Oracle® Identity Manager Connector Guide for Database User Management Release 9.1.0 E11193-04 |
|
Previous |
Next |
This chapter provides an overview of the updates made to the software and documentation for release 9.1.0.4 of the Database User Management connector.
The updates discussed in this chapter are divided into the following categories:
These include updates made to the connector software.
Documentation-Specific Updates
These include major changes made to the connector documentation. These changes are not related to software updates.
The following sections discuss software updates:
The following features have been introduced in this release:
Mapping standard and custom attributes for reconciliation and provisioning
Predefined and custom reconciliation queries
Predefined and custom provisioning statements
Framework for supporting connector operations on JDBC-based databases
Support for creating global and external users in Oracle Database
Support for configuring the connector for reconciling and provisioning object-level privileges in Oracle Database
Dependent lookup fields
Specifying accounts to be excluded from reconciliation and provisioning operations
Connection pooling
Support for creating connector copies
Transformation and validation of account data
Support for reconciling data about deleted login entities
Separate scheduled tasks for reconciliation of users, logins, and deleted login entities
Support for SSL communication between the target system and Oracle Identity Manager
Support for managing authorization to Oracle Database Vault realms
Support for configuring the connector for Oracle Enterprise User Security
The following are the software updates in release 9.1.0.3:
From this release onward, the connector adds support for MySQL 5.1 or later as the target system.
This target system is mentioned in Section 1.1, "Certified Components."
The following are resolved issues in release 9.1.0.3:
Bug Number | Issue | Resolution |
---|---|---|
8766239 | The connector did not support management of Kerberos-authenticated users. | This issue has been resolved. The connector can now be used to work with Oracle Database users who must be authenticated by Kerberos. |
9226032 | The connector supported only the English language. Resource bundles for the other languages were not included in the installation media. | This issue has been resolved. The connector supports other languages also.
See Section 1.2, "Certified Languages" for a list of languages supported by the connector. |
9353979 | A delete user reconciliation run failed and a NullPointerException was encountered. | This issue has been resolved. The delete user reconciliation runs are now successful. |
9292437 | A SQL statement used to perform a provisioning operation that revoked child data could not be run if the SQL statement contained more than one identifier for child data.
For example, consider the following SQL statement: REVOKE :ora_table_privilege ON :ora_tablename FROM :ora_user_id_external This SQL statement is used to revoke a privilege for the table database object from a database user. In this SQL statement, ora_table_privilege, ora_tablename, and ora_user_id_external are identifiers, whose values are fetched from the corresponding columns of the process forms at run time. As the ora_table_privilege and ora_tablename identifiers were fetched from the child process form, the connector could not run this SQL statement. |
This issue has been resolved. The connector can run a SQL statement used to perform a provisioning operation that revoked child data if the SQL statement contains more than one identifier for child data. |
The following are the software updates in release 9.1.0.4:
From this release onward, the connector can be installed and used on Oracle Identity Manager 11g release 1 (11.1.1). Where applicable, instructions specific to this Oracle Identity Manager release have been added in the guide.
Note: Sybase Adaptive Server Enterprise is not supported as a target system on Oracle Identity Manager 11g release 1 (11.1.1). This is tracked by Bug 9914961 in Chapter 7, "Known Issues." |
See Section 1.1, "Certified Components" for the full list of certified Oracle Identity Manager releases.
From this release onward, the connector provides support for request-based provisioning on Oracle Identity Manager 11g release 1 (11.1.1).
See Section 3.7.2, "Request-Based Provisioning" for more information.
The following sections discuss documentation-specific updates:
Major changes have been made in the structure of the guide. The objective of these changes is to synchronize the guide with the changes made to the connector and to improve the usability of information provided by the guide.
See Section 1.8, "Roadmap for Deploying and Using the Connector" for information about the organization of content in this guide.
The following are documentation-specific updates in release 9.1.1:
From this release onward:
The minimum certified release of Oracle Identity Manager is release 9.1.0.2 BP 06 or later. See Section 1.1, "Certified Components" for the complete listing of certified components.
The connector supports languages other than English. See Section 1.2, "Certified Languages" for a complete listing of the certified languages.
Section 2.3.1.6, "Modifying the Lookup.DBUM.MSSQL.TargetRecon.Role.Mapping Lookup Definition" has been added to Chapter 2, "Deploying the Connector."
Changes have been made in Section 2.3.3, "Configuring Secure Communication Between the Target System and Oracle Identity Manager."
In Section 2.3.4, "Determining Values for the JDBC URL and Connection Properties Parameters," the note about changing semicolons to commas in the value that you specify for the Connection Properties parameter has been changed to the following:
Semicolons must be changed to a number sign (#) in the value that you specify.
In Section 4.5, "Configuring the Connector for Multiple Installations of the Target System," changes have been made to the "Resource object" row for Oracle Database.
In Chapter 4, "Extending the Functionality of the Connector," changes have been made in the following sections:
In Chapter 5, "Configuring the Connector for a JDBC-Based Database," information about new adapters and adapter variables have been added to Table 5-1 and Table 5-2, respectively.
In Chapter 6, "Testing the Connector," a new step has been added to the procedure for testing the connector.
Section A.2.24, "Lookup.DBUM.MSSQL.TargetRecon.User.Validation" has been added to Appendix A, "Preconfigured Lookup Definitions."
The following is a documentation-specific update in release 9.1.0.4:
From Chapter 7, "Known Issues," the issue tracked by Bug 9373707 has been removed. This issue, applicable on Oracle Identity Manager release 9.1.0.x, was fixed in an earlier release. The following is the bug description:
Delete reconciliation does not work as expected if you have configured the connector for multiple instances of the target system.