Index

A  B  C  D  E  F  G  H  I  L  M  O  P  R  S  T  U  V  W  X 

A

access policies, 16, 16, 16
creating, 16.3
features, 16.2
managing, 16.4, 16.4
Access Policy Wizard, 3.1.3.1
account reconciliation, 4.2.1.1.2
Adapter Factory, 1.1.5, 2.2.2.2.3
Administration Console
features, 3.1.3.1
Administrative and User Console, 3.1
customizable components, 3.1.4
customization, 3.1.4
login, 7.1.1
registering, 7.1.2
registration request, 7.1.2
tracking registration request, 7.1.3
administrative features, 3.2.1
Advanced Administration, 3.1.3
advanced search
approval policies, 18.3
authorization policies, 15.2.1.2
conjunction operators, 11.3.1.2.3
organizations, 13.2.1.2
page, 11.3.1.2.1
request templates, 17.2
requests, 14.2.1
results, 11.3.1.2.5
roles, 12.5.2.2.2
search comparators, 11.3.1.2.2
searchable attributes, 11.3.1.2.4
users, 11.3.1.2, 11.3.1.2.6
API services, 2.2.2.1
approval policies
advanced search, 18.3
creating, 18.2
deleting, 18.6
managing, 18
modify priority, 18.5
modifying, 18.4
searching, 18.3
simple search, 18.3
approval policy, 18
approval tasks, 9.1
approving, 9.1.4
claiming, 9.1.3
reassigning, 9.1.6
rejecting, 9.1.5
requesting more information, 9.1.7
submitting information, 9.1.8
task details, 9.1.2
approval workflow, 2.2.2.3.1
approvals
selection methodologies, 18.1
architecture, 2
Business Services Tier, 2.2.2
Data Tier, 2.2.3
Platform Services, 2.2.2.3
Presentation Tier, 2.2.1
reconciliation, 4.2.2
tiers, 2.2
attestation, 19
definition, 1.1.4
Attestation Dashboard, 19.5
e-mail notifications, 19.5.2
scheduled tasks, 19.5.3
using, 19.5
viewing attention request details, 19.5.1
attestation processes, 19.2
Attestation Dashboard, 19.5
Attestation engine, 19.1.6
Attestation Inbox, 19.1.2.1
attestation requests, 19.1.3
configuration, 19.2
creating, 19.3
declined attestation entitlements, 19.1.9.3
defining schedules, 19.1.1
definition, 19.1.1
delegation, 19.1.4
deleting, 19.1.1.1.2, 19.4.4
disabling, 19.1.1.1.1, 19.4.2
editing, 19.4.1
e-mails, 19.1.9
enabling, 19.4.3
lifecycle, 19.1.5
managing, 19.4
managing administrators, 19.4.6
notifying delegated reviewers, 19.1.9.2
notifying reviewers, 19.1.9.1
process owners, 19.1.1
reviewer setup, 19.1.1
reviewers, 19.1.9.4
running, 19.4.5
scheduled tasks, 19.1.7
scope, 19.1.1
task components, 19.1.2
viewing execution history, 19.4.7
attestation task
creating, 19.1.5.1
attestation task components
attestation actions, 19.1.2
attestation data, 19.1.2
attestation date, 19.1.2
reviewers, 19.1.2
task source, 19.1.2
attestation tasks, 9.3
actions, 19.1.5.2
attestation driven workflow capability, 19.1.8
processing submitted tasks, 19.1.5.3
request details, 9.3.2
reviewer response to entitlement, 19.1.5.2
searching, 9.3.1
workflow diagram, 19.1.5.1
audit and compliance management
attestation automation, 1.1.4
comprehensive reporting, 1.1.4
identity reconciliation, 1.1.4
rogue and orphan account, 1.1.4
audit and reports, 2.3
audit engine, 6, 6.2
audit levels, 6.2.1
audit management, 1.1.4
auditing, 6
audit levels, 6.2.1
audit messages, 6.2.3
profile auditing, 6.1.2
role profile auditing, 6.4
user profile auditing, 6.3
authenticated Self Service, 3.1.1
authorization
organization management, 13.3
role management, 12.6
user management, 11.4
authorization policies, 2.2.2.3.2, 15.1
advanced search, 15.2.1.2
approval policy management, 15.3.10
assignee, 15.1
authenticated self service, 15.3.2
authorization policy management, 15.3.4
based on existing policies, 15.2.3
creating, 15.2.2
data security, 15.1
deleting, 15.2.5
Diagnostic Dashboard, 15.3.13
managing, 15
notification management, 15.3.11
plug-ins, 15.3.14
policies for Oracle Identity Manager features, 15.2.5
privileges, 15.1
reconciliation management, 15.3.6
request creation by using request templates, 15.3.9
request template management, 15.3.8
role management, 15.3.3
scheduler, 15.3.7
searching, 15.2.1
simple search, 15.2.1.1
system properties, 15.3.12
user management, 15.3.1
user management configuration, 15.3.5
viewing and modifying, 15.2.4

B

beneficiary, 10
BI Publisher, 20
starting, 20.2
Bulk Load, 2.3
bulk request, 10.2

C

challenge questions and response, 8.5.2
child requests, 10.2
clustered environment, 5.5
common name, 11.6
common name generation, 11.6
common services, 2.3
components, 2.3
configure
integration with LDAP, 4.3.1
username policy, 11.5.2
Connector Framework, 2.2.2.2.1
connector performance
indexes, 4.2.2.8
connectors, 2.2.2.2.1
custom, 5.3
generic technology connector, 5.2
installing, 5.5
predefined, 5.1
create
access policies, 16.3
approval policies, 18.2
custom authorization policies, 15.2.2
organizations, 13.2.3
request templates, 17.1
requests, 14.1
roles, 12.5.1
users, 11.3.2

D

data collection, 6.3.1, 6.4.1
archiving, 6.4.1.1
capturing, 6.3.1.1, 6.4.1.1
data objects, 12.5.2.8, 12.5.2.8
database, 2.2.3.1
default roles, 12.4
delegated administration, 1.1.1, 2.1.4
delete
approval policies, 18.6
authorization policies, 15.2.5
delayed delete, 11.3.3.3.6
organizations, 13.2.8
request templates, 17.4
roles, 12.5.2.3
users, 11.3.3.3.6
deploying connectors
general considerations, 5.5
Deployment Manager, 2.1.1, 3.1.3.1
Design Console, 3.2
development tools, 3.2.1
direct provisioning, 4.1
disable
organizations, 13.2.5
username reservation, 11.5.1
users, 11.3.3.3.2

E

enable
organizations, 13.2.5
username reservation, 11.5.1
users, 11.3.3.3.1
entity definition
organizations, 13.1
roles, 12.3
users, 11.2
exception, 20.6
exception reports, 20.6
external libraries, 5.5
external software, 5.5

F

features, 2.1

G

Generic Technology Connector, 2.2.2.2.4, 5.2
GTC, 2.2.2.2.4, 5.2

H

high availability, 2.2.3.1

I

ICF, 2.2.2.2.2
Identity Administration, 2.3
identity connector, 2.2.2.2.2
Identity Connector Framework, 2.2.2.2.2
identity connector, 2.2.2.2.2
identity store, 2.2.3.3
installing connectors, 5.5
integrated solutions, 5
Adapter Factory, 1.1.5
predefined connectors, 1.1.5
integration
Oracle Identity Manager and LDAP, 4.3
integration services, 2.2.2.2
integration solutions, 1.1.5
Issue Audit Messages Task, 6.2.3
IT resource type, 5.4

L

LDAP, 2.2.3.3, 4.3
LDAP identity store, 4.3
provisioning, 4.3.2
reconciliation, 4.3.3
LDAP integration
configuring, 4.3.1
localization, 3.1.5
locating records, 3.1.2.1
lock
users, 11.3.3.3.3

M

manage
access policies, 16.4
approval policies, 18
approval tasks, 9.1
attestation tasks, 9.3
authorization policies, 15
organizations, 13
provisioning tasks, 9.2
request templates, 17
requests, 10
roles, 12, 12.5.2
tasks, 9
user profile, 8
users, 11
managing processes, 3.2.1
managing resources, 3.2.1
MDS, 2.2.3.2
Metadata Store, 2.2.3.2
mode of reconciliation, 4.2.1.2
modify
approval policies, 18.4
approval policy priority, 18.5
authorization policies, 15.2.4
organizations, 13.2.4
request templates, 17.2, 17.2
user information, 11.3.3
Multiple server instances, 2.1.2

O

OIM Account, 11.1.1
open architecture, 2.1.3
Oracle Identity Administration, 3.1.2
Oracle Identity Manager, 1
architecture, 2
attestation, 19.1
components, 2.3
connectors, 2.2.2.2.1
features, 2.1
LDAP integration, 4.3
reporting, 20
tiers of architecture, 2.2
Oracle identity Manager
registering, 7.1.2
Oracle Identity Manager architecture, 2
Oracle Identity Manager process, 3.2.1
Oracle Identity Manager reports, 2.2.3.1, 20.5
organization, 11.1.2
organization and role management, 1.1.7
organizations, 13
administrative roles, 13.2.6
advanced search, 13.2.1.2
attributes, 13.2.4.1
authorization policies, 13.3
browsing, 13.2.2
child organizations, 13.2.4.2
creating, 13.2.3
deleting, 13.2.8
enabling and disabling, 13.2.5
entity definition, 13.1
managing, 13
members, 13.2.4.3
permitted resources, 13.2.7
provisioning and revoking resources, 13.2.4.4
searching, 13.2.1
simple search, 13.2.1.1
viewing and modifying, 13.2.4

P

parent request, 10.2
password management, 1.1.3
advanced, 1.1.3
self-service, 1.1.3
synchronization, 1.1.3
performing searches, 3.2.1
Plug-in Framework, 2.2.2.3.3
policy-based provisioning, 4.1
post-processors, 6.3.2
predefined connectors, 5.1
process engine, 2.1.8
process form, 5.4
processes
managing, 3.2.1
profile auditing, 6.1.2
provisioning, 1.1.6, 2.3, 4.1
direct, 4.1
multiple resource objects to multiple target systems, 16.5.3
Oracle Identity Manager to LDAP, 4.3.2
policy-based, 4.1
request-based, 4.1
Provisioning Process components, 5.4.1
provisioning tasks, 9.2
adding notes, 9.2.4
assignment history, 9.2.6
form details, 9.2.7
modifying form details, 9.2.8
reassigning, 9.2.5
retrying, 9.2.9
searching, 9.2.1
setting response, 9.2.3
task details, 9.2.2

R

reconciliation, 4.2
account reconciliation, 4.2.1.1.2
action module, 4.2.2.7.2
action rules, 4.2.2.2, 4.2.2.7.2
APIs, 4.2.2.5
approach, 4.2.1.3
architecture, 4.2.2
archival, 4.2.2.10
backward compatibility, 4.2.2.11
changelog, 4.2.1.2
connector, 4.2.2.9
engine, 4.2.2.7
interface, 4.2.2.12
LDAP to Oracle Identity Manager, 4.3.3
mapping rules, 4.2.2.2
matching module, 4.2.2.7.1
matching rules, 4.2.2.2
metadata, 4.2.2.2
mode, 4.2.1.2
process flow, 4.2.1.1.3
profile, 4.2.2.1
push or pull model, 4.2.1.2
regular, 4.2.1.2
run, 4.2.2.4
schema, 4.2.2.6
target, 4.2.2.3
target attributes, 4.2.2.2
trusted source, 4.2.1.1.1
types, 4.2.1
Reconciliation Engine, 2.3
reconciliation engine, 4.2.2.7
action module, 4.2.2.7.2
matching module, 4.2.2.7.1
reconciliation-related tasks, 5.4.2
records
viewing, 3.2.1
regular reconciliation, 4.2.1.2
Remote Manager, 2.2.2.2.5
reporting, 2.2.3.1, 20
BI Publisher, 20
features, 20.1
reports, 20.5
access policy reports, 20.5.1
attestation, request, and approval reports, 20.5.2
Crystal Reports, 20.7
exception reports, 20.6
password reports, 20.5.4
resource and entitlement reports, 20.5.5
role and organization reports, 20.5.3
running, 20.3
user reports, 20.5.6
repository, 2.2.3.1
request
searching, 10.5
request models, 10.3
request service, 2.2.2.3.1, 2.2.2.3.1
request stages, 10.1
request templates, 17
additional attributes, 17.2.3
advanced search, 17.2
allowed resources, 17.2.1
allowed roles, 17.2.1
attribute restrictions, 17.2.2
cloning, 17.3
creating, 17.1
deleting, 17.4
managing, 17
modifying, 17.2
searching and modifying, 17.2
simple search, 17.2
template user roles, 17.2.4
request tracking, 10.5
request-based provisioning, 4.1
requester, 10
requests, 10
advanced search, 14.2.1
beneficiary, 10
bulk request, 10.2
child request, 10.2
closing, 10.8
creating, 14.1
managing, 10
parent request, 10.2
process flow, 10
request details, 14.2.2
request models, 10.3
request templates, 17
requester, 10
searching and tracking, 14.2
simple search, 14.2.1
stages, 10.1
target entity, 10
Task List, 10.7
tracking, 10.5
withdrawing, 10.6
resource object, 5.4
resources
managing, 3.2.1
viewing, 3.1.1.1
RFI tasks, 9.1.7
role profile auditing, 6.4
roles, 11.1.3, 12, 12.5.2.8
advanced search, 12.5.2.2.2
attributes, 12.5.2.4.1
authorization policies, 12.6
browsing, 12.5.2.1
creating, 12.5.1
default, 12.4
deleting, 12.5.2.3
entity definition, 12.3
hierarchy, 12.5.2.4.2
inherited by, 12.2, 12.5.2.4.2
inherited from, 12.2, 12.5.2.4.2
managing, 12, 12.5.2
members, 12.5.2.4.6
membership inheritance, 12.1
permission inheritance, 12.2
searching, 12.5.2.2
simple search, 12.5.2.2.1
viewing and administering, 12.5.2.4

S

scheduled task, 5.4
Issue Audit Messages Task, 6.2.3
scheduler service, 2.2.2.3.5
search
advanced search page, 11.3.1.2.1
approval policies, 18.3
attestation tasks, 9.3.1
authorization policies, 15.2.1
conjunction operator, 11.3.1.1.4
conjunction operators, 11.3.1.2.3
operations on results, 11.3.1.1.6
organizations, 13.2.1
provisioning tasks, 9.2.1
request templates, 17.2
requests, 10.5, 14.2
results, 11.3.1.2.5
roles, 12.5.2.2
search comparators, 11.3.1.1.2, 11.3.1.2.2
search results, 11.3.1.1.5
search string, 11.3.1.1.3
searchable attributes, 11.3.1.1.1, 11.3.1.2.4
users, 11.3.1, 11.3.1.1.7, 11.3.1.2.6
Segregation of Duties, 2.2.2.3.4
Self Service
authenticated, 3.1.1
unauthenticated, 3.1.1
self-service features, 1.1.1
profile management, 1.1.1
request management, 1.1.1
simple search
approval policies, 18.3
authorization policies, 15.2.1.1
conjunction operator, 11.3.1.1.4
operations on results, 11.3.1.1.6
organizations, 13.2.1.1
request templates, 17.2
requests, 14.2.1
roles, 12.5.2.2.1
search comparators, 11.3.1.1.2
search results, 11.3.1.1.5
search string, 11.3.1.1.3
searchable attributes, 11.3.1.1.1
users, 11.3.1.1, 11.3.1.1.7
snapshot
storing, 6.3.1.2, 6.4.1.2
SoD, 2.2.2.3.4
SPML Web Service interface, 3.3

T

target entity, 10
task
managing, 9
RFI, 9.1.7
Task List, 10.7
TaskList, 9
tasks, 9
approval tasks, 9, 9.1
attestation tasks, 9, 9.3
provisioning tasks, 9, 9.2
three-tier strategy, 5
trusted source reconciliation, 4.2.1.1.1
tuning
connector performance
tuning, 4.2.2.8

U

unauthenticated Self Service, 3.1.1
unlock
users, 11.3.3.3.4
user attributes, 11.2
user interfaces, 3
Administrative and User Console, 3.1
Design Console, 3.2
user profile
challenge questions and response, 8.5.2
managing, 8
profile attributes, 8.1
proxies, 8.4
resetting password, 8.6
resource profile, 8.3
role assignments, 8.2
security, 8.5
user profile audit tables, 6.3.3
user profile auditing, 6.3
data collection, 6.3.1, 6.4.1
post-processors, 6.3.2
XL.UserProfileAuditDataCollection, 6.3.1
user profile audits
tables used, 6.3.3
user profile snapshot
trigger, 6.3.1.3, 6.4.1.3
username, 11.5
policy configuration, 11.5.2
releasing, 11.5.3
username reservation, 11.5
enabling and disabling, 11.5.1
users, 11
adding and removing resources, 11.3.3.2.3
adding and removing roles, 11.3.3.2.2
advanced search, 11.3.1.2
attribute profile, 11.3.3.2.1
attributes, 11.2
authorization policies, 11.4
bulk operations, 11.3.3.4
creating, 11.3.2
delayed delete, 11.3.3.3.6
deleting, 11.3.3.3.6
disabling, 11.3.3.3.2
enabling, 11.3.3.3.1
enabling and disabling resources, 11.3.3.2.4
entity definition, 11.2
lifecycle, 11.1
locking, 11.3.3.3.3
managing, 11
OIM Account, 11.1.1
proxy details, 11.3.3.2.7
resetting password, 11.3.3.3.5
resource details, 11.3.3.2.5
resource history, 11.3.3.2.6
searching, 11.3.1, 11.3.1.1.7, 11.3.1.2.6
simple search, 11.3.1.1
unlocking, 11.3.3.3.4
user details, 11.3.3.1
viewing and modifying, 11.3.3

V

view
authorization policies, 15.2.4
organizations, 13.2.4
user information, 11.3.3
viewing records, 3.2.1
viewing resources, 3.1.1.1

W

Web-based user self-service, 2.1.5
wildcard, 3.2.1
workflow and policy
deprovisioning, 1.1.6
dynamic error handling, 1.1.2
policy management, 1.1.2
provisioning, 1.1.6
request tracking, 1.1.2
transaction integrity, 1.1.2
workflow management, 1.1.2
workflow and request service, 2.3

X

XL.UserProfileAuditDataCollection, 6.3.1