Chat now with support
Chat with Support

Identity Manager 8.0 - Configuration Guide

One Identity Manager Software Architecture Working with the Designer Customizing the One Identity Manager Default Configuration Checking Data Consistency Compiling a One Identity Manager Database Working with Change Labels Basic System Configuration Data
One Identity Manager Authentication Module Database Connection Data Configuration Parameters for System Configuration Setting up the Mail Notification System Enabling More Languages for Displaying and Maintaining Data Displaying Country Information Setting Up and Configuring Schedules Password Policies in One Identity Manager Reloading Changes Dynamically TimeTrace Databases Machine Roles and Server Functions Files for Software Update Operating Systems in Use System Configuration Reports Using Predefined Database Queries Managing Custom Database Objects within a Database
The One Identity Manager Data Model Granting One Identity Manager Schema Permissions Working with the User Interface
Object definitions for the User Interface User Interface Navigation Forms for the User Interface Statistics in the One Identity Manager Extending the Launchpad Task Definitions for the User Interface Applications for Configuring the User Interface Icons and Images for Configuring the User Interface Language Dependent Data Representation
Process Orchestration in One Identity Manager
Declaring the Job Server One Identity Manager Service Configuration Handling Processes in the One Identity Manager
Tracking Changes with Process Monitoring Conditional Compilation using Preprocessor Conditions One Identity Manager Scripts Maintaining Mail Templates Reports in the One Identity Manager Custom schema extensions Transporting One Identity Manager Schema Customizations Importing Data Web Service Integration SOAP Web Service One Identity Manager as SPML Provisioning Service Provider Searching for Errors in the One Identity Manager Processing DBQueue Tasks One Identity Manager Configuration Files

Configuring the One Identity Manager Schema

Configuring the One Identity Manager Schema

The SPML Web Service supports the entire One Identity Manager schema. It is necessary to define the objects and properties to be managed as well as the relations in the One Identity Manager schema in order to manage objects and their relations using the SPML web service. The SPML web service cannot be used until the objects and properties as well as references have been defined in the One Identity Manager schema as being managed with SPML. After the definition has been made, two schema files are created that are needed for validation by the SPML Web Service. The files should be exchanged in the appropriate SPML Web Service directory.

Detailed information about this topic

Preparing the One Identity Manager Schema for Exporting to the SPML Schema

Preparing the One Identity Manager Schema for Exporting to the SPML Schema

For administration of single objects with their properties and for relations between different object types with SPML Web Service, label the corresponding tables, columns and the One Identity Manager schema table relations to be exported to the SPML schema.

Edit the table and column definitions and the table relations with Schema Editor’s Designer. We shall only go into the minimum amount of data required at this point.

To manage objects and their properties with the SPML web service

  1. Select the category One Identity Manager Schema in the Designer.
  2. Select the table and start the Schema Editor with the task Show table definition.
  3. Set the option Export for SPML schema.
  4. Select the column in the Schema Editor and swap to More tab.
  5. Set the option Export for SPML schema.

NOTE: If references between different One Identity Manager schema object types should be managed with the SPML Web Service, both objects effected have to be marked with the SPML administration option that means both tables have to be labeled with Export for SPML schema.

References between object types are mapped by foreign key relations and many-to-many assignments in the One Identity Manager.

  • It is sufficient to mark the respective column in the One Identity Manager schema with the option Export for SPML schema in order to handle foreign key relations with SPML.

    NOTE: Only one foreign key relation can be managed between two object types with SPML. Thus the business role manager (Org.UID_PersonHead) can be maintained with SPML, but not simultaneously with the deputy manager (Org.UID_PersonHeadSecond).

  • For the configuration of many-to-many relations for use with SPML, select the respective many-to-many tables and label the table relation with the option Export for SPML schema.
Related Topics

Creating the Schema File

Once you have labeled all tables, columns and table relations that should be managed using SPML, you need to create the necessary schema file for SPML Web Service.

Before exporting, ensure that you have committed all the changes in the Designer in the main database and that all open calculation tasks for the DBQueue Processor have been processed.

To create a schema file

  1. Start the Schema Editor in the Designer in the category One Identity Manager Schema.
  2. Select Schema | Export SPML schema information... in the menu.
  3. Enter the directory that the schema file is going to be created in.
  4. Click OK.

    This starts the export. The export can take some time depending on the number of changes.

  5. Click OK.

IMPORTANT: If you change other SPML relevant settings on the One Identity Manager schema at a later date, you must recreated the schema file.

Place the schema files "QOIM_Schema.xsd" and "QOIM_SpmlTargetSchema.xsd" in the SPML Web Service directory (by default directory "Schema" in the installation directory). Enter the storage location for the schema files in the SPML Web Service configuration file.

Related Topics

Testing SPML Web Service Functionality

A simple test front-end is supplied in order to test the basic functionality of SPML Web Service. Prerequisite for using the test front-end is that SPML Web Service is correctly installed and configured.

Use a browser to check whether SPML Web Service is functioning and correctly installed.

The SPML web service can be reached over a browser under:

http://<server>/<application name>

https://<server>/<application name>

TIP: You can open the web server's status display in Job Queue Info. Select the menu item View | Server state in the Job Queue Info and display the web server's state on the Web servers tab by using Open in browser in the context menu.

Detailed information about this topic
Related Documents