Identity Manager 8.1 - Administration Guide for Connecting to Native Databases through Database Systems Integration Module

Database Systems Integration Module Installing DSI Working with Oracle Database Working with MSSQL Working with SAP HANA Troubleshooting

Mapping sets and object types

Mapping sets and object types

The Oracle database template has the following mapping sets:

  • Tablespace: Logical storage units that store data of all the databases.
  • Users: Users of the database.
  • Roles: Provides database security at a basic level.
  • Profile: A collection of parameters that set limits on the database resources.
  • RoleInRole: Role membership.

  • UserInRoles: User role membership.
  • UserHasTablespace: Permanent tablespace assigned to users.

  • UserHasTempTablespace: Temporary tablespace assigned to users.

NOTE: Before updating the default mapping sets, you should save the backup of the One Identity Manager database.

Mapping object types between Oracle database and One Identity Manager tables

The following table describes how to map object types in the Oracle database to the corresponding UNS tables in One Identity Manager.

Table 1: Mapping table for Oracle object types

Mapping set name

Oracle objects One Identity Manager table

Tablespaces

sys.dba_tablespaces

UNSItemB

Users

sys.dba_users UNSAccountB

Roles

sys.dba_roles

UNSGroupB

Profiles

sys.dba_profiles UNSContainerB

RoleInRole

sys.dba_role_privs (GROUPINGROUP) UNSGroupBInUNSGroupB

UserInRole

sys.dba_role_privs (USERINROLE)

UNSAccountBInUNSGroupB (effective assignments)

UserHasTablespace

sys.dba_users

UNSAccountBHasUNSItemB (Tablespace)

UserHasTempTablespace

sys.dba_users

UNSAccountBHasUNSItemB (Temporary Tablespace)

Initializing synchronization

Initializing synchronization

Initial synchronization initializes the One Identity Manager tables with the Oracle data. Oracle users, roles, tablespaces, user role membership, and role membership are synchronized into the One Identity Manager tables.

To run the initial synchronization

  1. In the Synchronization Editor, open the synchronization project.
  2. In the Navigation pane, select Start up Configurations.
  3. Click Execute.
  4. Confirm the security prompt with Yes.

    The synchronization workflow is completed successfully. The synchronized objects can be viewed in the Manager.

Provisioning workflow

Provisioning workflow

The Provisioning workflow is used to create, update, update role membership, and delete Oracle users.

Creating an Oracle user

Creating an Oracle user

The following procedure describes how to create Oracle users on the Oracle database.

To create an Oracle user
  1. Open the Manager.
  2. Navigate to Custom target systems | <required target system root> | User accounts. To view the target system name, expand the required target system root.
  3. Click Add.
  4. Provide the required username in the Name field.
  5. Provide a password in the Password text field. If not provided, the value from the DefaultUserPassword variable is used.
  1. Click Save.

    The user is provisioned in the Oracle Database.

Verwandte Dokumente