1 About the Connector

Oracle Identity Manager automates access rights management, security, and provisioning of IT resources. Oracle Identity Manager connectors are used to integrate Oracle Identity Manager with third-party applications. This guide discusses the procedure to deploy the connector that is used to integrate Oracle Identity Manager with Sun Java System Directory.

This chapter contains the following sections:

Reconciliation Module
Provisioning Module
Supported Functionality
Multilanguage Support
Files and Directories on the Installation Media
Determining the Release Number of the Connector

Note:

In this guide, the term Oracle Identity Manager server refers to the computer on which Oracle Identity Manager is installed.

At some places in this guide, Sun Java System Directory has been referred to as the target system.

1.1 Reconciliation Module

Reconciliation involves duplicating in Oracle Identity Manager the creation of and modifications to user accounts on the target system. It is an automated process initiated by a scheduled task that you configure.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Concepts Guide for conceptual information about reconciliation configurations

Based on the type of data reconciled from the target system, reconciliation can be divided into the following types:

Lookup Fields Reconciliation
User Reconciliation

1.1.1 Lookup Fields Reconciliation

Lookup fields reconciliation involves reconciling the fields for groups, roles, organizations, and organizational units.

1.1.2 User Reconciliation

User reconciliation involves reconciling the fields discussed in this section.

1.1.2.1 Reconciled Resource Object Fields

The following target system fields are reconciled:

User ID
First Name
Last Name
Middle Initial
Department
Location
Telephone
Email
Communication Language
Title
Organizational Unit
Group
Role
NsuniqueID
Common Name
Status

1.1.2.2 Reconciled Xellerate User (OIM User) Fields

The following target system fields are reconciled only if trusted source reconciliation is implemented:

User ID
First Name
Last Name
Employee Type
User Type
Organization
Email
Status

1.2 Provisioning Module

Provisioning involves creating or modifying a user's account on the target system through Oracle Identity Manager. You use the Oracle Identity Manager Administrative and User Console to perform provisioning operations.

See Also:

The "Deployment Configurations of Oracle Identity Manager" section in Oracle Identity Manager Connector Concepts Guide for conceptual information about provisioning

For this target system, the following fields are provisioned:

User ID
Password
First Name
Last Name
Middle Name
Department
Location
Telephone
Email
Communication Language
Title
Organizational Unit
Group
Role
Common Name

1.3 Supported Functionality

The following table lists the functions that are available with this connector.

Function	Type	Description
Create User	Provisioning	Creates a user
Delete User	Provisioning	Deletes a user
Enable User	Provisioning	Enables a user
Disable User	Provisioning	Disables a user
Move User	Provisioning	Moves a user from one container to another
Password Updated	Provisioning	Updates the password of a user
First Name Updated	Provisioning	Updates the first name of a user
Last Name Updated	Provisioning	Updates the last name of a user
Department Updated	Provisioning	Updates the department of a user
Email ID Updated	Provisioning	Updates the e-mail address of a user
Location Updated	Provisioning	Updates the location of a user
Middle Name Updated	Provisioning	Updates the middle name of a user
Communication Language Updated	Provisioning	Updates the communication language preference of a user
Telephone Updated	Provisioning	Updates the telephone number of a user
Title Updated	Provisioning	Updates the title of the user
Organization DN Updated	Provisioning	Updates the organization DN of a user
Add User to Group	Provisioning	Adds a user to a group
Remove User from Group	Provisioning	Removes a user from a group
Add User to Role	Provisioning	Adds a user to a role
Remove User from Role	Provisioning	Removes a user from a role
Create OU	Provisioning	Creates an organizational unit
Change OU Name	Provisioning	Changes OU name
Delete OU	Provisioning	Deletes organizational unit
Move OU	Provisioning	Moves organization sub unit to another parent organizational unit
Create iPlanet Group	Provisioning	Creates an iPlanet group
Delete iPlanet Group	Provisioning	Deletes an iPlanet group
Group Name Updated	Provisioning	Changes the group name
Create iPlanet Role	Provisioning	Creates iPlanet role
Delete iPlanet Role	Provisioning	Deletes iPlanet role
Role Name Updated	Provisioning	Changes the role name
Common Name Updated	Provisioning	Changes the common name
User ID Updated	Provisioning	Changes the user ID
Reconciliation Delete Received	Reconciliation	Deletes a user from Oracle Identity Manager if the user is deleted from Sun Java System Directory
Reconciliation Insert Received	Reconciliation	Inserts a user in Oracle Identity Manager
Reconciliation Update Received	Reconciliation	Updates user attributes, such as the first name and last name, in Oracle Identity Manager
Create User	Reconciliation	Creates a user in Oracle Identity Manager
Delete User	Reconciliation	Deletes a user is Oracle Identity Manager
Enable User	Reconciliation	Enables a user in Oracle Identity Manager
Disable User	Reconciliation	Disables a user in Oracle Identity Manager
Move User	Reconciliation	Moves a user from one container to another in Oracle Identity Manager
Add User to Group	Reconciliation	Adds a user to a group in Oracle Identity Manager
Remove User from Group	Reconciliation	Removes a user from a group in Oracle Identity Manager
Assign Role to User	Reconciliation	Assigns a role to a user in Oracle Identity Manager
Remove Assigned Role from User	Reconciliation	Removes a role from a user in Oracle Identity Manager

1.4 Multilanguage Support

The connector supports the following languages:

Arabic
Chinese Simplified
Chinese Traditional
Danish
English
French
German
Italian
Japanese
Korean
Portuguese (Brazilian)
Spanish

See Also:

Oracle Identity Manager Globalization Guide for information about supported special characters

1.5 Files and Directories on the Installation Media

The files and directories on the installation media are listed and described in Table 1-1.

Table 1-1 Files and Directories on the Installation Media

File in the Installation Media Directory	Description
configuration/SJSDS-CI.xml	This XML file contains configuration information that is used during connector installation.
lib/SJSDSProv.jar	This JAR file contains the class files required for provisioning. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/JavaTasks
lib/SJSDSRecon.jar	This JAR file contains the class files required for reconciliation. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/ScheduleTask
Files in the `resources` directory	Each of these resource bundles contains language-specific information that is used by the connector. During connector deployment, these resource bundles are copied into the following directory: OIM_HOME/xellerate/connectorResources Note: A resource bundle is a file containing localized versions of the text strings that are displayed on the user interface of Oracle Identity Manager. These text strings include GUI element labels and messages displayed on the Administrative and User Console.
test/troubleshoot/TroubleShootingUtilityIPlanet.class	This is the standalone class that interacts with the target system. This is the class that has the code required to run the test cases.
test/troubleshoot/log.properties	This file is used to specify the log level and the directory in which the log file is to be created when you run the testing utility.
test/troubleshoot/TroubleShootIPlanet.properties	This file contains the connection details that are required to connect to the target system and user details. It also contains details about the commands to be run.
xml/iPlanetResourceObject.xml	This XML file contains definitions for the following components of the connector: IT resource type Process form Process task and rule-generator adapters (along with their mappings) Resource object Provisioning process Pre-populate rules Reconciliation process Lookup definitions
xml/iPlanetXLResourceObject.xml	This XML file contains the configuration for the Xellerate User (OIM User). You must import this file only if you plan to use the connector in trusted source reconciliation mode.

File in the Installation Media Directory	Description
configuration/SJSDS-CI.xml	This XML file contains configuration information that is used during connector installation.
lib/SJSDSProv.jar	This JAR file contains the class files required for provisioning. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/JavaTasks
lib/SJSDSRecon.jar	This JAR file contains the class files required for reconciliation. During connector deployment, this file is copied into the following directory: OIM_HOME/xellerate/ScheduleTask
Files in the `resources` directory	Each of these resource bundles contains language-specific information that is used by the connector. During connector deployment, these resource bundles are copied into the following directory: OIM_HOME/xellerate/connectorResources Note: A resource bundle is a file containing localized versions of the text strings that are displayed on the user interface of Oracle Identity Manager. These text strings include GUI element labels and messages displayed on the Administrative and User Console.
test/troubleshoot/TroubleShootingUtilityIPlanet.class	This is the standalone class that interacts with the target system. This is the class that has the code required to run the test cases.
test/troubleshoot/log.properties	This file is used to specify the log level and the directory in which the log file is to be created when you run the testing utility.
test/troubleshoot/TroubleShootIPlanet.properties	This file contains the connection details that are required to connect to the target system and user details. It also contains details about the commands to be run.
xml/iPlanetResourceObject.xml	This XML file contains definitions for the following components of the connector: IT resource type Process form Process task and rule-generator adapters (along with their mappings) Resource object Provisioning process Pre-populate rules Reconciliation process Lookup definitions
xml/iPlanetXLResourceObject.xml	This XML file contains the configuration for the Xellerate User (OIM User). You must import this file only if you plan to use the connector in trusted source reconciliation mode.

Note:

The files in the troubleshooting directory are used only to run tests on the connector.

1.6 Determining the Release Number of the Connector

You might have a deployment of an earlier release of the connector. While deploying the latest release, you might want to know the release number of the earlier release. To determine the release number of the connector that has already been deployed:

In a temporary directory, extract the contents of the following JAR file:
```
OIM_HOME/xellerate/JavaTasks/SJSDSProv.jar
```
Open the Manifest.mf file in a text editor. The manifest.mf file is one of the files bundled inside the SJSDSProv.jar file.

In the Manifest.mf file, the release number of the connector is displayed as the value of the Version property.