Oracle Identity Governance

4.1 General Issues and Workarounds

This section describes the general issues and workarounds in this release of Oracle Identity Governance.

4.1.1 The Request for Others Option is Available for All Users

Issue

Impacted Releases: 12c (12.2.1.3.0)

Impacted Platforms:

When you click the Request Access tile in the Self Service tab of Oracle Identity Self Service, the Request for Others option should be enabled only for authorized users and managers. However, the Request for Others option is enabled for all users irrespective of authorization.

4.1.2 Session Time-out Warning Displayed When Using the Deployment Manager

Issue

Impacted Releases: 12c (12.2.1.3.0)

Impacted Platforms:

When using the Deployment Manager, session time-out warning message is displayed although the system is not idle.

Currently, there is no workaround for this issue. Click OK on the warning message box and continue.

4.1.3 EditFailedException When Releasing Configuration from WebLogic Console

Issue

Impacted Releases: 12c (12.2.1.3.0)

Impacted Platforms:

In an Oracle Identity Governance deployment that has been upgraded from an earlier release, when you click Release Configuration in Oracle WebLogic Console, the following error is generated:

weblogic.management.provider.EditFailedException: Error loading jdbc/oimMDS-jdbc.xml

This error does not have any functional impact on the WebLogic configuration.

Workaround

To workaround this issue, open the following DataSource configurations, make any changes, and then save and activate the changes:

ApplicationDB
mds-oim
oimJMSStoreDS
oimOperationsDB
soaOIMLookupDB

4.1.4 LDAP Synchronization Not Supported

Issue

Impacted Releases: 12c (12.2.1.3.0)

LDAP synchronization is not supported in Oracle Identity Governance 12c (12.2.1.3.0).

LDAP synchronization works when Oracle Identity Governance is integrated with Oracle Access Management (OAM). But OAM-OIG integration using IDMConfigTool is not supported in this release.

Workaround

If you have upgraded from Release 11.1.2.3 to Release 12.2.1.3, then you can continue with LDAP synchronization, as described in Enabling LDAP Synchronization in Oracle Identity Manager in Integration Guide for Oracle Identity Management Suite for Release 11.1.2.3.

Note:

Bundle Patch for Oracle Identity Governance 12c (12.2.1.3.1) release is available and it supports Oracle Identity Governance (OIG) and Oracle Access Manager (OAM) integration using LDAP Connectors. For more information, see What's New in Oracle Identity Management Integration.

4.1.5 Errors for Custom Attribute Values

Issue

If you set the values of some attributes in the User Form in Identity System Administraion and add the attributes to the My Information page in the Identity Self Service by customizing the page, issues are seen for the Pager and Fax attributes on specifying the values of those attributes. For example:

Set the value of the Mobile attribute as 20 in the User Form of Identity System Administration. In Identity Self Service, add the Mobile attribute to the My Information page by customizing the page. If you provide a value of the Mobile attribute that is greater that 20 (say 25 characters), then an error is displayed when you click Apply.
Set the value of the Pager attribute as 40 in the User Form of Identity System Administration. In Identity Self Service, add the Pager attribute to the My Information page by customizing the page. If you provide a value that is greater than 40 (say 45 chars), then only 40 characters are saved without displaying any error.
The default value of the Fax attribute is set to 4000.

4.2 Multi-Language Support Issues and Workarounds

This section describes the multi-language support issues and workarounds in this release of Oracle Identity Governance.

4.2.1 Locale Drop Down Not Translated for My Information and Modify User Pages

Issue

Bug Number: 24903901

Impacted Releases: 12c (12.2.1.3)

Impacted Platforms:

The Locale list in the My Information page and Modify User page of Identity Self Service are not translated if the browser language is set to any one of the following:

Arabic (ar)
Hebrew (he)
Danish (da)
Czech (cs)
Dutch (nl)
Romanian (ro)
Slovak (sk)
Norwegian (no)
Hungarian (hu)

4.2.2 Search Result Message in the Export Configuration Page Not Translated

Issue

Impacted Releases: 12c (12.2.1.3.0)

Impacted Platforms:

When you perform a default search in the Export Configuration page of the Deployment Manager, the search result message is displayed only in English, and is not translated to other languages.

4.2.3 Some Strings Not Translated on Application Onboarding Screens

Issue

Bug Number: 26525535

Impacted Releases: 12c (12.2.1.3.0)

Impacted Platforms:

The following text in the application onboarding pages in Identity Self Service are not translated in German:

Connector Package: The Connector Package option in the Basic Information page of the Create Application wizard and the Create Authoritative Application wizard
Schema: The Schema page of the Create Application wizard and the Create Authoritative Application wizard
Name and Connector Name: The Name and Connector Name options in the search list of the Applications page
Organization: The Organization tab in the Settings page of the Create Application wizard and the Create Authoritative Application wizard
Account Name: The Account Name drop down in the Applications page
Provisioning Field: The Provisioning Field column name in the Schema tab of the Create Application wizard and the Create Authoritative Application wizard
Action Script: The Action Script buttons in the Applications page

4.3 Documentation Errata

This topic contains the following documentation errata for Oracle Identity Governance documentation:

In Help Topics for Oracle Identity Governance, the correct description for the Combine Repeated Approvals option in the History table of the Edit Fulfillment Task page should be:

Click to combine the approvals that have been done repeatedly.

4.4 Features Not Supported in Oracle Identity Governance 12c (12.2.1.3.0)

The following features are not supported in this release:

Features Unsupported in 12.2.1.3.0	Description
OMSS integration	Integration of Oracle Identity Governance and Oracle Mobile Security Suite is not supported in this release.
Embedded BI Publisher reports	Embedded BI Publisher is not supported in this release. Standalone BI Publisher can be installed and configured to use Identity Governance reports. See Configuring Reports in Developing and Customizing Applications for Oracle Identity Governance.
Post-install configuration GUI	The post-install configuration GUI is not supported in this release.
LCM configuration tool	The LCM configuration tool is not supported in this release.
Remote Manager	The Remote Manager is not available in this release and has been de-supported.
Segregation of Duties (SoD) using Oracle Application Access Controls Governor (OAACG)	SoD check with OAACG is not supported. In this release. SoD and audit violations are managed by using the Identity Audit feature of Oracle Identity Governance. See Managing Identity Audit in Performing Self Service Tasks with Oracle Identity Governance.
Diagnostic Dashboard	The Diagnostic Dashboard (XIMDD) utility is not supported in this release. For some of the tests using the XIMDD utility, you can do the following: For Oracle Database Prerequisites Check, use the appropriate DB query. For JMS Messaging Verification, view the state of JMS queues listed in the Enterprise manager Fusion Middleware Control. For Database Connectivity Check, use the WebLogic Administration Console. For Java VM System Properties Report, Jprofiler can be with the process ID of the server to extract the JVM parameters.
BAT scripts	BAT scripts, such as uploadNotificationTemplates.bat, comparator_config.bat, OIMMTUpgrade_WS.bat, OIMUpgrade.bat, opamSetup.bat, patch_oimapp.bat, and updateLdapConnectionData.bat, are not supported in this release. In addition, the scripts under MW_HOME/server/ldap_config_uti/ are also not supported.

4.5 Comparison of Oracle Identity Governance Applications Deployed in 11g and 12c

Review the Oracle Identity Governance applications deployed for WebLogic Server in both 11g and 12c, and their locations.

In 11g, there were 20 distinct applications deployed for WebLogic Server, and 11 sub-applications under oim.ear.

In 12c, there are only 8 main-stream applications available. Rest of the applications are consolidated under oim.ear, to optimize the disk space.

Table 4-1 Applications and Libraries Deployed in 11g and 12c

Oracle Identity Manager Applications and Libraries in 11g Oracle Identity Governance Applications and Libraries in 12c

Oracle Identity Manager Applications and Libraries in 11g	Oracle Identity Governance Applications and Libraries in 12c
`metadata.ear` `oim_xe_metadata.ear` `oracle.iam.ui.oia-view.war` `scim-oim-services.war` `metadata_xe.ear` `oracle.iam.console.identity.self-service.ear` `oracle.iam.ui.view.war` `sodcheck-service.ear` `Nexaweb.ear` `oracle.iam.console.identity.sysadmin.ear` `provisioning-callback.ear` `spml-dsml.ear` `oim.ear` `oracle.iam.ui.custom-dev-starter-pack.war` `reqsvc.ear` `spml-xsd.ear` `oim_ee_metadata.ear` `oracle.iam.ui.model.ear` `role-sod.ear` `TaskDetails.ear`	`oim.ear` `oracle.iam.ui.model.ear` `oracle.iam.console.identity.self-service.ear` `oracle.iam.ui.oia-view.war` `oracle.iam.console.identity.sysadmin.ear` `oracle.iam.ui.view.war` `oracle.iam.ui.custom-dev-starter-pack.war` `oimclient.jar`

metadata.ear
oim_xe_metadata.ear
oracle.iam.ui.oia-view.war
scim-oim-services.war
metadata_xe.ear
oracle.iam.console.identity.self-service.ear
oracle.iam.ui.view.war
sodcheck-service.ear
Nexaweb.ear
oracle.iam.console.identity.sysadmin.ear
provisioning-callback.ear
spml-dsml.ear
oim.ear
oracle.iam.ui.custom-dev-starter-pack.war
reqsvc.ear
spml-xsd.ear
oim_ee_metadata.ear
oracle.iam.ui.model.ear
role-sod.ear
TaskDetails.ear

oim.ear
oracle.iam.ui.model.ear
oracle.iam.console.identity.self-service.ear
oracle.iam.ui.oia-view.war
oracle.iam.console.identity.sysadmin.ear
oracle.iam.ui.view.war
oracle.iam.ui.custom-dev-starter-pack.war
oimclient.jar

Table 4-2 Applications and Libraries Under oim.ear in 11g and 12c

Applications and Libraries Under oim.ear in 11g Applications and Libraries Under oim.ear in 12c

Applications and Libraries Under oim.ear in 11g	Applications and Libraries Under oim.ear in 12c
`dataobjects-ejb.jar` `IdentityAuditCallbackService.war` `SchedulerService-web.war` `iam-async-mdb.jar` `jmx-config-lifecycle.war` `workflowservice.war` `callbackResponseService.war` `iam-consoles-faces.war` `xlWebApp.war` `CertificationCallbackService.war` `iam-ejb.jar`	`AppAsyncMdb.jar` `OIGUI.war` `oimrest.war` `applicationrest.war` `provisioning-callback.war` `callbackResponseService.war` `reqsvc.war` `CertificationCallbackService.war` `rest-oig-service.war` `dataobjects-ejb.jar` `role-sod.war` `FacadeWebApp.war` `SchedulerService-web.war` `iam-async-mdb.jar` `scim-oim-services.war` `iam-consoles-faces.war` `sodcheckservice-web.war` `iam-ejb.jar` `spml-xsd.war` `IdentityAuditCallbackService.war` `tokservice.war` `jmx-config-lifecycle.war` `workflowservice.war` `xlWebApp.war`

dataobjects-ejb.jar
IdentityAuditCallbackService.war
SchedulerService-web.war
iam-async-mdb.jar
jmx-config-lifecycle.war
workflowservice.war
callbackResponseService.war
iam-consoles-faces.war
xlWebApp.war
CertificationCallbackService.war
iam-ejb.jar

AppAsyncMdb.jar
OIGUI.war
oimrest.war
applicationrest.war
provisioning-callback.war
callbackResponseService.war
reqsvc.war
CertificationCallbackService.war
rest-oig-service.war
dataobjects-ejb.jar
role-sod.war
FacadeWebApp.war
SchedulerService-web.war
iam-async-mdb.jar
scim-oim-services.war
iam-consoles-faces.war
sodcheckservice-web.war
iam-ejb.jar
spml-xsd.war
IdentityAuditCallbackService.war
tokservice.war
jmx-config-lifecycle.war
workflowservice.war
xlWebApp.war