Leave a Comment:
22 comments
Hi Atul,
Thank you for updating about the IAM products.
Currently I’m working witht he 11gR2 version and have one issue:
Is it possible to give the Application Instances, Roles or Entitlements an end date?
I think it can’t be done natively, but maybe you have an idea how to implement it.
Cheers,
Anton
Reply@ Anton,
Do you mean put an end date for catalog items during provsioning ? Interesting use case, Not tried myself but need to check (explore cusotmizing catalog to include this as UDF) . Next task is to take this end date and map it with process form associated with Application Instance (you will have to something similar for role and entitlements).
Hi Atul,
Thank you for the quick response! We have a use case, where for an entitlement (roles and entitlement) an end date is needed: a) in the UI and b) should be provisioned to Active Directory.
I will check your advice tomorrow and let you know how it went!
Cheers,
Anton
ReplyHi Atul,
Thank for your advice. I could add an end date to an entitlement/role requested from the catalog with the UDF customization.
I also need to implement, that once the end date is reached the entitlement must be revoked automatically. Have you any idea for this issue?
Again thanks a lot 🙂
Cheers,
Anton
ReplyHi Atul,
I visited your page on onlineappsdba and came to know that you conduct online training on OIM. Please let us know if you are conducting any classrom training in INDIA. If no then please guide us who can provide us best training in OIM in INDIA (person or institute).
thanks
brajesh
Hi Atul,
I have OIM 11G R2 installed and configured. I have a role TestRole created and I want to assign it to say a user User1. I have run the Scheduled Job for catalog, yet when I want to assign role, the catalog opens up and I am unable to see anything on the catalog. Searches with *,% and *%* returns blank. Also tried adding the Catalog Role to xelsysadm (the id im logged in with) but the search is still empty.
AM I missing something ?
Reply@ Nash,
You should use at least 2 characters of role in search. If you still can’t find that that role then create a tag like myrole and search using this tag i.e. myrole
@ Nash,
Good, did you add tag or did you use more than 2 characters in search for resource ?
I just used more than 2 characters to search, wierd how that works but…
ReplyCould you please explain the 11gR2 (11.1.2.0.0) provisioning process.
ReplyI can’t see the Catalog Synchronization Job in the list. Any idea why that would be?
ReplyHi Atul,
We have OIM 11gR1 and plaaning to upgrade to OIM 11g R2, after upgrading to R2(not fresh installation), can I simply use the same deployed OIM11gR1 workflows/SOA composites with approval policies or need to redeploy it without any change. In case of change what will it be?
Replywhen trying to access pending approvals on OIM11gr2 identity self service console.
SOA server is Up and running(EM,weblogic)
Error showing tasklist. Possible reasons could be : 1. SOA server connection information is not available. 2. If it is run in federated mode, the default server may be down.
Thanks
Reply@Nand,
Chekc in SOA Server logs and see if there are any errors (It could be that SOA server is up but appplication deployed on SOA server i.e. soa-infra is down or there are errors. $DOMAIN_HOME/servers/[soa_server]/logs
Other possibility is that SOA host or soa port defined in OIM server is wrong. Check this value from EM
1. Navigate to Identity and Access, oim.
2. Right-click oim, and navigate to System MBean Browser.
3. Under Application Defined MBeans, navigate to oracle.iam, Application:oim, XMLConfig, Config, XMLConfig.SOAConfig, SOAConfig.
4. Change the values of the Rmiurl and Soapurl attributes, and click Apply to save the changes.
Check here
http://docs.oracle.com/cd/E21764_01/doc.1111/e14308/handlinglcm.htm#CIAICEBG
ReplyHi..I also have a requirement like that of user Anton.
I need to give temporary access for certain roles for some days and then remove those after reaching the end date.Can you please tell me the process.
Also one more query that i am not able to submit my catalog item,Can you tell if I am missing anything.
ReplyHi Atul,
I have one requirement in R2. I want to restrict the user for requesting entitlements by disabling entitlement entry in catalog search.
I have tried with deleting the entries from CATALOG table with having entity_type = ‘Entitlement’.
After that its not showing the entitlement entry in the catalog search. But while going to a responsibility owner approval, after open the approval page it’s showing error like requested responsibility not found(while placing the request we are passing responsibility through child objects). Application we are requesting is EBS.
can you please help out on this problem how to fix this.
Thanks,
Arunkumar R
Hi Atul,
I want to implement one use that once the end date is reached the access to target system must be revoked automatically. Please see if you can suggest some solution to this.
Thanks
Bobby
Resources that require manual input such as (for eg: ‘X ‘Resource or ‘Y’ Resource etc) can’t be provisioned for multiple users. The manual input option disappear from the form.
Functionality exists ? or Is there any possibility of the customization .
Help is much appreciated.
Thanks
ReplyHi Atul,
I have a scenario in which I want to provision user from on premise OIM to Oracle Fusion HCM OIM. Can you please help in finding my way out to solve this. I am using 11gr2. Any help will be very help full.
Thanks,
Sunil
Hi,
iam currently working in delhi,i want to know how to create auto provisioning in 11gR2 in oim