4 Performing the Postconfiguration Tasks for the Microsoft Exchange Connector
These are the tasks that you can perform after creating the application in Oracle Identity Governance.
4.1 Configuring Oracle Identity Governance
During application creation, if you did not choose to create a default form, then you must create a UI form for the application that you created by using the connector.
Note:
Perform the procedures described in this section only if you did not choose to create the default form during creating the application.The following topics describe the procedures to configure Oracle Identity Governance:
4.1.1 Creating and Activating a Sandbox
You must create and activate a sandbox to begin using the customization and form management features. You can then publish the sandbox to make the customizations available to other users.
See Creating a Sandbox and Activating a Sandbox in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Governance.
4.1.2 Creating a New UI Form
You can use Form Designer in Oracle Identity System Administration to create and manage application instance forms.
See Creating Forms By Using the Form Designer in Oracle Fusion Middleware Administering Oracle Identity Governance.
While creating the UI form, ensure that you select the resource object corresponding to the newly created application that you want to associate the form with. In addition, select the Generate Entitlement Forms check box.
4.1.3 Publishing a Sandbox
Before publishing a sandbox, perform this procedure as a best practice to validate all sandbox changes made till this stage as it is difficult to revert the changes after a sandbox is published.
-
In Identity System Administration, deactivate the sandbox.
-
Log out of Identity System Administration.
-
Log in to Identity Self Service using the xelsysadm user credentials and then activate the sandbox that you deactivated in Step 1.
-
In the Catalog, ensure that the application instance form for your resource appears with correct fields.
-
Publish the sandbox. See Publishing a Sandbox in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Governance.
4.1.4 Updating an Existing Application Instance with a New Form
For any changes that you do in the schema of your application in Identity Self Service, you must create a new UI form and update the changes in an application instance.
To update an existing application instance with a new form:
-
Create and activate a sandbox.
-
Create a new UI form for the resource.
-
Open the existing application instance.
-
In the Form field, select the new UI form that you created.
-
Save the application instance.
-
Publish the sandbox.
See Also:
-
Creating a Sandbox and Activating a Sandbox in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Governance
-
Creating Forms By Using the Form Designer in Oracle Fusion Middleware Administering Oracle Identity Governance
-
Publishing a Sandbox in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Governance
4.2 Harvesting Entitlements and Sync Catalog
You can populate Entitlement schema from child process form table, and harvest roles, application instances, and entitlements into catalog. You can also load catalog metadata.
To harvest entitlements and sync catalog:
- Run the reconciliation jobs for lookup field synchronization.
- Run the Entitlement List scheduled job to populate Entitlement Assignment schema from child process form table.
- Run the Catalog Synchronization Job scheduled job.
See Also:
-
Reconciliation Jobs for a list of jobs for entitlements (lookup field synchronization)
-
Predefined Scheduled Tasks in Oracle Fusion Middleware Administering Oracle Identity Governance for information about the Entitlement List and Catalog Synchronization Job scheduled jobs
4.3 Setting Up Remote Mailbox Provisioning
You can configure your Exchange application or resource to support Remote Mailbox provisioning operations.
4.3.1 Setting Up Remote Mailbox Provisioning for an AOB Application
You can configure your Exchange application to support Remote Mailbox provisioning operation.
- Log in to Identity Self Service.
- Depending on whether you are setting up Remote Mailbox provisioning during or after the creation of your Exchange application, perform one of the following steps:
- For setting up Remote mailbox provisioning during Exchange application creation, fill in all the necessary details on the Basic Information page and then navigate to the Schema page.
- For setting up Remote mailbox provisioning after creating the Exchange application, search for and open the application you created for editing.
- On the Schema page, add two new attributes as follows:
- If you are in the process of creating the Exchange application, then continue with the rest of the process for creating it.
- If you added the attributes for Remote Mailbox provisioning to an existing application, then apply your changes. Then, log in to Identity System Administration, create a new form and associate it with your updated Exchange application.
- Log in to Identity System Administration.
- Search for and open the Lookup.Exchange.RecipientType.Options lookup.
- Add a new entry to the lookup with both the code and decode values as RemoteUserMailbox and save your changes.
- Verify that the lookup Lookup.Exchange.RecipientType.Options contains the newly added entry.
4.4 Localizing Field Labels in UI Forms
You can localize UI form field labels by using the resource bundle corresponding to the language you want to use. The resource bundles are available in the connector installation media.
To localize field label that you add to in UI forms:
-
Log in to Oracle Enterprise Manager.
-
In the left pane, expand Application Deployments and then select oracle.iam.console.identity.sysadmin.ear.
-
In the right pane, from the Application Deployment list, select MDS Configuration.
-
On the MDS Configuration page, click Export and save the archive (oracle.iam.console.identity.sysadmin.ear_V2.0_metadata.zip) to the local computer.
-
Extract the contents of the archive, and open the following file in a text editor if you are using Oracle Identity Manager 11g Release 2 PS2 (11.1.2.2.0) or later:
SAVED_LOCATION\xliffBundles\oracle\iam\ui\runtime\BizEditorBundle_en.xlf
-
Edit the BizEditorBundle.xlf file in the following manner:
-
Search for the following text:
<file source-language="en" original="/xliffBundles/oracle/iam/ui/runtime/BizEditorBundle.xlf" datatype="x-oracle-adf">
-
Replace with the following text:
<file source-language="en" target-language="LANG_CODE" original="/xliffBundles/oracle/iam/ui/runtime/BizEditorBundle.xlf" datatype="x-oracle-adf">
In this text, replace LANG_CODE with the code of the language that you want to localize the form field labels. The following is a sample value for localizing the form field labels in French:
<file source-language="en" target-language="fr" original="/xliffBundles/oracle/iam/ui/runtime/BizEditorBundle.xlf" datatype="x-oracle-adf">
-
Search for the application instance code. This procedure shows a sample edit for Exchange application instance. The original code is:
<trans-unit id="${adfBundle['oracle.adf.businesseditor.model.util.BaseRuntimeResourceBundle']['persdef.sessiondef.oracle.iam.ui.runtime.form.model.user.entity.userEO.UD_EXCHANGE_DISPLAYNAME__c_description']}"> <source>Display Name</source> <target/> </trans-unit> <trans-unit id="sessiondef.oracle.iam.ui.runtime.form.model.ExchUserForm.entity.ExchUserFormEO.UD_EXCHANGE_DISPLAYNAME__c_LABEL"> <source>Display Name</source> <target/> </trans-unit>
-
Open the resource file from the connector package, for example Exchange_fr.properties, and get the value of the attribute from the file, for example, global.udf.UD_EXCHANGE_DISPLAYNAME=Nom d'affichage.
-
Replace the original code shown in Step 6.c with the following:
<trans-unit id="${adfBundle['oracle.adf.businesseditor.model.util.BaseRuntimeResourceBundle']['persdef.sessiondef.oracle.iam.ui.runtime.form.model.user.entity.userEO.UD_EXCHANGE_DISPLAYNAME__c_description']}"> <source>Display Name</source> <target>Nom d'affichage</target> </trans-unit> <trans-unit id="sessiondef.oracle.iam.ui.runtime.form.model.ExchUserForm.entity.ExchUserFormEO.UD_EXCHANGE_DISPLAYNAME__c_LABEL"> <source>Display Name</source> <target>Nom d'affichage</target> </trans-unit>
-
Repeat Steps 6.a through 6.d for all attributes of the process form.
-
Save the file as BizEditorBundle_LANG_CODE.xlf. In this file name, replace LANG_CODE with the code of the language to which you are localizing.
Sample file name: BizEditorBundle_fr.xlf.
-
-
Repackage the ZIP file and import it into MDS.
See Also:
Deploying and Undeploying Customizations in Oracle Fusion Middleware Developing and Customizing Applications for Oracle Identity Manager, for more information about exporting and importing metadata files
-
Log out of and log in to Oracle Identity Manager.
4.5 Configuring SSL Between Oracle Identity Governance and Connector Server
You must configure SSL to secure communication between Oracle Identity Governance and Connector Server.
This procedure is mandatory if the connector server and the Exchange bundle are installed on the target system.
The following sections provide information about configuring SSL between Oracle Identity Governance and connector server:
4.5.1 Exporting the Certificate
You can export the certificate generated by CA by using the Microsoft Management Console. Ensure to export the certificate by creating a certificate file (.cer). For detailed instruction on exporting the certificate, refer to the target system documentation.