| Oracle® Identity Manager Connector Guide for Oracle Internet Directory Release 9.0.4 Part Number E10436-07 |
|
|
View PDF |
| Oracle® Identity Manager Connector Guide for Oracle Internet Directory Release 9.0.4 Part Number E10436-07 |
|
|
View PDF |
Oracle Identity Manager automates access rights management, security, and provisioning of IT resources. Oracle Identity Manager connectors are used to integrate Oracle Identity Manager with third-party applications. This guide discusses the procedure to deploy the connector that is used to integrate Oracle Identity Manager with Oracle Internet Directory.
This chapter contains the following sections:
Note:
In this guide, the term Oracle Identity Manager server refers to the computer on which Oracle Identity Manager is installed.At some places in this guide, Oracle Internet Directory has been referred to as the target system.
Reconciliation involves duplicating in Oracle Identity Manager the creation of and modifications to user accounts on the target system. It is an automated process initiated by a scheduled task that you configure.
See Also:
The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Concepts Guide for conceptual information about reconciliation configurationsBased on the type of data reconciled from the target system, reconciliation can be divided into the following types:
Lookup fields reconciliation involves reconciling the lookup values for organizations, organizational units, groups, and roles.
This section provides information about user reconciliation.
The following fields are reconciled:
User ID
First Name
Last Name
Middle Name
Department
Location
Telephone
Preferred Language
Title
Organizational Unit
UserGroup
UserRole
Provisioning involves creating or modifying a user's account information on the target system through Oracle Identity Manager. You use the Oracle Identity Manager Administrative and User Console to perform provisioning operations.
See Also:
The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Concepts Guide for conceptual information about provisioningFor this target system, the following fields are provisioned:
User ID
First Name
Last Name
Middle Name
Department
Location
Telephone
Communication Language
Title
Organizational Unit
Group
Role
Note:
The names of the fields are case-sensitive.The following table lists special characters that are supported in process form fields:
Note:
The following special characters are not supported in process form fields:Single quotation mark (')
Double quotation mark (")
| Name of the Character | Character |
|---|---|
| ampersand | & |
| asterisk | * |
| at sign | @ |
| caret | ^ |
| comma | , |
| dollar sign | $ |
| equal sign | = |
| exclamation point | ! |
| hyphen | - |
| left brace | { |
| left bracket | [ |
| left parenthesis | ( |
| number sign | # |
| percent sign | % |
| period | . |
| plus sign | + |
| question mark | ? |
| right brace | } |
| right bracket | ] |
| right parenthesis | ) |
| slash | / |
| underscore | _ |
The following table lists the functions that are available with this connector.
| Function | Type | Description |
|---|---|---|
| Create User | Provisioning | Creates a user |
| Delete User | Provisioning | Deletes a user |
| Enable User | Provisioning | Enables a user |
| Disable User | Provisioning | Disables a user |
| Move User | Provisioning | Moves a user from one container to another |
| Password Updated | Provisioning | Updates the password of a user |
| First Name Updated | Provisioning | Updates the first name of a user |
| Last Name Updated | Provisioning | Updates the last name of a user |
| Department Updated | Provisioning | Updates the department of a user |
| Email ID Updated | Provisioning | Updates the e-mail address of a user |
| Location Updated | Provisioning | Updates the location of a user |
| Middle Name Updated | Provisioning | Updates the middle name of a user |
| Preferred Language Updated | Provisioning | Updates the language preference of a user |
| Telephone Updated | Provisioning | Updates the telephone number of a user |
| Time Zone Updated | Provisioning | Updates the time zone of a user |
| Title Updated | Provisioning | Updates the title of a user |
| Organization DN Updated | Provisioning | Updates the organization DN of a user |
| Add user to group | Provisioning | Adds a user to a group |
| Remove user from group | Provisioning | Removes a user from a group |
| Add user to role | Provisioning | Adds a user to a role |
| Remove user from role | Provisioning | Removes a user from a role |
| Create OU | Provisioning | Creates an organizational unit |
| Change OU Name | Provisioning | Changes an OU name |
| Delete OU | Provisioning | Deletes an OU |
| Move OU | Provisioning | Moves organization sub unit to another parent organizational unit |
| Create OID Group | Provisioning | Creates Oracle Internet Directory group |
| Delete OID Group | Provisioning | Deletes Oracle Internet Directory group |
| New Group Name Updated | Provisioning | Changes the group name |
| Create OID Role | Provisioning | Creates Oracle Internet Directory role |
| Delete OID Role | Provisioning | Deletes Oracle Internet Directory role |
| New Role Name Updated | Provisioning | Changes the role name |
| Reconciliation Delete Received | Reconciliation | Deletes a user from Oracle Identity Manager if the user has been deleted from the target system |
| Reconciliation Insert Received | Reconciliation | Inserts a user in Oracle Identity Manager |
| Reconciliation Update Received | Reconciliation | Updates a user in Oracle Identity Manager. This operation involves modifying any of the user properties, such as the first name or last name. |
| Create User | Reconciliation | Create a user is Oracle Identity Manager |
| Delete User | Reconciliation | Deletes a user from Oracle Identity Manager |
| Enable User | Reconciliation | Enables a user in Oracle Identity Manager |
| Disable User | Reconciliation | Disables a user in Oracle Identity Manager |
| Move User | Reconciliation | Moves a user from one container to another container in Oracle Identity Manager |
| Add User to Group | Reconciliation | Adds a user to a group in Oracle Identity Manager |
| Remove User from Group | Reconciliation | Removes a user from a group in Oracle Identity Manager |
| Assign Role to User | Reconciliation | Assigns a role to a user in Oracle Identity Manager |
| Remove Assigned Role from User | Reconciliation | Removes a role from a user in Oracle Identity Manager |
Note:
Oracle Internet Directory is a general-purpose directory service that enables fast retrievals and centralized management of information about dispersed users and network resources.Lightweight Directory Access Protocol (LDAP) is an Internet-ready, lightweight implementation of the ISO X.500 standard for directory services.
Oracle Internet Directory implements and combines LDAP with the high performance, scalability, robustness, and availability features of Oracle Database. At some places in this guide, the terms Oracle Internet Directory and LDAP have been used interchangeably.
This release of the connector supports the following languages:
Arabic
Chinese Simplified
Chinese Traditional
Danish
English
French
German
Italian
Japanese
Korean
Portuguese (Brazilian)
Spanish
See Also:
Oracle Identity Manager Globalization Guide for information about supported special charactersThe files and directories on the installation media are listed and described in Table 1-1.
Table 1-1 Files and Directories On the Connector Installation Media
| File in the Installation Media Directory | Description |
|---|---|
|
Files in the |
When you run the Refer to the "Configuring the Target System" section for more information. |
configuration/OracleInternetDirectory-CI.xml |
This XML file contains configuration information that is used during connector installation. |
lib/OIDProv.jar |
This JAR file contains the class files required for provisioning. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/JavaTasks
|
lib/OIDRecon.jar |
This JAR file contains the class files required for reconciliation. This JAR file contains the class files required for reconciliation. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/ScheduleTask
|
|
Files in the |
Each of these resource bundles contains language-specific information that is used by the connector. During connector deployment, these resource bundles are copied into the following directory: OIM_HOME/xellerate/connectorResources
Note: A resource bundle is a file containing localized versions of the text strings that are displayed on the user interface of Oracle Identity Manager. These text strings include GUI element labels and messages displayed on the Administrative and User Console. |
|
Files in the |
These files are used to perform basic tests on the connector, even before Oracle Identity Manager is installed. |
xml/oimOIDUser.xml |
This XML file contains definitions for the following components of the connector:
|
xml/oimUser.xml |
This XML file contains the configuration for the Xellerate User (OIM User). You must import this file only if you plan to use the connector in trusted source reconciliation mode. |
Note:
The files in the
test/troubleshoot directory are used only to run tests on the connector.You might have a deployment of an earlier release of the connector. While deploying the latest release, you might want to know the release number of the earlier release. To determine the release number of the connector that has already been deployed:
In a temporary directory, extract the contents of the following JAR file:
OIM_HOME/xellerate/JavaTasks/OIDProv.jar
Open the manifest.mf file in a text editor. The manifest.mf file is one of the files bundled inside the OIDProv.jar file.
In the manifest.mf file, the release number of the connector is displayed as the value of the Version property.
|
 Copyright © 2009, Oracle and/or its affiliates. All rights reserved. Legal Notices |
|