Chat now with support
Chat with Support

Identity Manager 9.1.1 - Release Notes

Modified synchronization templates

The following provides you with an overview of modified synchronization templates. Patches are made available for updating synchronization templates in existing synchronization projects. For more information, see Patches for synchronization projects.

Table 14: Overview of synchronization templates and patches

Module

Synchronization template

Type of modification

Target System Synchronization Module

Automatic One Identity Manager synchronization

None

Azure Active Directory Module

Azure Active Directory synchronization

None

Azure Active Directory B2C tenant

None

Active Directory Module

Active Directory synchronization

changed

Active Roles Module

Synchronize Active Directory domain via Active Roles

none

Cloud Systems Management Module

Universal Cloud Interface synchronization

changed

Oracle E-Business Suite Module

Oracle E-Business Suite synchronization

none

Oracle E-Business Suite CRM data

none

Oracle E-Business Suite HR data

none

Oracle E-Business Suite OIM data

None

Microsoft Exchange Module

Microsoft Exchange 2013/2016/2019 synchronization (v2)

changed

Google Workspace Module

Google Workspace synchronization

none

LDAP Module

AD LDS synchronization

None

AD LDS Synchronization (version 2)

changed

OpenDJ synchronization

None

OpenDJ Synchronization (version 2)

changed

Generic LDAP Synchronization (version 2)

changed

Oracle DSEE Synchronization (version 2)

changed

Domino Module

Lotus Domino Synchronization

changed

Exchange Online Module

Exchange Online synchronization (v2)

None

Microsoft Teams Module

Microsoft Teams (via Azure Active Directory)

None

OneLogin Module

OneLogin Domain Synchronization

changed

Privileged Account Governance Module

One Identity Safeguard synchronization

none

SAP R/3 User Management module Module

SAP R/3 Synchronization (Base Administration)

changed

SAP R/3 (CUA subsystem)

none

SAP R/3 Analysis Authorizations Add-on Module

SAP R/3 BW

none

SAP R/3 Compliance Add-on Module

SAP R/3 authorization objects

changed

SAP R/3 Structural Profiles Add-on Module

SAP R/3 HCM authentication objects

none

SAP R/3 HCM employee objects

none

SharePoint Module

SharePoint synchronization

none

SharePoint Online Module

SharePoint Online synchronization

none

Universal Cloud Interface Module

SCIM Connect via One Identity Starling Connect

none

SCIM synchronization

none

Unix Based Target Systems Module

Unix Account Management

none

AIX Account Management

none

Patches for synchronization projects

The following is a list of all patches provided for synchronization projects in One Identity Manager 9.1.1. Every patch contains a script, which tests whether the patch can be applied to the synchronization project. This depends on the specific configuration of the synchronization.

For more information, see Applying patches to synchronization projects.

Table 15: Patches for Active Directory

Patch ID

Patch

Description

Issue ID

VPR#35808

Correction of the property mapping rule for StructuralObjectClass

Corrects the StructuralObjectClass_vrtobjectClass property mapping rule in the domainDNS mapping. Ignore case is enabled.

This patch is applied automatically when One Identity Manager is updated.

35808

Table 16: Patches for Microsoft Exchange

Patch ID

Patch

Description

Issue ID

VPR#36151

Correction of property mapping rules for Mailbox database and Archive mailbox database

Corrects the property mapping rule for Mailbox database and Archive mailbox database in the Mailbox mapping, to prevent changes to mailbox databases in One Identity Manager being overwritten by old values.

This patch is applied automatically when One Identity Manager is updated.

36151

Table 17: Patches for LDAP

Patch ID

Patch

Description

Issue ID

VPR#36271

New property mapping rule for the UserPassword schema property

Inserts a property mapping rule for the UserPassword schema property into the User and InetOrgPerson mappings.

36271

VPR#36450

New property mapping rule for the AccountDisabled schema property

Inserts a property mapping rule for the AccountDisabled schema property into all mappings with the LDAPAccount schema type.

36450

Table 18: Patches for HCL Domino

Patch ID

Patch

Description

Issue ID

VPR#35816

Correction of the InternetAddress mapping

Corrects details of the vrtInternetAddress1st schema property in the Database, Group, and Person mappings.

This patch is applied automatically when One Identity Manager is updated.

35816

Table 19: Patches for OneLogin

Patch ID

Patch

Description

Issue ID

VPR#35969

Correction of schema properties for resolving references

Corrects details of schema properties from the OLGEvent (all) schema class.

This patch is applied automatically when One Identity Manager is updated.

35969

Table 20: Patches for SAP R/3

Patch ID

Patch

Description

Issue ID

VPR#35991

Correction of property mapping rules in the userExternalID mapping

Sets the Force mapping against direction of synchronization option on various property mapping rules in the userExternalID mapping.

This patch is applied automatically when One Identity Manager is updated.

35991

Table 21: Patches for SAP R/3 authorization objects

Patch ID

Patch

Description

Issue ID

VPR#35944

Correction of the reload threshold in the start up configuration

Increases the reload threshold in the Initial Synchronization start up configuration.

This patch is applied automatically when One Identity Manager is updated.

35944

Table 22: Patches for the SCIM interface (in Universal Cloud Interface Module)

Patch ID

Patch

Description

Issue ID

VPR#36108

Updates the target system schema

Updates the target system schema.

This patch is applied automatically when One Identity Manager is updated.

36108

Table 23: Patches for the Universal Cloud Interface (in Cloud Systems Management Module)

Patch ID

Patch

Description

Issue ID

VPR#36150

Correction of handling ineffective assignments in the Provisioning workflow

Extends a condition on the Insert processing method in synchronization steps for handling memberships of cloud groups and cloud system entitlements in the Provisioning workflow. This prevents provisioning of ineffective assignments.

36150

Deprecated features

The following features are no longer supported with this version of One Identity Manager:

  • In future, mutual aid as well as password questions and password answers will not be supported in the Manager.

    Use the Password Reset Portal to change passwords. Save your password questions and password answers in the Web Portal.

  • The SOAP Web Service is no longer supported.

  • The SPML Webservice is no longer supported.

  • The API Designer is no longer supported.

    Added instructions in the One Identity Manager API Development Guide on how to convert XML-based API definition code into a plugin library.

  • Administration of different versions of a compiled project using compilation branches is no longer supported.

  • The Visual Studio Code extension for HTML application development is no longer supported.

  • Compiling HTML applications in the Database Compiler is no longer supported.

  • The SharePoint 2010 connector is no longer supported.

  • The Microsoft Exchange 2010 connector is no longer supported.

  • The Relevance for compliance property for IT Shop requests (PWODecisionStep.ComplianceRelevance and QERWorkingStep.ComplianceRelevance) is no longer supported.

  • Starling Two-Factor Authentication and the Starling 2FA app are no longer be supported as the Starling Two-Factor Authentication service will be discontinued on November 1, 2022.

    • OneLogin is used for multi-factor authentication for requests or attestation.

    • Use the new functionality of adaptive cards with Starling Cloud Assistant to approve requests and attestation cases.

  • The generic LDAP connector is no longer supported. Use the LDAP Connector (version 2).

The following features will be discontinued in later One Identity Manager versions and should no longer be utilized:

  • The following scripts are labeled obsolete. A warning to this effect is issued during compilation.

    • VI_GetValueOfObject

    • VID_GetValueOfDialogObject

    • VI_ITDataFromOrg

    • VI_AE_ITDataFromOrg

    • VI_GetOrgUnitFromCertifier

    • VI_ConvertDNToCanonicalName

    • VI_PersonAuto_LDAP

    • VI_PersonAuto_ADS

    • VI_PersonAuto_EBS

    • VI_PersonAuto_Notes

    • VI_PersonAuto_SAP

    • VI_PersonAuto_SharePoint_SPSUser

    • VI_GetAttestationObject

System requirements

Before installing One Identity Manager 9.1.1, ensure that your system meets the following minimum hardware and software requirements.

For more detailed information about system prerequisites, see the One Identity Manager Installation Guide.

NOTE: When setting up a virtual environment, carefully consider the configuration aspects such as CPU, memory availability, I/O subsystem, and network infrastructure to ensure the virtual layer has the necessary resources available. For more information about environment virtualization, see One Identity's Product Support Policies.

Every One Identity Manager installation can be virtualized. Ensure that performance and resources are available to the respective One Identity Manager component according to system requirements. Ideally, resource assignments for the database server are fixed. Virtualization of a One Identity Manager installation should only be attempted by experts with strong knowledge of virtualization techniques.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating