1 About the Connector

Oracle Identity Manager automates access rights management, security, and provisioning of IT resources. Oracle Identity Manager connectors are used to integrate Oracle Identity Manager with third-party applications. The connector for Oracle Internet Directory is used to integrate Oracle Identity Manager with Oracle Internet Directory.

Note:

Oracle Identity Manager connectors were referred to as resource adapters prior to the acquisition of Thor Technologies by Oracle.

This chapter contains the following sections:

Reconciliation Module
Provisioning Module
Supported Functionality
Multilanguage Support
Files and Directories That Comprise the Connector
Determining the Release Number of the Connector

Note:

At some places in this guide, Oracle Internet Directory has been referred to as the target system.

Reconciliation Module

Reconciliation involves duplicating in Oracle Identity Manager additions of and modifications to user accounts on the target system. It is an automated process initiated by a scheduled task that you configure.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Framework Guide for conceptual information about reconciliation configurations

Based on the type of data reconciled from the target system, reconciliation can be divided into the following types:

Lookup Fields Reconciliation
User Reconciliation

Lookup Fields Reconciliation

Lookup fields reconciliation involves reconciling the lookup values for organizations, organizational units, groups, and roles.

User Reconciliation

This section provides information about user reconciliation.

Reconciled Resource Object Fields

The following fields are reconciled:

User ID
First Name
Last Name
Middle Name
Department
Location
Telephone
Email
Preferred Language
Title
Organizational Unit
UserGroup
UserRole

Reconciled Xellerate User Fields

The following fields are reconciled only if reconciliation is implemented in trusted mode:

User ID
First Name
Last Name
Organization
User Type
Employee Type

Provisioning Module

Provisioning involves creating or modifying a user's account information on the target system through Oracle Identity Manager. You use the Administrative and User Console to perform provisioning operations.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Framework Guide for conceptual information about provisioning

For this target system, the following fields are provisioned:

User ID
First Name
Last Name
Middle Name
Department
Location
Telephone
Email
Communication Language
Title
Organizational Unit
Group
Role

Note:

The names of the fields are case-sensitive.

Supported Functionality

The following table lists the functions that are available with this connector.

Function	Type	Description
Create User	Provisioning	Creates a user
Delete User	Provisioning	Deletes a user
Enable User	Provisioning	Enables a user
Disable User	Provisioning	Disables a user
Move User	Provisioning	Moves a user from one container to another
Password Updated	Provisioning	Updates the password of a user
First Name Updated	Provisioning	Updates the first name of a user
Last Name Updated	Provisioning	Updates the last name of a user
Department Updated	Provisioning	Updates the department of a user
Email ID Updated	Provisioning	Updates the e-mail address of a user
Location Updated	Provisioning	Updates the location of a user
Middle Name Updated	Provisioning	Updates the middle name of a user
Preferred Language Updated	Provisioning	Updates the language preference of a user
Telephone Updated	Provisioning	Updates the telephone number of a user
Time Zone Updated	Provisioning	Updates the time zone of a user
Title Updated	Provisioning	Updates the title of a user
Organization DN Updated	Provisioning	Updates the organization DN of a user
Add user to group	Provisioning	Adds a user to a group
Remove user from group	Provisioning	Removes a user from a group
Add user to role	Provisioning	Adds a user to a role
Remove user from role	Provisioning	Removes a user from a role
Create OU	Provisioning	Creates an organizational unit
Change OU Name	Provisioning	Changes an OU name
Delete OU	Provisioning	Deletes an OU
Move OU	Provisioning	Moves organization sub unit to another parent organizational unit
Create OID Group	Provisioning	Creates Oracle Internet Directory group
Delete OID Group	Provisioning	Deletes Oracle Internet Directory group
New Group Name Updated	Provisioning	Changes the group name
Create OID Role	Provisioning	Creates Oracle Internet Directory role
Delete OID Role	Provisioning	Deletes Oracle Internet Directory role
New Role Name Updated	Provisioning	Changes the role name
Reconciliation Delete Received	Reconciliation	Deletes a user from Oracle Identity Manager if the user has been deleted from the target system
Reconciliation Insert Received	Reconciliation	Inserts a user in Oracle Identity Manager
Reconciliation Update Received	Reconciliation	Updates a user in Oracle Identity Manager. This operation involves modifying any of the user properties, such as the first name or last name.
Create User	Reconciliation	Create a user is Oracle Identity Manager
Delete User	Reconciliation	Deletes a user from Oracle Identity Manager
Enable User	Reconciliation	Enables a user in Oracle Identity Manager
Disable User	Reconciliation	Disables a user in Oracle Identity Manager
Move User	Reconciliation	Moves a user from one container to another container in Oracle Identity Manager
Add User to Group	Reconciliation	Adds a user to a group in Oracle Identity Manager
Remove User from Group	Reconciliation	Removes a user from a group in Oracle Identity Manager
Assign Role to User	Reconciliation	Assigns a role to a user in Oracle Identity Manager
Remove Assigned Role from User	Reconciliation	Removes a role from a user in Oracle Identity Manager

Note:

Oracle Internet Directory is a general-purpose directory service that enables fast retrievals and centralized management of information about dispersed users and network resources.

Lightweight Directory Access Protocol (LDAP) is an Internet-ready, lightweight implementation of the ISO X.500 standard for directory services.

Oracle Internet Directory implements and combines LDAP with the high performance, scalability, robustness, and availability features of Oracle Database. At some places in this guide, the terms Oracle Internet Directory and LDAP have been used interchangeably.

Multilanguage Support

This release of the connector supports the following languages:

Chinese Simplified
Chinese Traditional
English
French
German
Italian
Japanese
Korean
Portuguese (Brazilian)
Spanish

See Also:

Oracle Identity Manager Globalization Guide for information about supported special characters

Files and Directories That Comprise the Connector

The files and directories that comprise this connector are in the following directory on the installation media:

Directory Servers/Oracle Internet Directory

These files and directories are listed in the following table.

File in the Installation Media Directory	Description
Files in the `Batch/custom` directory	When you run the `custom.bat` file, a required object class and an attribute are added to the existing Oracle Internet Directory schema. Refer to the "Step 2: Configuring the Target System" section for more information.
lib/xliOID.jar	This JAR file contains the class files required for provisioning and reconciliation.
Files in the `resources` directory	Each of these resource bundle files contains language-specific information that is used by the connector. Note: A resource bundle is a file containing localized versions of the text strings that are displayed on the user interface of Oracle Identity Manager. These text strings include GUI element labels and messages displayed on the Administrative and User Console.
Files in the `Troubleshoot` directory	These files are used to perform basic tests on the connector, even before Oracle Identity Manager is installed.
xml/oimOIDUser.xml	This XML file contains definitions for the following components of the connector: IT resource type Custom process form Process task and adapters (along with their mappings) Resource object Xellerate User Provisioning process Pre-populate rules Reconciliation process Lookup definitions
xml/oimUser.xml	This XML file contains the configuration for the Xellerate User. You must import this file only if you plan to use the connector in trusted source reconciliation mode.

Note:

The files in the Troubleshoot directory are used only to run tests on the connector.

The "Step 3: Copying the Connector Files and External Code Files" section provides instructions to copy these files into the required directories.

Determining the Release Number of the Connector

You can use any one of the following methods to determine the release number of the connector.

Before Deployment

To determine the release number of a connector:

Extract the contents of the xliOID.jar file. This file is in the following directory on the installation media:
```
Directory Servers/Oracle Internet Directory/lib
```
Open the manifest.mf file in a text editor. The manifest.mf file is one of the files bundled inside the xliOID.jar file.

In the manifest.mf file, the release number of the connector is displayed as the value of the Version property.

Note:

If you maintain a copy of the xliOID.jar file after deployment, you can use this method to determine the release number of the connector at any stage. After you deploy the connector, it is recommended that you use the "After Deployment" method, which is described in the following section.

After Deployment

To determine the release number of a connector that has already been deployed:

See Also:

Oracle Identity Manager Design Console Guide

Open the Oracle Identity Manager Design Console.
In the Form Designer, open the process form. The release number of the connector is the value of the Version field.