Chat now with support
Chat with Support

Identity Manager 8.0 - Configuration Guide

One Identity Manager Software Architecture Working with the Designer Customizing the One Identity Manager Default Configuration Checking Data Consistency Compiling a One Identity Manager Database Working with Change Labels Basic System Configuration Data
One Identity Manager Authentication Module Database Connection Data Configuration Parameters for System Configuration Setting up the Mail Notification System Enabling More Languages for Displaying and Maintaining Data Displaying Country Information Setting Up and Configuring Schedules Password Policies in One Identity Manager Reloading Changes Dynamically TimeTrace Databases Machine Roles and Server Functions Files for Software Update Operating Systems in Use System Configuration Reports Using Predefined Database Queries Managing Custom Database Objects within a Database
The One Identity Manager Data Model Granting One Identity Manager Schema Permissions Working with the User Interface
Object definitions for the User Interface User Interface Navigation Forms for the User Interface Statistics in the One Identity Manager Extending the Launchpad Task Definitions for the User Interface Applications for Configuring the User Interface Icons and Images for Configuring the User Interface Language Dependent Data Representation
Process Orchestration in One Identity Manager
Declaring the Job Server One Identity Manager Service Configuration Handling Processes in the One Identity Manager
Tracking Changes with Process Monitoring Conditional Compilation using Preprocessor Conditions One Identity Manager Scripts Maintaining Mail Templates Reports in the One Identity Manager Custom schema extensions Transporting One Identity Manager Schema Customizations Importing Data Web Service Integration SOAP Web Service One Identity Manager as SPML Provisioning Service Provider Searching for Errors in the One Identity Manager Processing DBQueue Tasks One Identity Manager Configuration Files

Task Definitions for the User Interface

You can use tasks to perform specific actions on objects with the One Identity Manager tools, for example, unlocking a user account or starting processes to copy applications. The tasks are shown in alphabetical order in the task view of the One Identity Manager tool.

Task definitions are created for object definitions so that different tasks can be shown in the user interface depending on the selected objects. These tasks are also available to Quests, taking their permissions group memberships into account, when tasks are also assigned to permissions groups. Apart from these object dependent task definitions, form tasks are provided through the user interface form and cannot be edited.

Predefined configurations are maintained by the schema installation and cannot be edited apart from a few properties. The default configuration is moved to a configuration buffer during handling. You can retrieve changes from the configuration buffer and restore the default configuration in this way.

To edit a task

  1. Select the category User Interface | User interface navigation | Task definitions in the Designer.
  2. Select the task.

    - OR -

    To create a new task, select the menu item Object | New.

  3. Edit the method's master data.
  4. Assign a permissions group to the program function.
    • Select the menu item View | Select table relations... and enable the table DialogGroupHasMethod.

      This shows the tab Permissions groups for assigning permissions groups.

You can disable individual predefined tasks to prevent them being shown in the user interface. They remain disabled even after schema installation.

To disable a task

  1. Select the category User Interface | User interface navigation | Task definitions in the Designer.
  2. Select the task.
  3. Set the option Disabled to "False".

If a task definition is assigned a program function, the user can only run this task if the necessary program function is assigned to him. An error occurs if the user does not own this program function and tries to run it. Program functions are not assigned to single users but to permissions groups. All users that are assigned to these groups can user the program function.

To make a method definition available to users using a program function

  1. Connect the task definition with the program function.
    1. Select the category User Interface | User interface navigation | Task definitions in the Designer.
    2. Select the task and assign the program function to it.
      • Select the menu item View | Select table relations... and enable the table DialogMethodHasFeature. The Program function tab is displayed in the edit view you used to assign the program function.
  2. Assign a permissions group to the program function.
    1. Select the category Permissions | Program functions in the Designer.
    2. Select the program function and assign it to a permissions group.
      • Select View | Select table relations... and enable the table DialogGroupHasFeature. This shows the tab Permissions groups for assigning permissions groups.
Detailed information about this topic

Task Definition Properties

Table 174: Task Properties
Property Meaning
Task name Name of the task.
Caption The display name is used to display the task in the administration tool task view. Display names can be given in more than one language.
Description Description of the method. The description is shown as a tooltip in the user interface task view.
Object Definition of the object for which the task is made available.
Enabled for This property specifies the intended use of the task. The task can be displayed in the graphical user interface (FatClient) and in the web application (Web client) and is labeled accordingly. These conditions determine whether a task can be shown in the appropriate administration tool.
Task behavior

Sets the behavior of the task. The following options are permitted:

No data Default. The task is available for single object and multiple object editing. Changes are executed separately for each object, even if multiple edit is used.
Save required The task saves data. A corresponding alert message is displayed.
Single objects only This method is only permitted for single objects.
Save required + single objects only The task saves data. A corresponding alert message is displayed. This method is only permitted for single objects.
Execute on multiple objects

This method is available for multiple editing of objects. Changes are executed for all objects together through a multi-object.

Save required + execute on multiple objects The task saves data. A corresponding alert message is displayed. This method is available for multiple editing of objects. Changes are executed for all objects together through a multi-object.
Icon Icon for displaying the task in the user interface.
Script

Task script. You can use function calls or commando input in VB.Net statements for the task script. The currently loaded object is always addressed with base .

NOTE: The database needs to be complied after changing a task script.

Disabled

Specifies if the task is displayed in the user interface or not. Disabled tasks are never displayed in the user interface. Predefined system users are not effected by this limitation. This modification is also permitted for predefined default user interface tasks and is not overwritten when the schema is installed.

Processing status The process state is used for creating custom configuration packages.
Permissions group

Permissions group, whose users can use these tasks.

To assign a permissions group

  • Select the menu item View | Select table relations... and enable the table DialogGroupHasMethod.

    This shows the tab Permissions groups for assigning permissions groups.

Program function

Program function, which is linked to the task definition.

To assign a program function

  • Select the menu item View | Select table relations... and enable the table DialogMethodHasFeature.

    The Program function tab is displayed in the edit view you used to assign the program function.

Related Topics

Applications for Configuring the User Interface

The One Identity Manager’s default version supplies applications and predefined navigation menus for the One Identity Manager tools "Manager", "Designer", "Launchpad" and the One Identity Manager web interface. Predefined configurations are maintained by the schema installation and cannot be edited apart from a few properties. It is not usually necessary to define your own applications. You might possibly need your own applications for a customer specific web interface.

The available programs are shown in the category Base data | Security settings | Programs in the Designer.

Table 175: Predefined Programs
Product Meaning
Default

Default for front-ends without special usage, for example Job Queue Info or Report Editor. Required to determine the authentication module.

Designer Program for the configuration tool, the Designer.
Manager Program for the administration tool, the Manager.
Launchpad Program for the tool Launchpad.
WebDesigner Program for installing the Web Portal.
WebDesignerEditor Program for the Web Designer to configure and extend the Web Portal.
Application server Program for installing the application server.
SOAP Service Application for installing the SOAP Web Service.
SPML Service Program for installing the SPML Web service.

Program Properties

Table 176: Program Properties
Property Meaning
Program Name of the program.
Remarks Comments about the program.
Start menu item If the given start menu item is available to a system user in a program’s navigation menu, the program navigates straight to this position in the menu when it starts up. You can specify, for example, a home page for a system user with this feature. This function is mainly used by web interfaces.
Configuration data Configuration data is used to determine a system user by the dynamic authentication module. You can also adapt the configuration data for the default applications that are supplied.
Min. version Lowest version of the application that can run with the database version in use. This input is used solely as information, the version number is not verified.
Engine based Specifies whether menu navigation and forms can be assigned to the program.
Processing status The process state is used for creating custom configuration packages.
Authentication module

Authentication module used by the program.

To display authentication modules

  • Select the menu item View | Select table relations... and enable the table DialogProductHasAuthentifier.
Form

Forms displayed in the program.

To display a form

  • Select the menu item View | Select table relations... and enable the table DialogProductHasSheet.
Menu

Menus displayed in the program.

To display menu items

  • Select the menu item View | Select table relations... and enable the table DialogTreeInDialogProduct.
System user

System users that use the program.

To display system users

  • Select the menu item View | Select table relations... and enable the table DialogUserConfiguration.
Related Topics
Related Documents