Upload
gary-anderson
View
226
Download
0
Embed Size (px)
Citation preview
8/10/2019 OIM Oracle Identity Manager at Glance
1/29
8/10/2019 OIM Oracle Identity Manager at Glance
2/29
http://www.oim.allidm.com/
Disclaimer and Acknowledgments
The contents here are created as a own personal endeavorand thus does not reflect any official stance of Oracle onany particular technology
8/10/2019 OIM Oracle Identity Manager at Glance
3/29
http://www.oim.allidm.com/
INTRODUCTIONOracle Identity Manager at Glance
8/10/2019 OIM Oracle Identity Manager at Glance
4/29
http://www.oim.allidm.com/
Oracle Identity Manager (OIM)
Is an Identity lifecycle management software that includesprovisioning, reconciliation and administration tools
Is an enterprise identity management system thatmanages user's access privileges in enterprise ITresourceso Controlling users, roles, accounts, and entitlements
Is designed to administer intranet as well as extranetusers, roles, and organizational access privileges acrossa company's resources
8/10/2019 OIM Oracle Identity Manager at Glance
5/29
http://www.oim.allidm.com/
Functionality
Some functionality you can find in the product are
o Provisioning
o Identity and role administration
oApproval and request management
o Policy-based entitlement management
o Technology integration
oAudit and compliance automation
8/10/2019 OIM Oracle Identity Manager at Glance
6/29
http://www.oim.allidm.com/
Features
Some features you can find in the product are
o Easy of Deployment
o Simplified UI Customization and Configuration
o Maximum Reuse of Existing Infrastructureo Extensive User Management
o Web-Based User Self-Service
o Modular and Scalable Architecture
o Powerful and Flexible Process Engine
o Built-In Change Managemento Workflow and Policy
oAudit and Compliance Management
o User Provisioning
8/10/2019 OIM Oracle Identity Manager at Glance
7/29http://www.oim.allidm.com/
User Provisioning
Provisioning is the process by which an action to create,modify, or delete user information in a resource is startedfrom Oracle Identity Manager and passed into theresource
Provisioning includes the followingoAutomated user identity and account provisioning
o Workflow and policy management
o Reporting and auditing
oAttestation
oAccess deprovisioning
8/10/2019 OIM Oracle Identity Manager at Glance
8/29http://www.oim.allidm.com/
Application Integration
The applications can be integrated in Oracle IdentityManager in the next ways thru
oAdapter Factory
o Predefined Connectors
o Generic Technology Connectors
o Identity Connectors
8/10/2019 OIM Oracle Identity Manager at Glance
9/29http://www.oim.allidm.com/
Application Integration
Adapter Factoryo Eliminates the complexity associated with creating and maintaining
connections to proprietary systemso Is a code-generation tool that enables you to create Java classeso Provides rapid integration with commercial or custom systems
o Integrations by using the graphical user interface of the AdapterFactory, without programming or scripting.
Predefined Connectorso Oracle Identity Manager offers an extensive library of predefined
connectors for commercial applications and other identity-awaresystems that are used widely.
o enable out-of-the-box integration between a set of heterogeneoustarget systems and Oracle Identity Managero connectors provide a set of components that were originally developed
by using the Adapter Factoryyou can further modify them with the Adapter Factory to enable the unique
integration requirements of each organization.
8/10/2019 OIM Oracle Identity Manager at Glance
10/29http://www.oim.allidm.com/
Application Integration
Generic Technology Connectorso If you do not need the customization features of the Adapter
Factory to create your custom connector, you can use the GenericTechnology Connector (GTC) feature of Oracle Identity Manager to
create the connector. Identity Connectors ( ICF )
o decouples the connectors from Oracle Identity Manager.
o designed to separate the implementation of an application from thedependencies of the system that the application is attempting to
connect to.
8/10/2019 OIM Oracle Identity Manager at Glance
11/29http://www.oim.allidm.com/
INSTALLATION
8/10/2019 OIM Oracle Identity Manager at Glance
12/29http://www.oim.allidm.com/
Installation Tasks
Preparation Taskso Review System Requirements and Specifications
o Review Certification Information
o Review Interoperability and Compatibility
Execution Taskso Install Database
o Install an Application Server
o Create database Schemas
o Install Identity Softwareo Install SOA
o Configure Weblogic Domain
o Configure IDM
8/10/2019 OIM Oracle Identity Manager at Glance
13/29http://www.oim.allidm.com/
Installing Oracle Identity Manager
o Install Database
Oracle Database
o Install an Application Server
Weblogic
o Create database SchemasUsing the java tool Repository Creation Utility (RCU)
o Install Identity Software
o Install SOA
o Configure and Create Weblogic Domain
o Configure Oracle Identity Manager
8/10/2019 OIM Oracle Identity Manager at Glance
14/29http://www.oim.allidm.com/
Server URLs
http://:/consoleTo check if WebLogic console is configured and running.
http://:/em is to check if Fusion Middleware Control is configured and running.
http://:/oim is to check if Oracle Identity Manager is configured and running.
http://:/soa-infra is to check if SOA Suite is configured and running.
8/10/2019 OIM Oracle Identity Manager at Glance
15/29http://www.oim.allidm.com/
Server Ports
default admin server port is 7001
soa server port is 8001
oim server port is 14000
8/10/2019 OIM Oracle Identity Manager at Glance
16/29http://www.oim.allidm.com/
Deinstalling
Deinstalling the Oracle Identity Management Oracle Home
o Verify your Oracle Identity and Access Management Oracle Home isnot in use by an existing domain
o Stop all processes that use the Oracle Identity and AccessManagement Oracle Home.
o Invoke the Deinstaller from command line using the -deinstall option.
On UNIX:
./runInstaller -deinstall
On Windows:
setup.exe -deinstall
8/10/2019 OIM Oracle Identity Manager at Glance
17/29http://www.oim.allidm.com/
START / STOP
8/10/2019 OIM Oracle Identity Manager at Glance
18/29http://www.oim.allidm.com/
Start Oracle Identity Manager Process
Databaseo Start Oracle Database
Application Serverso Weblogic
Start Administration Server
Start Identity Serverso Weblogic Manager ServersStart Oracle SOA server
Start Oracle Identity Manager server
8/10/2019 OIM Oracle Identity Manager at Glance
19/29http://www.oim.allidm.com/
Start Oracle Identity Manager Process
Start admin server:o On Unix: $DOMAIN_HOME/bin/startWebLogic.sho On Windows: %DOMAIN_HOME%\bin\startWebLogic.bat
Start Oracle Identity Manager server:o On Unix: $DOMAIN_HOME\bin\startManagedWebLogic.sh oim_o server1 t3://:o On Windows: %DOMAIN_HOME%\bin\startManagedWebLogic.bato oim_server1 t3://:
Start Oracle SOA server:o On Unix: $DOMAIN_HOME\bin\startManagedWebLogic.sh soa_o server1 t3://:o On Windows: %DOMAIN_HOME%\bin\startManagedWebLogic.bato soa_server1 t3://:
8/10/2019 OIM Oracle Identity Manager at Glance
20/29
http://www.oim.allidm.com/
Stop Oracle identity Manager Process
Stop WebLogic managed componentso W_HOME/user_projects/domains/DOMAIN_NAME/bin/stopManag
edWebLogic.sh \
o {SERVER_NAME} {ADMIN_URL} {USER_NAME} {PASSWORD}
Stop the Oracle WebLogic Administration Servero MW_HOME/user_projects/domains/DOMAIN_NAME/bin/stopWebL
ogic.sh
8/10/2019 OIM Oracle Identity Manager at Glance
21/29
http://www.oim.allidm.com/
QUICK LOOK
8/10/2019 OIM Oracle Identity Manager at Glance
22/29
http://www.oim.allidm.com/
Oracle Identity Manager Consoles
Oracle Identity Manager supports three consoles toperform identity management tasks:
o Oracle Identity Manager Administrative Console
o Oracle Identity Manager User Console
o Oracle Identity Manager Design Console
8/10/2019 OIM Oracle Identity Manager at Glance
23/29
http://www.oim.allidm.com/
Oracle Identity Manager Consoles
Oracle Identity Manager User Console
o Self-Service Console for unauthenticated users
Forgot User Login
Forgot Password
New User Regristration
Track My Registration
o Self-Service Console for authenticated users
console is available to all users with an account in Oracle IdentityManager
My Profile
Requests
Administration
8/10/2019 OIM Oracle Identity Manager at Glance
24/29
http://www.oim.allidm.com/
Oracle Identity Manager Consoles
Oracle Identity Manager AdministrativeConsoleoAdvanced Administration for authenticated users
console is available to all users with an administrator capabilitiesaccount in Oracle Identity Manager
Event Management
Policies
Configuration
System Management
Upgrade
8/10/2019 OIM Oracle Identity Manager at Glance
25/29
http://www.oim.allidm.com/
Logging to the Oracle Identity Manager
Defaulto http://server:14000/oim
o http://server:14000/identity
User Consoleo http://HOSTNAME:PORT/identity
Admin Consoleo http://your_server:14000/oim/admin
o http://your_server:14000/sysadmin
8/10/2019 OIM Oracle Identity Manager at Glance
26/29
http://www.oim.allidm.com/
User
By default the user created during the installation is thexelsysadm
8/10/2019 OIM Oracle Identity Manager at Glance
27/29
http://www.oim.allidm.com/
RESOURCES
8/10/2019 OIM Oracle Identity Manager at Glance
28/29
http://www.oim.allidm.com/
Resources Part of the material presented here was compiled from the next sources:
o Oracle Identity Management Official Web Site
http://www.oracle.com/technetwork/middleware/id-mgmt/overview/index.html http://www.oracle.com/us/products/middleware/identity-management/overview/index.html http://www.oracle.com/us/products/middleware/identity-
management/oiam/overview/index.html
o Official Oracle Documentation Library
http://docs.oracle.com/cd/E27559_01/index.htm http://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.html
o Forum https://forums.oracle.com/forums/category.jspa?categoryID=195
o Identity Manager Identity Connectors Documentation
http://docs.oracle.com/cd/E22999_01/index.htm
http://www.oracle.com/us/products/middleware/identity-management/overview/index.htmlhttp://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.htmlhttp://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.htmlhttp://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.htmlhttp://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.htmlhttp://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.htmlhttp://www.oracle.com/us/products/middleware/identity-management/overview/index.htmlhttp://www.oracle.com/us/products/middleware/identity-management/overview/index.htmlhttp://www.oracle.com/us/products/middleware/identity-management/overview/index.htmlhttp://www.oracle.com/us/products/middleware/identity-management/overview/index.htmlhttp://www.oracle.com/us/products/middleware/identity-management/overview/index.html8/10/2019 OIM Oracle Identity Manager at Glance
29/29
htt // i llid /
Resources
Oracle Identity and Access Management CertificationMatrixo http://www.oracle.com/technetwork/middleware/id-mgmt/identity-
accessmgmt-11gr2certmatrix-1714221.xls
http://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xlshttp://www.oracle.com/technetwork/middleware/id-mgmt/identity-accessmgmt-11gr2certmatrix-1714221.xls