	Creates a user in Oracle Identity Manager
Delete User	Reconciliation	Deletes a user from Oracle Identity Manager
Enable User	Reconciliation	Enables a user in Oracle Identity Manager
Disable User	Reconciliation	Disables a user in Oracle Identity Manager
Move User	Reconciliation	Moves a user from one container to another in Oracle Identity Manager
Add User to Group	Reconciliation	Adds a user to a group in Oracle Identity Manager
Remove User from Group	Reconciliation	Removes a user from a group in Oracle Identity Manager
Assign Role to User	Reconciliation	Assigns a role to a user in Oracle Identity Manager
Remove Assigned Role from User	Reconciliation	Removes a role from a user in Oracle Identity Manager
Assign Trustee Right to User	Reconciliation	Adds a trustee right to a user in Oracle Identity Manager
Remove Trustee Right from User	Reconciliation	Removes a trustee right from a user in Oracle Identity Manager
Add Network Address Restriction to User	Reconciliation	Adds a network address restriction to a user in Oracle Identity Manager
Remove Network Address Restriction from User	Reconciliation	Removes a network address restriction from a user in Oracle Identity Manager
Reconciliation Insert Received	Reconciliation	Inserts a user in Oracle Identity Manager
Reconciliation Update Received	Reconciliation	Updates a user in Oracle Identity Manager

See Also:

Appendix A for information about attribute mappings between Oracle Identity Manager and Novell eDirectory

Multilanguage Support

This release of the connector supports the following languages:

• Chinese Simplified

• Chinese Traditional

• English

• French

• German

• Italian

• Japanese

• Korean

• Portuguese (Brazilian)

• Spanish

See Also:

Oracle Identity Manager Globalization Guide for information about supported special characters

Files and Directories That Comprise the Connector

The files and directories that comprise this connector are in the following directory on the installation media:

Directory Servers/Novell eDirectory

These files and directories are listed in the following table.

File in the Installation Media Directory	Description
lib/eDirProv.jar	This JAR file contains the class files required for provisioning and reconciliation.
Files in the resources directory	Each of these resource bundle files contains language-specific information that is used by the connector. Note: A resource bundle is a file containing localized versions of the text strings that are displayed on the user interface of Oracle Identity Manager. These text strings include GUI element labels and messages displayed on the Administrative and User Console.
Files in the troubleshoot directory	These files are used to implement test cases that are run by using the testing utility.
xml/eDirResourceObject.xml	This XML file contains definitions for the following components of the connector: IT resource type Custom process form Process tasks and adapters (along with their mappings) Resource object Provisioning process Pre-populate rules Reconciliation process Lookup definitions
xml/eDirXLResourceObject.xml	This XML file contains the configuration for the Xellerate User. You must import this file only if you plan to use the connector in trusted source reconciliation mode.

Note:

The files in the troubleshoot directory are used only to run tests on the connector.

The "Step 2: Copying the Connector Files and External Code Files" section provides instructions to copy these files into the required directories.

Determining the Release Number of the Connector

You can use any one of the following methods to determine the release number of the connector.

Before Deployment

To determine the release number of a connector:

1. Extract the contents of the eDirProv.jar file. This file is in the following directory on the installation media:

   Directory Servers/Novell eDirectory/lib
   
   

2. Open the manifest.mf file in a text editor. The manifest.mf file is one of the files bundled inside the eDirProv.jar file.

   In the manifest.mf file, the release number of the connector is displayed as the value of the Version property.

Note:

If you maintain a copy of the eDirProv.jar file after deployment, you can use this method to determine the release number of the connector at any stage. After you deploy the connector, it is recommended that you use the "After Deployment" method, which is described in the following section.

After Deployment

To determine the release number of a connector that has already been deployed:

See Also:

Oracle Identity Manager Design Console Guide

1. Open the Oracle Identity Manager Design Console.

2. In the Form Designer, open the process form. The release number of the connector is the value of the Version field.