This chapter provides an overview of the updates made to the software and documentation for release 11.1.1.7.0 of the UNIX connector.
The updates discussed in this chapter are divided into the following categories:
This section describes updates made to the connector software. This section also points out the sections of this guide that have been changed in response to each software update.
Documentation-Specific Updates
These include major changes made to this guide. For example, the relocation of a section from the second chapter to the third chapter is a documentation-specific update. These changes are not related to software updates.
The following sections discuss the software updates:
The following are issues resolved in release 11.1.1.7.0:
Bug Number | Issue | Resolution |
---|---|---|
16490411 |
When you created access policy with DNLA flag for the connector, it did not work as expected. After running the "Evaluate user policies" job, the account did not move to Enabled state but moved to Provisioned state. |
This issue has been resolved. |
16489848 |
Entitlement, IT resource, Account Name, and Account ID tagging were missing in the process form fields in Oracle Identity Manager 11.1.2. |
This issue has been resolved. The following form fields have been tagged in the connector: Secondary groups child form tagged as IT Resource Type field of the parent form tagged as User Login field in the parent form tagged as |
16240960 |
Unnecessary step for copying the third-party files was displayed in UI during the connector installation. |
This step has been removed. |
This is the first release of the Oracle Identity Manager Connector for UNIX based on Identity Connector Framework (ICF). The following software updates have been made in release 11.1.1.5.0:
The Identity Connector Framework (ICF) is a component that provides basic provisioning, reconciliation, and other functions that all Oracle Identity Manager connectors require.
The Oracle Identity Manager Connector for UNIX is an ICF-based connector. The ICF uses classpath isolation, which allows the connector to co-exist with legacy versions of the connector.
For more information about the ICF and its advantages, see Understanding the Identity Connector Framework in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Manager.
From this release onward, you can switch between SSH and Telnet protocols to connect to UNIX-based target systems. Earlier, there were separate UNIX connectors for SSH and Telnet connections.
You can specify the connection type by using the connectionType parameter of the IT Resource. The connector supports the following connection types:
SSH - This is the default connection. Used for SSH with password-based authentication.
SSHPUBKEY - Used for SSH with key-based authentication.
TELNET - Used for Telnet connection.
See Configuring the IT Resource for the Target System for related information.
From this release onward, you can run scripts on a computer where the UNIX connector is deployed. You can configure custom scripts to support additional flavors of UNIX.
You can configure the scripts to run before or after the create, update, or delete an account provisioning operations. For example, you could configure a script to run before a user is created by the connector. See Configuring Action Scripts for more information.
From this release onward, you can configure the connector to support an additional flavor of UNIX by using custom scripts.
By default, the connector uses pre-configured scripts to support AIX, HP-UX, Linux, and Solaris. You can customize these scripts to support an additional flavor of UNIX. See Configuring the Connector for a New Target System for more information.
This release of the connector supports multiple instances and multiple versions of UNIX.
You can deploy a single connector bundle on Oracle Identity Manager and create multiple IT resources for multiple instances and multiple versions of UNIX. Then, you can use Oracle Identity Manager to manage accounts on these target systems. See Configuring the Connector for Multiple Instances and Multiple Versions of the Target System for more information.
This release of the connector supports the addition of single-valued fields for provisioning and reconciliation.
See the following sections for more information:
From this release onward, you can specify a list of accounts that must be excluded from reconciliation and provisioning operations. Accounts whose user IDs you specify in the exclusion list are not affected by reconciliation and provisioning operations.
Configuring Resource Exclusion Lists describes the procedure to add entries in these lookup definitions.
You can configure transformation of data, such as process form field data or any other object, that is brought into Oracle Identity Manager during reconciliation. In addition, you can configure validation of data that is brought into or sent from Oracle Identity Manager during reconciliation and provisioning. See the following sections for more information:
This release of the connector supports the connection pooling feature based on the ICF. In earlier releases, a connection with the target system was established at the start of a reconciliation run and closed at the end of the reconciliation run. With the introduction of connection pooling, multiple connections are established by the ICF and held in reserve for use by the connector.
See Setting up the Lookup Definition for Connection Pooling for more information.
The following sections discuss the documentation-specific updates:
The following documentation-specific update has been made in the revision "14" of the release 11.1.1.7.0:
The following documentation-specific updates have been made in the revision "12" of the release 11.1.1.7.0:
The following documentation-specific updates have been made in the revision "11" of the release 11.1.1.7.0:
The procedure to configure SSH Public Key Authentication for Linux has been modified in Configuring SSH Public Key Authentication.
The example path mentioned for Solaris, HP-UX, Linux, and AIX has been modified in Configuring SSH Public Key Authentication.
The "Connector Server" row has been added to Table 1-1.
The "JDK" row of Table 1-1 has been renamed to "Connector Server JDK".
The following documentation-specific update has been made in the revision "10" of the release 11.1.1.7.0:
A "Note" regarding trusted source IT resource has been added at the beginning of Configuring the IT Resource for the Target System.
The following documentation-specific update has been made in the revision "9" of the release 11.1.1.7.0:
Table 2-4 has been updated with information specific to the defaultConnectorShell attribute.
The following documentation-specific updates have been made in the revision "8" of the release 11.1.1.7.0:
The "Oracle Identity Manager" row of Table 1-1 has been updated.
Information specific to Oracle Identity Manager 11g Release 2 PS3 (11.1.2.3.0) has been added to Usage Recommendation for the UNIX Connector.
The following documentation-specific updates have been made in the revision "7" of the release 11.1.1.7.0:
A "Note" has been added at the beginning of Extending the Functionality of the Connector.
A note related to NOPASSWD
has been added to Step 2 of the procedure in Creating a Target System SUDO User Account for Connector Operations.
The "isSudoWithNoPasswd" row has been added to Table 2-4.
The following documentation-specific update has been made in the revision "6" of the release 11.1.1.7.0:
Information about limited reconciliation has been modified in Limited Reconciliation.
The following documentation-specific updates have been made in the revision "5" of the release 11.1.1.7.0:
TimeOut Errors has been updated with a new problem description and solution.
The "Target System" row in Table 1-1 has been modified for the 7.1 AIX version.
The following are documentation-specific updates in this release:
There are no documentation-specific updates in this release.
The following documentation-specific update has been made in the revision "2" of the release 11.1.1.5.0:
Installation includes connector installation scenarios depending on where you want to run the connector code (bundle), either locally in Oracle Identity Manager or remotely in a Connector Server.
In Table 1-1, the following target systems are included on this release:
ExaLogic X2-2
Oracle Enterprise Linux 5.2+(32-bit) and higher versions of 64-bit
Higher version of Red Hat Linux 5.5 Enterprise Edition (64-bit)