Oracle Identity Manager (OIM) Connector for Oracle Internet Directory (OID) : Architecture and Overview

Oracle Identity Manager (OIM) : is Identity Provisioning and Reconciliation software . To know more about provisioning and reconciliation in OIM click here

Oracle Internet Directory (OID) : is LDAP (Lightweight Directory Access Protocol) compliant Directory Server from Oracle. To know more about OID click here

Oracle Identity Manager Connectors : are used to integrate OIM with third party applications (ERP, OID, Databases)

Resources/Target System : Third Party Applications (OID, EBS/ERP, CRM, Databases) to which OIM connects for reconciliation and provisioning are called as Resources (sometime also referred by Target System)

  • For OID Connector, OID version 9.x, 10.1.4.x and 11Gr1 (11.1.1.X) are supported.

There are two modes in which connector can be run (either of two) Identity Reconciliation or Account Management

a) Identity Reconciliation Mode :OID is used as trusted source and users are modified and created directly in OID and then reconciled to OIM. 
At time of reconciliation,
i) Scheduled task establishes connection to OID and sends reconciliation criteria to APIs (Application Programming Interface)
ii)The APIs extract user records that matches reconciliation criteria and pass them to scheduled task
iii) Scheduled task brings the records to Oracle Identity Manager (OIM)
iv) Each record (users) fetched form OID is then compared with existing OIM users and if user record already exists then update made to user record in OID is copied to OIM user. If no match is found then user record fetched from OID is used to create an OIM User.

b) Account Management Mode: In account management mode OID is used as target resource . When configured in Account Management mode, there are two type of operations provisioning and reconciliation carried out by connector account .

Provisioning Operation: During Provisioning operation
i)Adapters carry provisioning data submitted through process form to OID.
ii)APIs on OID accepts provisioning data from adapters.
iii)APIs carry out required operation (add, update, delete) to OID and return response from OID to adapter
iv) Adapters return response back to OIM

Reconciliation Operation : During Reconciliation Operation
i)Scheduled task establishes connection to OID and sends reconciliation criteria to APIs (Application Programming Interface)
ii)The APIs extract user records that matches reconciliation criteria and pass them to scheduled task
iii) Scheduled task brings the records to Oracle Identity Manager (OIM)
iv) Each record (users) fetched form OID is then compared with existing OIM users and if user record already exists then update made to user record in OID is copied to OIM user. If no match is found then user record fetched from OID is used to create an OIM User.

For Step by Step installation of OID-OIM connector in 11g stay tuned

About the Author Masroof Ahmad

Leave a Comment:

15 comments
Raza says September 22, 2010

Any dates planned for Step by Step installation of OID-OIM connector in 11g???

Thanks
Raza

Reply
Atul Kumar says September 22, 2010

@ Raza, I am currently busy on Project and hope to finish this by Mid October

Reply
silviuchiric says October 27, 2010

Any dates planned for Step by Step installation of OID-OIM connector in 11g???

Thanks,

Silviu

Reply
Karan says November 21, 2010

Great if you can provide step by step installation of OIM-OID Connecters 11g.

Regards,
Karan

Reply
» Integrate OIM 11g with OID using connector for Provisioning / Reconcilliation - Installation Online Apps DBA: One Stop Shop for Apps DBA’s says February 16, 2011

[…]  Print This Post This post covers installation of Oracle Identity Manager (OIM) connector to provision or reconcile users to/from Oracle Internet Directory […]

Reply
vishal says March 19, 2011

Hi atul,

can you please clarify for both trusted and target Recon you have written

“Each record (users) fetched form OID is then compared with existing OIM users and if user record already exists then update made to user record in OID is copied to OIM user. If no match is found then user record fetched from OID is used to create an OIM User.”

Reply
vipur says May 17, 2012

Can you please have a look at above article?
In Account management mode we are using OID as a target resource and you have mentioned in reconciliation during this mode if user doesn’t exist it will create user.

When we are using resource as target then how can a user resource then how can a user be created if user doesn’t exist in OIM ??

Reply
vipur says May 17, 2012

Can you please have a look at above article?
In Account management mode we are using OID as a target resource and you have mentioned in reconciliation during this mode if user doesn’t exist it will create user.

When we are using resource as target then how can a user be created in OIM if user doesn’t exist in OIM ??

Reply
Mabeliana says August 22, 2012

I have an OpenLDAP in my infrastructure with the users of my company, I need to connect OIM 11g. I don’t have idea. You could help me.

Thanks you

Reply
Mabeliana says August 22, 2012

Hello
I need to know as configuring the connector AD with OIM 11g.
You will have some guide?

Thanks

Reply
ABhijit says May 8, 2013

I am to installing EBS TCA connector and getting error in step2.
1.Configuration of connector libraries are done successfully
2.Import of Connector xml files (Using Deployment Manager) taking time and eroring out. Error message dosnt give any hints and says contact system administrator.

anybody come across such situation . Please let me know your help is highly appreciated.

Reply
Anand says August 12, 2013

Hi Atul,

How to generate password for a user through trusted source reconciliation.

How to set up a eventhandler for sending passwords to users email ID>

Need step by step configuration.

Thanks

Reply
arvind says May 16, 2014

Hi Atul

I have to setup Oracle Ebiz integration
with AD.

I would like to know the sequences of the software installation from scratch like OIM/OAM/integration with OIM & OAM/Ebiz integration with OIM & OAM/integration with AD.

Regards
Arvind

Reply
Prem says November 8, 2014

Hi Atul,

Please help me in setting OIM -OID connector provision and reconciliation step by step. All user and group should be sync to OIM.

Reply
Add Your Reply