Oracle Identity Manager (OIM) Connector for Oracle Internet Directory (OID) : Architecture and Overview
Oracle Identity Manager (OIM) : is Identity Provisioning and Reconciliation software . To know more about provisioning and reconciliation in OIM click here
Oracle Internet Directory (OID) : is LDAP (Lightweight Directory Access Protocol) compliant Directory Server from Oracle. To know more about OID click here
Oracle Identity Manager Connectors : are used to integrate OIM with third party applications (ERP, OID, Databases)
Resources/Target System : Third Party Applications (OID, EBS/ERP, CRM, Databases) to which OIM connects for reconciliation and provisioning are called as Resources (sometime also referred by Target System)
- For OID Connector, OID version 9.x, 10.1.4.x and 11Gr1 (11.1.1.X) are supported.
There are two modes in which connector can be run (either of two) Identity Reconciliation or Account Management
a) Identity Reconciliation Mode :OID is used as trusted source and users are modified and created directly in OID and then reconciled to OIM.
At time of reconciliation,
i) Scheduled task establishes connection to OID and sends reconciliation criteria to APIs (Application Programming Interface)
ii)The APIs extract user records that matches reconciliation criteria and pass them to scheduled task
iii) Scheduled task brings the records to Oracle Identity Manager (OIM)
iv) Each record (users) fetched form OID is then compared with existing OIM users and if user record already exists then update made to user record in OID is copied to OIM user. If no match is found then user record fetched from OID is used to create an OIM User.
b) Account Management Mode: In account management mode OID is used as target resource . When configured in Account Management mode, there are two type of operations provisioning and reconciliation carried out by connector account .
Provisioning Operation: During Provisioning operation
i)Adapters carry provisioning data submitted through process form to OID.
ii)APIs on OID accepts provisioning data from adapters.
iii)APIs carry out required operation (add, update, delete) to OID and return response from OID to adapter
iv) Adapters return response back to OIM
Reconciliation Operation : During Reconciliation Operation
i)Scheduled task establishes connection to OID and sends reconciliation criteria to APIs (Application Programming Interface)
ii)The APIs extract user records that matches reconciliation criteria and pass them to scheduled task
iii) Scheduled task brings the records to Oracle Identity Manager (OIM)
iv) Each record (users) fetched form OID is then compared with existing OIM users and if user record already exists then update made to user record in OID is copied to OIM user. If no match is found then user record fetched from OID is used to create an OIM User.
For Step by Step installation of OID-OIM connector in 11g stay tuned