You use One Identity Manager to manage all objects of the Oracle E-Business Suite, that are required for the optimization of access control in the target system. These objects are imported into the One Identity Manager database during synchronization. You cannot display or edit their properties in the Manager.
Mapping an Oracle E-Business Suite in One Identity Manager
Architecture overview
One Identity Manager users for managing Oracle E-Business Suite
Configuration parameter
Synchronizing Oracle E-Business Suite
Setting up the initial synchronization
Managing E-Business Suite user accounts and employees
Users and permissions for synchronizing with Oracle E-Business Suite
Setting up the synchronization server
Creating a synchronization project for initial synchronization of Oracle E-Business Suite
Customizing the synchronization configuration
Information required for setting up a synchronization project
Setting up an initial synchronization project
Setting up a synchronization project for employee data
Setting up a synchronization project for organizational data
Configuring the synchronization log
Important notes for adjusting existing synchronization projects
Configuring synchronization in Oracle E-Business Suite
Configuring synchronization of several Oracle E-Business Suite systems
Updating schemas
Configuring department synchronization
Speeding up synchronization with revision filtering
Using specific statements for database initialization
Using additional schema types
Creating a schema extension file
Configuring single object synchronization
Accelerating provisioning and single object synchronization
Executing synchronization
Starting synchronization
Displaying synchronization results
Deactivating synchronization
Synchronizing single objects
Tasks after a synchronization
Troubleshooting
Setting up account definitions
Provision of login information
Creating account definitions
Creating manage levels
Creating mapping rules for IT operating data
Entering IT operating data
Modify IT operating data
Assigning account definitions to employees
Automatic assignment of employees to E-Business Suite user accounts
Assigning account definitions to departments, cost centers, and locations
Assigning account definitions to business roles
Assigning account definitions to all employees
Assigning account definitions directly to employees
Assigning account definitions to system roles
Adding account definitions in the IT Shop
Assigning account definitions to target systems
Deleting account definitions
Editing search criteria for automatic employee assignment
Changing the manage level in user accounts
Assigning account definitions to linked user accounts
Manually linking employees to E-Business Suite user accounts
Linking E-Business Suite user accounts to imported employees
Special features for the deletion of employees
Supported user account types
Password policies for E-Business Suite user accounts
Managing entitlement assignments
Predefined password policies
Using password policies
Editing password policies
General master data for password policies
Policy settings
Character classes for passwords
Custom scripts for password requirements
Editing the excluded list for passwords
Checking passwords
Testing the generation of passwords
Initial password for new E-Business Suite user accounts
Email notifications about login data
Assigning E-Business Suite entitlements to user accounts in One Identity Manager
Mapping of E-Business Suite objects in One Identity Manager
Assigning E-Business Suite entitlements to departments, cost centers, and locations
Assigning E-Business Suite entitlements to business roles
Adding E-Business Suite entitlements to system roles
Adding E-Business Suite entitlements to the IT Shop
Assigning E-Business Suite user accounts directly to an entitlement
Assigning E-Business Suite entitlements directly to a user account
Validity period of permission assignments
Effectiveness of entitlement assignments
Inheritance of E-Business Suite entitlements based on categories
Invalid entitlement assignments
Overview of all assignments
E-Business Suite systems
Handling of E-Business Suite objects in the Web Portal
Basic configuration data
General master data for E-Business Suite systems
Defining categories for the inheritance of E-Business Suite entitlements
How to edit a synchronization project
E-Business Suite user accounts
Entering master data for E-Business Suite user accounts
E-Business Suite permissions
General master data for E-Business Suite user accounts
Login data for E-Business Suite user accounts
Additional tasks for managing E-Business Suite user accounts
Overview of E-Business Suite user accounts
Assigning extended properties to E-Business Suite user accounts
Disabling E-Business Suite user accounts
Deleting E-Business Suite user accounts
Entering master data for E-Business Suite entitlements
Additional tasks for managing E-Business Suite entitlements
E-Business Suite applications
E-Business Suite menus
E-Business Suite data groups
E-Business Suite data group units
E-Business Suite request groups
E-Business Suite security groups
E-Business Suite attributes
E-Business Suite responsibilities
Displaying master data for E-Business Suite responsibilities
General master data for E-Business Suite responsibilities
HR people
Suppliers and contacts
Parties
Locations
Departments
Reports about E-Business Suite objects
Job server for E-Business Suite-specific process handling
Users and permissions for synchronizing with Oracle E-Business Suite
Default project templates for synchronizing an Oracle E-Business Suite
Editing E-Business Suite Job servers
General master data for Job servers
Specifying server functions
Target system managers
Project template for user accounts and entitlements
Project templates for HR data
Project templates for CRM data
Project template for OIM data
Editing system objects
Configuration parameters for managing Oracle E-Business Suite
Example of a schema extension file
About us
Mapping of E-Business Suite objects in One Identity Manager
Mapping of E-Business Suite objects in One Identity Manager
E-Business Suite systems
An E-Business Suite system represent the target system of the synchronization of an Oracle E-Business Suite in One Identity Manager. E-Business Suite Systems are required for the configuration of provisioning processes, the automatic assignment of employees to user accounts, and the inheritance of permissions to user accounts within an Oracle E-Business Suite.
NOTE: The Synchronization Editor sets up the E-Business Suite systems in the One Identity Manager database.
To set up a system:
-
Select the Oracle E-Business Suite | Systems category.
-
Select the system in the results list. Select the Change master data task.
-
Edit the master data for the system.
- Save the changes.
General master data for E-Business Suite systems
Mapping of E-Business Suite objects in One Identity Manager > E-Business Suite systems > General master data for E-Business Suite systems
On the General tab, you enter the following master data:
|
Property |
Description | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
Display name |
Name of the system to be displayed on the user interface | |||||||||
|
Account definition (initial) |
Initial account definition for creating user accounts. This account definition is used if automatic assignment of employees to user accounts is used for this User accounts are only linked to the employee (Linked state) if no account definition is given. This is the case on initial synchronization, for example. | |||||||||
|
Target system managers |
Application role, in which target system managers are specified for the system. Target system managers only edit the objects from systems to which they are assigned. A different target system manager can be assigned to each system. Select the One Identity Manager application role whose members are responsible for administration of this system. Use the | |||||||||
|
Synchronized by |
Type of synchronization through which data is synchronized between the system and One Identity Manager. You can no longer change the synchronization type once objects for this system are present in One Identity Manager. When you create system using the Synchronization Editor, One Identity Manager is used.
NOTE: If you select No synchronization, you can define custom processes to exchange data between One Identity Manager and the target system. | |||||||||
|
Distinguished name |
Unique name for the system in X509 syntax. |
button to add a new application role.Related topics
Defining categories for the inheritance of E-Business Suite entitlements
Mapping of E-Business Suite objects in One Identity Manager > E-Business Suite systems > Defining categories for the inheritance of E-Business Suite entitlements
In One Identity Manager,
To define a category
-
In the Manager, select the system in the Oracle E-Business Suite | Systems category.
- Select the Change master data task.
- Switch to the Mapping rule category tab.
- Extend the relevant roots
- To enable the category, double-click
.
- Enter a category name of your choice for user accounts and
- Save the changes.