Chat now with support
Chat with Support

Identity Manager 9.2.1 - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics
Overview of the One Identity Manager schema Table types and default columns in the One Identity Manager data model Notes on editing table definitions and column definitions Table definitions Column definitions Table relations Dynamic foreign key Supporting file groups
Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

Editing the user interface

Certain components of the One Identity Manager’s graphical user interface are stored in the One Identity Manager schema and can be tailored to suit customer requirements. Menu items in the navigation structure, interface forms, and task definitions can be configured in this way.

Menu items, interface forms, and task definitions are assigned to permissions groups. The user's effective components of the user interface depend on the authentication module used for logging in to the One Identity Manager tools. If a user logs in to a One Identity Manager tool, a system user is found and the available menu items, interface forms, task definitions, and individual program functions are identified depending on the permission groups to which this system user belongs and the adapted user interface is loaded.

Data is displayed as objects in the user interface. User interface objects are meta-objects. You provide a selection of configurable elements that describes how the data stored in the database is perceived. These objects enable data to be distinguished by specific properties. They provide an additional control function for configuring the user interface. Hence, interface forms and tasks are linked to object definitions, which means that different forms and tasks are displayed in the user interface depending on which object is selected.

You can only modify the supplied user interface components to a certain extent and they are overwritten by schema installation. You can integrate components of the default user interface into your own user-defined user interface. If necessary you can disable individual components of the default user interface to stop them from being displayed. The system users provided are not effected by this limitation. Components labeled as disabled remain so after schema installation.

Captions are used in the user interface to create user friendly names for different components of the user interface such as menu items, tasks, and column names. You can maintain multi-language display text in One Identity Manager which enables you to display captions in different languages.

The default One Identity Manager installation is supplied in the English - United States [en-US] and German - Germany [de-DE] language. You can add other languages to the user interface and display text if required. In this instance, you must translate the text before One Identity Manager goes live. There is a Language Editor in the Designer to help you do this. A special control is provided in the One Identity Manager tools that aids multi-language input.

A user interface is always set up for one application. The standard version of One Identity Manager includes the applications and predefined navigation for the Manager, Designer, and Launchpad tools.

Detailed information about this topic

Object definitions for the user interface

The data in the user interface is represented by objects. Objects in the user interface map the data stored in the database. These objects can be configured and enable data to be distinguished by specific properties.

User interface forms and task definitions are linked to object definitions and displayed depending on the selected object definition. Object definitions provide an additional control function for configuring the user interface.

You can assign several objects to each table in the One Identity Manager schema. Basically, each database table should have at least one object definition that is generally valid, that means, without limited selection criterion. Other object definitions then relate to the respective special case limited by the general case.

TIP: To create object definitions for new tables, run the Missing DialogObject consistency check in the Designer and use the repair method. You must edit object definitions created like this afterward.

Table 30: Example relationship between tables and user interface object definitions
Table Object definition Limitation according to Object Definition

ESet

System roles (ESet)

None

ESet

System roles for IT Shop (ESet_ITShop)

System roles that can be excluded from the IT Shop

Detailed information about this topic

Selection criteria for object definitions

The table entries to be displayed are found through a selection script and an object definition condition.

  • Formulate a selection script as a VB.Net expression which returns either True (True) or False (False), depending on whether or not the transferred data record belongs to this object definition.

  • Formulate a condition as a WHERE clause database query so that an object definition can also be used for display in result lists.

IMPORTANT: You must compile the database for the selection criteria to come into effect.

Example: Displaying system roles for the IT Shop

Selection script to determine at runtime whether this data record concerns a system role for the IT Shop:

Value = $IsForITShop:Bool$

Condition (WHERE clause) to determine whether this system role concerns the IT Shop:

IsForITShop=1

Related topics

Using the captions for object definitions

You can define the following captions to represent each object definition in the administration tool user interface.

  • List caption

    The list caption is used in One Identity Manager tools as the title for result lists. The display text of the object definition that you specified through the selected menu item, is used as the list title.

    This value can be overridden by a list title that is defined specifically for the menu item.

  • Form caption

    The form caption is used to display the current object definition, for example, in the Manager's status bar.

The current object definition is determined when an item in the administration tool result list is selected. Valid object definitions and thereby the possible captions are determined by selection scripts. From the possible display texts, the caption of the object definition with the lowest sort order is shown.

Example:
Table 31: Captions depending on the sort order of the object definitions
Object definition Restrictions Sort order

Caption

System roles (ESet)

None

99

System roles

System roles for IT Shop (ESet_ITShop)

System roles that can be excluded from the IT Shop

8

System roles for IT Shop

When you select a system role in the result list, the related caption is System roles. If the system role is also labeled for the IT Shop (IsForITShop=1), this object is assigned to another object definition by means of the VB.Net expression and the display text System roles for IT Shop is used.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating