Skip Headers
Oracle® Identity Manager Connector Guide for Oracle E-Business User Management
Release 9.1.0

Part Number E11203-03
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
View PDF

What's New in Oracle Identity Manager Connector for Oracle E-Business User Management?

This chapter provides an overview of the updates made to the software and documentation for the Oracle E-Business User Management connector in release 9.1.0.

See Also:

The earlier release of this guide for information about updates that were new for that release

The updates discussed in this chapter are divided into the following categories:

Software Updates

The following sections discuss updates made in release 9.1.0 of the connector:

Support for New Target System Versions and Configurations

From this release onward, the connector supports the following target system versions:

Oracle E-Business Suite 11.5.10, 12.0.1 through 12.0.6 running on Oracle Real Application Clusters 10g and 11g

These target systems are listed in the Section 1.1, "Certified Components" section.

Dedicated Support for Target Resource Reconciliation

The connector provides all the features required for setting up Oracle E-Business Suite as a managed (target) resource of Oracle Identity Manager. If you want to use Oracle E-Business Suite as a trusted source of identity data for Oracle Identity Manager, then use the Oracle E-Business Employee Reconciliation connector.

Support for Provisioning Basic Person Records in Oracle E-Business HRMS and Basic Party Records in Oracle E-Business TCA

Along with creation of a user record in Oracle E-Business Suite, the connector can be used to create a basic person record in Oracle E-Business HRMS. This feature enables access to Oracle E-Business Suite applications that require a user to have an account in Oracle E-Business HRMS.

In addition, the connector can be used to create a basic person-type party record in Oracle E-Business TCA. This feature enables access to Oracle E-Business Suite applications that require a user to have an account in Oracle E-Business TCA.

See Section 1.4.1, "Oracle E-Business User Management Connectors" for more information.

Support for Managing Oracle E-Business Suite UMX Roles

UMX role assignments can now be managed during reconciliation and provisioning.

Support for SoD Validation of Entitlement Provisioning

From this release onward, the connector supports the Segregation of Duties (SoD) feature introduced in Oracle Identity Manager release 9.1.0.2. Requests for Oracle E-Business Suite role and responsibility entitlements can be validated with Oracle Application Access Controls Governor. Entitlements are provisioned into Oracle E-Business Suite only if the request passes the SoD validation process. This preventive simulation approach helps identify and correct potentially conflicting assignment of entitlements to a user, before the requested entitlements are granted to users.

See Section 1.4.3, "SoD Validation of Entitlement Provisioning" for more information.

Support for SSO-Enabled Oracle E-Business Suite Installations

The connector can be used to integrate Oracle Identity Manager with an SSO-enabled Oracle E-Business Suite installation.

See Section 1.4.4, "Support for an SSO-Enabled Target System Installation" for more information.

Support for Oracle E-Business Suite Role and Responsibility Navigation Catalog

You can use the connector to fetch data about responsibilities and roles definitions from each target system application and store this data in lookup definitions on Oracle Identity Manager. During a provisioning operation, these lookup definitions are populated with responsibilities and roles that are specific to the Oracle E-Business Suite application you select for the operation. This feature leverages the dependent lookup capability of Oracle Identity Manager.

See Section 1.7, "Lookup Definitions Used During Connector Operations" for more information.

Support for Effective-Dated Target System Events

Oracle E-Business Suite allows future-dating (effective-dating) of account disable and account enable operations. The connector can detect and respond to these effective-dated lifecycle events.

Similarly, the connector can also respond to effective-dated operations in which roles and responsibilities are granted or revoked.

See Section 1.4.5, "Reconciliation of Effective-Dated Events" for an overview of the process.

Support for Account Status Reconciliation and Provisioning

The connector can now be used for reconciliation and provisioning account status data. During reconciliation, changes to the Effective Date From and Effective Date To fields on the target system are duplicated in Oracle Identity Manager. The same effect can be achieved through provisioning operations performed on Oracle Identity Manager.

See Section 1.4.6, "Account Status Reconciliation and Provisioning" for more information.

Support for Configurable Reconciliation Queries

Reconciliation involves running a SQL query on the target system database to fetch the required user account records to Oracle Identity Manager. From this release onward, predefined SQL queries are stored in a file in the connector deployment package. You can modify these SQL queries or add your own SQL queries for reconciliation.

See Section 1.5.1, "Reconciliation Queries" for information about the reconciliation queries.

Support for Creating Copies of Connector Objects

To meet the requirements of specific use cases, you might need to create multiple copies of the Oracle Identity Manager objects that constitute the connector. The connector can work with multiple instances of these objects.

See Section 4.6, "Configuring the Connector for Multiple Installations of the Target System" for more information.

Support for Target System Account with Minimum Permissions for Connector Operations

In earlier releases, you had to use the APPS user for connector operations. From this release onward, you can create and use an Oracle E-Business Suite user with the minimum permissions required for connector operations.

See Section 2.1.2.1, "Creating a Target System User Account for Connector Operations" for more information.

Support for Connection Pooling

The connector supports the connection pooling feature introduced in Oracle Identity Manager release 9.1.0.2. In earlier releases, a connection with the target system was established at the start of a reconciliation run and closed at the end of the reconciliation run. With the introduction of connection pooling, multiple connections are established by Oracle Identity Manager and held in reserve for use by the connector.

See Section 1.4.12, "Connection Pooling" for more information.

Support for SSL Communication

From this release onward, you can configure SSL to secure communication between Oracle Identity Manager and the target system.

See Section 2.3.2, "Configuring Secure Communication Between the Target System and Oracle Identity Manager" for more information.

Support for the Multiple Trusted Source Reconciliation Feature of Oracle Identity Manager

The connector now supports the multiple trusted source reconciliation feature of Oracle Identity Manager. See Oracle Identity Manager Design Console Guide for detailed information about multiple trusted source reconciliation.

Inclusion of Javadocs in the Connector Deployment Package

To facilitate reuse and customization of some parts of the connector code, Javadocs are included in the connector deployment package.

Documentation-Specific Updates

The following are documentation-specific updates in release 9.1.0: