About this guide
One Identity Manager software architecture
Working with objects in One Identity Manager
Inserting, modifying and deleting an object in One Identity Manager
Customizing the One Identity Manager default configuration
Reloading changes dynamically
Locking and unlocking individual properties for editing
System configuration reports
Adjusting the One Identity Manager base configuration
Overview of the settings of a database
Changing the connection data for the database
Database configuration for a test, development or productive environment
Language settings for displaying and maintaining the data
Configuration parameters for system configuration
One Identity Manager schema basics
Overview of the One Identity Manager schema
Table types and default columns in the One Identity Manager data model
Notes on editing table definitions and column definitions
Editing table definitions and column definitions
Table types in One Identity Manager
Editing the user interface
Database views of the view type
Database views of the proxy type
Database views of the Union type
Database views of the read-only type
Using table scripts
Editing table relations
Working with a Globally Unique Identifier module
Templates for generating values
Editing value templates
Preventing a change to a column
Restricting the execution of value templates
Example of local value templates within an object
Example of cross-object value templates
Formatting of values
Defining unique columns
Limiting the column length
Defining decimal places for displaying values
Predefined formatting types
Creating formatting scripts
Column dependencies for setting values
Permitted values for a column
Configuring columns for full-text search
Mapping dynamic foreign keys
Supporting file groups
Table properties
Column properties
Object definitions for the user interface
Localization in One Identity Manager
Selection criteria for object definitions
Using the captions for object definitions
Editing the object definitions
Object definition properties
User interface navigation
Navigation elements
Recommendations for editing menu navigation
Notes on working with the User Interface Editor
Selecting the user interface navigation view for editing
Forms for the user interface
Loading the entire user interface navigation
Loading the user interface navigation using an application
Directly loading menu items
Loading menu items using permissions groups
Loading the user interface navigation using a WHERE clause
Simulating the user interface navigation during editing
Copying an existing user interface navigation for a new permissions group
Creating a new user interface navigation
Copying a menu item
Creating a new menu item
Creating a menu category
Assigning a menu item to an application
Assigning a menu item to a permissions group
General menu item properties
Creating database queries for data-dependent menu items
Editing lists
Using links
Using variables
Recommendations for editing forms
Editing user interface forms
Statistics in One Identity Manager
Notes on working with the Form Editor
Disabling user interface forms
Copying a user interface form
Creating a new user interface form
Assigning a user interface form to an application
Assigning a user interface form to a permissions group
Assigning a user interface form to an object definition
Assigning a user interface form to a menu item
Displaying custom columns and tables on master data forms
Forms for custom extensions
User interface form properties
Working with overview forms
Editing statistic definitions
Including statistics in the user interface
Diagram types for visualizing statistics
Examples of statistic definitions
Extending the Launchpad
Recommendations for extending the Launchpad
Actions for the Launchpad
Creating new menu items and actions for the Launchpad
Task definitions for the user interface
Applications for configuring the user interface
Icons and images for configuring the user interface
Using predefined database queries
Working in different time zones
Determining working hours
Editing country information
Process orchestration in One Identity Manager
Enabling other countries and states
Specifying the standard hours for countries and states/provinces/counties
Displaying public holidays for countries and states
Editing countries
Editing states
Country properties
State properties
Public holiday properties
Language-dependent data representation
Basic rules for using language-dependent data
Labeling columns for translation
Using the text memory for translation
Displaying the translations in the Language Editor
Showing usage of a translation
Editing the translations from a single table
Editing all translations
Changing the key text of a translation
Importing translations
Setting up Job servers in Designer
Tracking changes with process monitoring
Editing a Job server
Machine roles and server functions
Job server statistic information
Connection data for process generation
Installing the One Identity Manager Service on the Job server
Configuring the One Identity Manager Service
One Identity Manager Service configuration files
Customizing the One Identity Manager Service configuration for a Job server
Handling processes in One Identity Manager
Template for the configuration file
Selecting the module types and editing the parameters
Validity check on configuration file
Process collection module
Job destination module
Selecting a method
Logwriter module
Dispatcher module
Connection module
HTTP authentication module
Module plug-ins
HTTPLogPlugin
ScheduleCommandPlugin
RequestWatchDogPlugin
PerformanceCounterPlugin
DebugMailPlugin
ShareInfoPlugin
RemoteConnectPlugin
File module with private key
Editing processes with the Process Editor
Defining processes
Creating and editing processes
Copying processes
Creating and editing process steps
Copying individual process steps
Importing a process step into a process
Searching for an entry within a process
Comparing processes
Exporting and importing processes
Properties of a process
Process step properties
Process step parameters
Events for processes
Simulating process generation
Checking the validity of a process
Compiling a process
Using process-specific and global variables for the process definition
Thresholds for handling processes
Specifying the executing server
Notifications about process step handling
Executing processes automatically
Displaying the status of process plans
Starting a process plan immediately
Creating and editing a process plan
Process plan properties
Overview of process components
Basic rules for process monitoring
Logging data changes
Logging process information during process handling
Conditional compilation using preprocessor conditions
Editing the process information for processes
Editing the process information for process steps
Editing the process information for events
Recording messages in the process history
Process tracking for DBQueue Processor operations
Archiving and deleting records
Preprocessor-relevant configuration parameters
Preprocessor conditions in objects
Preprocessor conditions in VB.Net expressions
Evaluation of preprocessor conditions during compilation
Scripts in One Identity Manager
Using scripts
Notes on message output
Notes on using date values
Using dollar ($) notation
Reports in One Identity Manager
Accessing local object columns
Accessing columns of an object connected by a relation
Accessing the old column value
Accessing the display value of a column
Accessing references in comments
Accessing meta values of the local object
Using base. Object
Calling functions
Pre-scripts for use in processes and process steps
Using session services
Querying configuration parameters
Testing for the existence of certain database entries
Querying session object global variables
Using #LD-Notation
Scripts in the script library
Support for processing of scripts in Script Editor
Creating and editing scripts with the Script Editor
Copying scripts in the Script Editor
Testing a script in the Script Editor
Testing script compilation in the Script Editor
Overriding scripts
Editing and testing script code with the System Debugger
Loading the system library
Editing script code in the System Debugger
Logging database queries and object actions
Testing script code in the System Debugger
Testing scripts in the System Debugger
Testing templates and formatting scripts in the System Debugger
Testing methods in the System Debugger
Testing table scripts in the System Debugger
Saving changes to the database
Working with the Report Editor
Adding custom tables or columns to the One Identity Manager schema
Menu items in Report Editor
Views in the Report Editor
Program settings for the Report Editor
Logging database queries
Creating and editing reports in the Report Editor
Editing the general report properties
Creating and editing a data source
Data retrieval using an SQL query
Data retrieval using a database view
Data retrieval using an object
Data retrieval using single object history
Data retrieval using multiple object history
Data retrieval using historical assignments
Data query for simulation data
Report parameters
Editing report parameters
General parameter settings
Defining the parameter values
Settings for calculating values
Using virtual data sources
Editing the report form
Example of a simple report with data grouping
Translating reports
Embedding reports in the user interface
Creating and exporting reports on a cyclical basis
Creating a new table
Extending a table
Defining columns
Web service integration
Creating a simple column
Creating a foreign key column
Creating a dynamic foreign key column
Creating a new column for database views of View type
Advanced configuration of columns
Creating database views with read-only type
Creating database views of Union type
Creating a new assignment table
Creating indexes
Removing custom schema extensions
Permissions for schema extensions
Change labels for the schema extensions
Applying the schema extensions
Recommendations for advanced configuration of custom schema extensions
Managing custom database objects within the database
Binding a web service
SOAP Web Service
Generic web service call
Direct web service call
Self-defined web service call
Creating a web service solution with the Web Service Integration Wizard
Modifying a web service solution
Deleting a web service solution
Installing and configuring the SOAP Web Service
One Identity Manager as SPML provisioning service provider
Installing SOAP Web Service
Configuring the SOAP Web Service
Display the status of a SOAP Web Service
Uninstalling the SOAP Web Service
Examples of calls
SPML web service
Installing and configuring the SPML web service
Configuring the One Identity Manager schema
Testing SPML web service functionality
Processing DBQueue tasks
Configuring the DBQueue Processor for test and development environments
Initializing the DBQueue Processor
Reinitialization of DBQueue Processor
Controlling processing of DBQueue Processor tasks
Processing DBQueue Processor tasks
Reactivating DBQueue Processor tasks
Bulk processing in DBQueue Processor
How the central dispatcher communicates with individual slots
Appendix: Configuration files of the One Identity Manager Service
Example of cross-object value templates
One Identity Manager schema basics > Templates for generating values > Example of cross-object value templates
If a value template references a value from another object, it can be accessed using the FK relation.
Figure 11: Effect of Cross Object Value Templates
If, for example, the surname of an Active Directory user account (ADSAccount.Surname) is derived from the surname of an employee (Person.Lastname), enter the template for the column ADSAccount.Surname as follows:
Value = $FK(UID_Person),Person.Lastname$
If the employee’s surname changes, the last name of the Active Directory user changes, too. The column Person.Lastname is therefore the sender and the column ADSAccount.Surname is the receiver. The relation is mapped in the table DialogNotification as follows:
Person.Lastname --> ADSAccount.Surname
Formatting of values
You can customize the column formats to your requirements and create your own additional formats. You can also use predefined formatting scripts along side formatting types to check values in a column.
|
|
Note: You can get an overview of the existing columns in the system with predefined formatting types or formatting scripts in Designer in One Identity Manager Schema | Formatting rules. |
Related Topics
- Defining unique columns
- Limiting the column length
- Defining decimal places for displaying values
- Predefined formatting types
- Creating formatting scripts
- Templates for generating values
- Permitted values for a column
- Column dependencies for setting values
Defining unique columns
If there is a column or column combination for a table that needs to be unique, you define multicolumn uniqueness in Designer. The columns are collected into a unique groups.
Example
- For the Hardware table, you must ensure that the name of the hardware is unique. For the Hardware table, a Hardware unique group with the Ident_Hardewarelist column is created.
- For the ADSDomain table, the combination of the domain identifier and its defined name must provide unique values. For the ADSDomain table, an ADSDomain unique group with the Ident_Domain and DistinguishedName columns are created.
To group together columns in a unique group
- In Designer, select One Identity Manager schema.
- Select the table and start the Schema Editor with the task Show table definition.
-
In the Table properties view, select the Multicolumn uniqueness tab and click
.
-
Enter the following information.
Table 27: Table properties for multicolumn uniqueness Property
Description
Unique group
Name of the unique group of columns.
Columns
Enable the columns that must be unique when combined.
Ignore empty values
Specifies whether empty values are permitted in a unique group. If all the columns in one group are empty, group uniqueness cannot be tested. If this option is not set, empty values are permitted but only once for each column.
NOTE: To prevent empty values, define a minimum column length in the column definition.
Related Topics
Limiting the column length
You can use the column definition to control the length of the values to be entered. For example, the login name of an Active Directory user account is limited to a maximum of 20 characters. You can also use the column definition to define which columns are required columns.
To define the length of a column
- In the One Identity Manager, select Designer Schema.
- Select the table and start the Schema Editor with the task Show table definition.
- Select the column and then the Column properties view.
-
Select the Value calculation tab and edit the following properties.
- Max. length: Enter the maximum length of the column. If the value is equal to 0, the length is taken from the database schema.
- Min. length: Enter the minimum length of the column. Columns with a minimum length of 1 or greater are flagged as required fields in the front-ends.