Chat now with support
Chat with Support

Identity Manager 8.0 - Configuration Guide

One Identity Manager Software Architecture Working with the Designer Customizing the One Identity Manager Default Configuration Checking Data Consistency Compiling a One Identity Manager Database Working with Change Labels Basic System Configuration Data
One Identity Manager Authentication Module Database Connection Data Configuration Parameters for System Configuration Setting up the Mail Notification System Enabling More Languages for Displaying and Maintaining Data Displaying Country Information Setting Up and Configuring Schedules Password Policies in One Identity Manager Reloading Changes Dynamically TimeTrace Databases Machine Roles and Server Functions Files for Software Update Operating Systems in Use System Configuration Reports Using Predefined Database Queries Managing Custom Database Objects within a Database
The One Identity Manager Data Model Granting One Identity Manager Schema Permissions Working with the User Interface
Object definitions for the User Interface User Interface Navigation Forms for the User Interface Statistics in the One Identity Manager Extending the Launchpad Task Definitions for the User Interface Applications for Configuring the User Interface Icons and Images for Configuring the User Interface Language Dependent Data Representation
Process Orchestration in One Identity Manager
Declaring the Job Server One Identity Manager Service Configuration Handling Processes in the One Identity Manager
Tracking Changes with Process Monitoring Conditional Compilation using Preprocessor Conditions One Identity Manager Scripts Maintaining Mail Templates Reports in the One Identity Manager Custom schema extensions Transporting One Identity Manager Schema Customizations Importing Data Web Service Integration SOAP Web Service One Identity Manager as SPML Provisioning Service Provider Searching for Errors in the One Identity Manager Processing DBQueue Tasks One Identity Manager Configuration Files

Binding a Web Service

Create a custom script for integrating a web service into One Identity Manager. There is a wizard available to assist you. The Web Service Integration Wizard finds all the methods used by the web service and creates scripts to call the required methods. The data from One Identity Manager is passed as parameters to the method. Which operations in the external application can be executed, is determined through the methods defined in the web service. The wizard created new entries in the tables DialogWebService and DialogScript.

The Web Service Integration Wizard supports different types of method calls. Each type supports the method call definition and, therefore, script creation to different degrees.

Generic Web Service Call

Generic Web Service Call

You use the generic web service call to publish data from a custom target system to an external application through a web service. The Web Service Integration Wizard queries all the required parameters and generates scrips from them.


The external application data is mapped in One Identity Manager as a custom target system.

  • A custom target system is set up (table UNSRootB). The property "Synchronized by" has the value "Synchronization by script".
  • A server for provisioning data is set up and stored as synchronization server in the custom target system.

For more detailed information about setting up script controlled provisioning, see the One Identity Manager Target System Base Module Administration Guide.

Default Processes

One Identity Manager supplies default processes for provisioning data from custom target system to a web service.

To use these processes, the scripts you generated with the Web Service Integration Wizard must following the naming convention: <Customer prefix>_<table>_<Ident_UNSRoot>_<event>.

IMPORTANT: If your target system contains a hyphen ("-") in it's name, you must remove it from the script function in the part <Ident_UNSRoot>. Otherwise, error may occur during script processing.

Some of these processes handle the web service return values.

Table 327: Default processes for Synchronizing by Script
Object in custom target system (table) Process Saving the return value
Container (UNSContainerB) VI_UnsContainer_Generic UNSContainerB.ObjectGUID
User accounts (UNSAccountB) VI_UnsAccountB_Generic UNSAccountB.ObjectGUID
  VI_UnsAccountInGroup_Generic_Del -
  VI_UnsAccountInGroup_Generic_Add -
Groups (UNSGroupB) VI_UnsGroup_Generic UNSGroupB.ObjectGUID
  VI_UNSGroupBInUNSGroupB_Generic_Del -
  VI_UnsGroupBInUNSGroupB_Generic_Add -
Permissions controls (UNSItemB) VI_UnsItem_Generic -
  VI_UnsGroupHasItem_Generic_Del -
  VI_UnsGroupHasItem_Generic_Add -
  VI_UnsAccountHasItem_Generic_Del -
  VI_UnsAccountHasItem_Generic_Add -

Direct Web Service Call

Direct Web Service Call

The Web Service Integration Wizard finds all parameters that are defined in the method and from it, generates the script code. The parameters are passed in the function call You can modify the parameters.

To run a script

Self-Defined Web Service Call

Self-Defined Web Service Call

The Web Service Integration Wizard finds all the parameters, which are defined in the method. You define how the parameter is passed.

To run a script

Related Documents