1/35
Contents
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Conventions
Part I Application Management
1
Managing Reconciliation Events
1.1
Reconciliation Features in Oracle Identity Manager
1.1.1
Performance Enhancements
1.1.1.1
New Metadata Model - Profiles
1.1.1.2
Parameters to Control Flow and Processing of Events
1.1.1.3
Grouping of Events by Reconciliation Runs
1.1.1.4
Grouping of Events by Batches
1.1.1.5
Implementing Reconciliation Engine Logic in the Database
1.1.1.6
Improved Java Engine
1.1.1.7
Improved Database Schema
1.1.2
Web-Based Event Management Interface
1.1.3
Other Enhancements
1.1.3.1
Horizontal Tables
1.1.3.2
Handling of Race Conditions
1.1.3.3
OES Integration
1.1.3.4
Ad Hoc Linking
1.2
Event Management Tasks
1.2.1
Searching Events
1.2.1.1
Performing a Simple Search for Events
1.2.1.2
Performing an Advanced Search for Events
1.2.2
Displaying Event Details
1.2.3
Determining Event Actions
1.2.4
Re-evaluating Events
1.2.5
Closing Events
1.2.6
Linking Reconciliation Events
1.2.6.1
Ad Hoc Linking
1.2.6.2
Manual Linking
1.2.6.3
Linking Orphan Accounts
1.3
Updating Reconciliation Profiles Manually
1.3.1
Creating New Reconciliation Profiles
1.3.1.1
Creating Additional Nondefault Profiles for Reconciliation Based on Resource Objects
1.3.1.2
Creating New Profiles for Trusted Source Reconciliation
1.3.2
Updating Reconciliation Profiles
1.3.3
Changing the Profile Mode
1.4
Populating Data in the RECON_EXCEPTIONS Table
2
Managing Scheduled Tasks
2.1
Configuring the oim-config.xml File
2.2
Starting and Stopping the Scheduler
2.3
Scheduled Tasks
2.3.1
Predefined Scheduled Tasks
2.3.2
LDAP Scheduled Tasks
2.3.3
Creating Custom Scheduled Tasks
2.4
Jobs
2.4.1
Creating Jobs
2.4.2
Searching Jobs
2.4.2.1
Performing a Simple Search for Jobs
2.4.2.2
Performing an Advanced Search for Jobs
2.4.3
Viewing Jobs
2.4.4
Modifying Jobs
2.4.5
Disabling and Enabling Jobs
2.4.6
Starting and Stopping Jobs
2.4.7
Deleting Jobs
3
Managing Notification Templates
3.1
Defining Event Metadata
3.2
Creating a Notification Template
3.3
Searching for a Notification Template
3.4
Modifying a Notification Template
3.5
Deleting a Notification Template
3.6
Adding and Removing Locales from a Notification Template
4
Administering System Properties
4.1
System Properties in Oracle Identity Manager
4.2
Creating and Managing System Properties
4.2.1
Creating System Properties
4.2.2
Purging Cache
4.2.3
Searching for System Properties
4.2.3.1
Performing a Simple Search
4.2.3.2
Performing an Advanced Search
4.2.4
Modifying System Properties
4.2.5
Deleting System Properties
4.2.6
Configuring Notification for a Proxy
5
Importing and Exporting Data Using the Deployment Manager
5.1
Features of the Deployment Manager
5.2
Exporting Deployments
5.3
Importing Deployments
5.3.1
Deployment Manager Actions on Reimported Scheduled Tasks
5.3.2
Importing an XML File
5.4
Horizontal Migration of Entities
5.4.1
Creating a Backup of the Existing Entities
5.4.2
Running the Horizontal Migration Utility
5.4.3
Data Migration for Supported Entities
5.4.3.1
Custom Resource Bundle
5.4.3.2
Plug-ins
5.4.4
Horizontal Migration Report
5.5
Best Practices Related to Using the Deployment Manager
5.5.1
Export System Objects Only When Necessary
5.5.2
Export Related Groups of Objects
5.5.3
Group Definition Data and Operational Data Separately
5.5.4
Use Logical Naming Conventions for Versions of a Form
5.5.5
Export Root to Preserve a Complete Organizational Hierarchy
5.5.6
Provide Clear Export Descriptions
5.5.7
Check All Warnings Before Importing
5.5.8
Check Dependencies Before Exporting Data
5.5.9
Match Scheduled Task Parameters
5.5.10
Compile Adapters and Enable Scheduled Tasks
5.5.11
Export Entity Adapters Separately
5.5.12
Check Permissions for Roles
5.5.13
Back Up the Database
5.5.14
Import Data When the System Is Quiet
5.5.15
Update the SDK Table
5.5.16
Remove Data Object Fields Before Importing Event Handlers as Dependencies
5.6
Best Practices for Using the Horizontal Migration Utility
6
Installing Connectors
6.1
Overview of the Connector Installation Process
6.2
Installing a Predefined Connector
6.3
Using Custom Connectors
Part II System Management
7
Starting and Stopping Servers
7.1
Configuring the Node Manager
7.2
Starting the Node Manager
7.3
Starting or Stopping WebLogic Administration Server
7.4
Starting or Stopping WebLogic Managed Servers
7.4.1
Starting or Stopping the Managed Servers By Using Command Prompt
7.4.2
Starting or Stopping the Managed Server Using Oracle Enterprise Manager Console
7.4.3
Starting or Stopping Servers By Using Oracle WebLogic Server Administration Console
8
Enabling System Logging
8.1
Logging in Oracle Identity Manager By Using ODL
8.1.1
Message Types and Levels
8.1.2
Log Handler and Logger Configuration
8.1.3
Configuring Log Handlers
8.1.3.1
Log Handler Configuration Tools
8.1.4
Configuring Loggers
8.1.5
Sample ODL Log Output
8.2
Logging in Oracle Identity Manager By Using log4j
8.2.1
Log Levels
8.2.2
Loggers
8.2.3
Configuring and Enabling Logging
9
Enabling Secure Cookies
10
Configuring LDAP Authentication When LDAP Synchronization is Enabled
11
Integrating with Other Oracle Components
11.1
Oracle Access Manager
11.2
Oracle Adaptive Access Manager
11.3
Oracle Identity Analytics
11.4
Oracle Identity Navigator
11.5
Oracle Virtual Directory
11.6
Oracle Service-Oriented Architecture
11.7
Oracle Business Intelligence Publisher
12
Handling Lifecycle Management Changes
12.1
URL Changes Related to Oracle Identity Manager
12.1.1
Oracle Identity Manager Database Host and Port Changes
12.1.2
Oracle Virtual Directory Host and Port Changes
12.1.3
Oracle Identity Manager Host and Port Changes
12.1.3.1
Changing OimFrontEndURL in Oracle Identity Manager Configuration
12.1.3.2
Changing backOfficeURL in Oracle Identity Manager Configuration
12.1.4
BI Publisher Host and Port Changes
12.1.5
SOA Host and Port Changes
12.1.6
OAM Host and Port Changes
12.2
Password Changes Related to Oracle Identity Manager
12.2.1
Changing Oracle WebLogic Administrator Password
12.2.2
Changing Oracle Identity Manager Administrator Password
12.2.3
Changing Oracle Identity Manager Database Password
12.2.4
Changing Oracle Identity Manager Passwords in the Credential Store Framework
12.2.5
Changing OVD Password
12.3
Configuring SSL for Oracle Identity Manager
12.3.1
Enabling SSL for Oracle Identity Manager and SOA Servers
12.3.1.1
Enabling SSL for Oracle Identity Manager and SOA WebLogic Server
12.3.1.2
Changing OimFrontEndURL to Use SSL Port
12.3.1.3
Changing backOfficeURL to Use SSL Port
12.3.1.4
Changing SOA Server URL to Use SSL Port
12.3.1.5
Configuring SSL for Design Console
12.3.1.6
Configuring SSL for Oracle Identity Manager Utilities
12.3.1.7
Configuring SSL for MDS Utilities
12.3.1.8
Configuring SSL for SPML/Callback Domain
12.3.2
Enabling SSL for Oracle Identity Manager DB
12.3.2.1
Setting Up DB in Server-Authentication SSL Mode
12.3.2.2
Creating KeyStores and Certificates
12.3.2.3
Updating Oracle Identity Manager
12.3.2.4
Updating WebLogic Server
12.3.3
Enabling SSL for LDAP Synchronization
12.3.3.1
Enabling OVD-OID with SSL
12.3.3.2
Updating Oracle Identity Manager for OVD Host/Port
Part III Configuration
13
Configuring User Attributes
13.1
Entity Configuration Operations
13.1.1
Listing Entity Attributes
13.1.2
Creating Entity Attributes
13.1.2.1
Attribute Properties
13.1.3
Modifying Entity Attributes
13.1.4
Deleting Entity Attributes
13.1.5
Performing Category Configuration
13.1.5.1
Creating Category
13.1.5.2
Renaming Category
13.1.5.3
Deleting Category
13.1.5.4
Ordering Attributes Within a Category
13.2
Search Operation Configuration
13.3
User Configuration Management Authorization
13.4
Synchronizing User-Defined Fields Between Oracle Identity Manager and LDAP
13.5
Configuration Management Architecture
14
Managing Password Policies
14.1
Creating a Password Policy
14.1.1
The Policy Rules Tab
14.1.2
The Usage Tab
14.2
Setting the Criteria for a Password Policy
15
Managing Identity and Resource Information
15.1
Overview of User Management
15.2
Managing Organization Information
15.3
Viewing Resources Allowed or Disallowed for Users
15.3.1
Policy History Tab
15.4
Assigning Role Entitlements
16
Managing Asynchronous Execution
16.1
Overview of AsyncService
16.2
Async Routing and Configuration
16.2.1
Configuration Parameters
16.3
Troubleshooting Failed Async Tasks
16.3.1
Automated Retry Error Handling Mechanism
16.3.2
Manual Retry Error Handling Mechanism
16.4
Working with the Diagnostic Dashboard UI
16.4.1
Starting the Diagnostic Dashboard UI
16.4.2
Viewing Failed Async Tasks
16.4.2.1
To view failed async tasks
16.4.3
Retrying Failed Async Tasks
16.4.3.1
To retry failed Async task
16.4.4
Resubmitting Failed Async Tasks
16.4.5
Purging Failed Async Tasks
16.4.5.1
To purge failed Async tasks
17
Enabling Offline Provisioning
17.1
Features of Offline Processing
17.2
Enabling and Disabling Offline Provisioning
17.3
Reports Related to Offline Provisioning
17.4
Configuring the Remove Failed Off-line Messages Scheduled Task
18
Using Enterprise Manager for Managing Oracle Identity Manager Configuration
18.1
Using MBeans for Configuration Changes
18.2
Exporting and Importing Configuration Files
Part IV Administrative Utilities
19
Working with the Diagnostic Dashboard
19.1
Overview of the Diagnostic Dashboard
19.2
Installing the Diagnostic Dashboard
19.2.1
Installing the Diagnostic Dashboard on Oracle WebLogic Server
19.3
Starting the Diagnostic Dashboard
19.4
Using the Diagnostic Dashboard
19.5
Running Tests By Using the Diagnostic Dashboard
19.5.1
Oracle Database Prerequisites Check
19.5.2
Database Connectivity Check
19.5.3
Account Lock Status
19.5.4
Data Encryption Key Verification
19.5.5
Scheduler Service Status
19.5.6
Remote Manager Status
19.5.7
JMS Messaging Verification
19.5.8
Target System SSL Trust Verification
19.5.9
Java VM System Properties Report
19.5.10
Oracle Identity Manager Libraries and Extensions Version Report
19.5.11
Oracle Identity Manager Libraries and Extensions Manifest Report
19.5.12
Test Basic Connectivity
19.5.13
Test Provisioning
19.5.14
Test Reconciliation
19.5.15
SOA-Oracle Identity Manager Configuration Check
19.5.16
Request Diagnostic Information
19.5.17
Orchestration Status
19.5.18
Retry Failed Orchestration
19.5.19
SPML Web Service
19.5.20
Test OWSM Setup
19.5.21
Test SPML to Oracle Identity Manager Request Invocation
19.5.22
SPML Attributes to Oracle Identity Manager Attributes
19.5.23
Username Test
19.5.24
Diagnose Creation of User and Role in Oracle Identity Manager and LDAP
19.5.25
Diagnose OVD Connection
19.5.26
Diagnose LDAP Reserve Container
20
Installing and Configuring a Remote Manager
20.1
Overview of Oracle Identity Manager Configuration
20.2
Configuring Oracle Identity Manager to Reference JAR and Class Files
20.3
Installing the Remote Manager
20.4
Creating and Testing a Remote Manager IT Resource
20.4.1
Adding the Trust Relation
20.4.2
To Create and Test a Remote Manager IT Resource
20.5
Updating xlconfig.xml file to Change the Port for Remote Manager
20.6
Configuring the Remote Manager by Using Your Own Certificate
21
Using the Form Version Control Utility
21.1
FVC Utility Scope
21.2
FVC Utility Content
21.3
FVC Utility Description
21.4
FVC Utility Features
22
Using the Archival Utilities
22.1
Using the Reconciliation Archival Utility
22.1.1
Understanding the Reconciliation Archival Utility
22.1.2
Prerequisite for Running the Reconciliation Archival Utility
22.1.3
Archival Criteria
22.1.4
Running the Reconciliation Archival Utility
22.1.5
Log File Generated by the Reconciliation Archival Utility
22.2
Using the Task Archival Utility
22.2.1
Understanding the Task Archival Utility
22.2.2
Preparing Oracle Database for the Task Archival Utility
22.2.3
Running the Task Archival Utility
22.2.4
Reviewing the Output Files Generated by the Task Archival Utility
22.3
Using the Platform Archival Utility
22.3.1
What is Platform Archival Utility?
22.3.2
Scripts Constituting the Platform Archival Utility
22.3.3
Preparing Oracle Database for the Platform Archival Utility
22.3.4
Running the Platform Archival Utility
22.3.5
Platform Archival Utility Menu Options
22.3.5.1
Archive Orchestration Process Instance Data
22.3.5.2
Archive Context Data
22.3.6
Output Files Generated by the Platform Archival Utility
22.4
Using the Requests Archival Utility
22.4.1
Understanding the Requests Archival Utility
22.4.2
Prerequisites for Running the Requests Archival Utility
22.4.3
Input Parameters
22.4.4
Running the Requests Archival Utility
22.4.5
Log Files Generated by the Utility
Part V Performance Tuning and Best Practices
23
Tuning Oracle Database
23.1
Using Database Roles/Grants for Oracle Identity Manager Database
23.2
Sample Instance Configuration Parameters
23.3
Physical Data Placement
23.4
Database Performance Monitoring
24
Tuning Application Server Performance
24.1
JVM Memory Settings
24.2
JDBC Connection Pool
24.3
Number of Message Driven Beans
24.4
User Interface Threads
24.5
Disable Reloading of Adapters and Plug-in Configuration
24.6
Changing the Number of Open File Descriptors for UNIX (Optional)
25
Tuning Connector Performance
25.1
Indexes for Connector Tables
25.2
Indexes for Reconciliation Tables
26
Tuning and Managing Application Cache
26.1
Introduction to Caching
26.2
Tuning Oracle Identity Manager Cache
26.3
Purging the Cache
Index
Scripting on this page enhances content navigation, but does not change the content in any way.