Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Identity Manager 9.2.1 - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics
Overview of the One Identity Manager schema Table types and default columns in the One Identity Manager data model Notes on editing table definitions and column definitions Table definitions Column definitions Table relations Dynamic foreign key Supporting file groups
Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

Task definitions for the user interface

You use tasks to carry out specific actions on objects within One Identity Manager tools. Task definitions are created for object definitions. Depending on the selected objects, you have see different methods displayed in the user interface. These interface forms are made available to system users, taking into account their permissions group memberships, by the additional assignment of interface forms to permissions groups.

If a task definition is assigned a program function (QBMMethodHasFeature table) users can only run this task if they have the necessary permissions groups. An error occurs if the user does not own this program function and tries to run it.

For more information about managing permissions and running methods using program functions, see the One Identity Manager Authorization and Authentication Guide.

Predefined configurations are maintained by the schema installation and cannot be edited apart from a few properties. You can disable individual predefined tasks to prevent them being shown in the user interface. They remain disabled even after schema installation.

Apart from these object dependent task definitions, form methods and customizer are provided that cannot be edited.

NOTE: The tasks are displayed in alphabetical order in the task view of One Identity Manager.

Detailed information about this topic

Creating and editing task definitions

You can edit properties of task definitions or create new task definitions.

To create or edit a task definition

  1. In the Designer, select User Interface > Task definitions category.

  2. Select the task.

    - OR -

    To create a new task, select the Object > New menu item.

  3. Select the Change main data task and edit the task's main data.

  4. Assign a permissions group to the task definition.

    1. Select the View > Select table relations menu item and enable the DialogGroupHasMethod table.

    2. In the edit view, select the Permissions group view and select the permissions groups.

  5. Assign the task definition to the object definition for which the task should be offered in the user interface.

    1. Select the View > Select table relations menu item and enable the DialogObjectHasMethod table.

    2. In the edit view, select the Object view and select the object definition.

  6. (Optional) Assign a program function to the task definition.

    1. Select the View > Select table relations menu item and enable the QBMMethodHasFeature table.

    2. In the edit view, select the Program function view and select the program function.

  7. Select the Database > Commit to database and click Save.

Related topics

Disabling task definitions

You can disable individual predefined tasks to prevent them being shown in the user interface. They remain disabled even after schema installation.

To disable a task

  1. In the Designer, select the task in the User interface > Task definitions category.

  2. Select the Change main data task.

  3. Set the Disabled option.

  4. Select the Database > Commit to database and click Save.

Related topics

Script for conditional displaying of tasks

In principle, a user's permissions for displaying and editing tasks are controlled by permissions in permissions groups.

You can also use a script in the custom task definition to conditionally display a task. For example, this way you can control whether a task is only displayed in the Manager if a certain condition is met.

Example:

A method is displayed only when the object is loaded from the database. Adding a new object must not show the method.

If Not Entity.IsLoaded Then

Value = False

Else

Value = True

End If

NOTE: The script does not change the user’s permissions but simply the behavior if the object is loaded in one of the One Identity Manager tools. If you want to limit visibility and editability of a task, change the permissions of the permissions groups. For more information, see the One Identity Manager Authorization and Authentication Guide.

To specify a script for conditionally displaying a task

  1. In the Designer, select the task in the User interface > Task definitions category.

  2. Select the Change main data task.

  3. Enter a Visibility script in VB.Net syntax. If the return value is false, task is not displayed in any of the One Identity Manager tools.

  4. Select the Database > Commit to database and click Save.

Related topics
Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation