About this guide
One Identity Manager software architecture
Working with objects in One Identity Manager
Inserting, modifying and deleting an object in One Identity Manager
Customizing the One Identity Manager default configuration
Reloading changes dynamically
Locking and unlocking individual properties for editing
System configuration reports
Adjusting the One Identity Manager base configuration
Overview of the settings of a database
Changing the connection data for the database
Database configuration for a test, development or productive environment
Language settings for displaying and maintaining the data
Configuration parameters for system configuration
One Identity Manager schema basics
Overview of the One Identity Manager schema
Table types and default columns in the One Identity Manager data model
Notes on editing table definitions and column definitions
Editing table definitions and column definitions
Table types in One Identity Manager
Editing the user interface
Database views of the view type
Database views of the proxy type
Database views of the Union type
Database views of the read-only type
Using table scripts
Editing table relations
Working with a Globally Unique Identifier module
Templates for generating values
Editing value templates
Preventing a change to a column
Restricting the execution of value templates
Example of local value templates within an object
Example of cross-object value templates
Formatting of values
Defining unique columns
Limiting the column length
Defining decimal places for displaying values
Predefined formatting types
Creating formatting scripts
Column dependencies for setting values
Permitted values for a column
Configuring columns for full-text search
Mapping dynamic foreign keys
Supporting file groups
Table properties
Column properties
Object definitions for the user interface
Localization in One Identity Manager
Selection criteria for object definitions
Using the captions for object definitions
Editing the object definitions
Object definition properties
User interface navigation
Navigation elements
Recommendations for editing menu navigation
Notes on working with the User Interface Editor
Selecting the user interface navigation view for editing
Forms for the user interface
Loading the entire user interface navigation
Loading the user interface navigation using an application
Directly loading menu items
Loading menu items using permissions groups
Loading the user interface navigation using a WHERE clause
Simulating the user interface navigation during editing
Copying an existing user interface navigation for a new permissions group
Creating a new user interface navigation
Copying a menu item
Creating a new menu item
Creating a menu category
Assigning a menu item to an application
Assigning a menu item to a permissions group
General menu item properties
Creating database queries for data-dependent menu items
Editing lists
Using links
Using variables
Recommendations for editing forms
Editing user interface forms
Statistics in One Identity Manager
Notes on working with the Form Editor
Disabling user interface forms
Copying a user interface form
Creating a new user interface form
Assigning a user interface form to an application
Assigning a user interface form to a permissions group
Assigning a user interface form to an object definition
Assigning a user interface form to a menu item
Displaying custom columns and tables on master data forms
Forms for custom extensions
User interface form properties
Working with overview forms
Editing statistic definitions
Including statistics in the user interface
Diagram types for visualizing statistics
Examples of statistic definitions
Extending the Launchpad
Recommendations for extending the Launchpad
Actions for the Launchpad
Creating new menu items and actions for the Launchpad
Task definitions for the user interface
Applications for configuring the user interface
Icons and images for configuring the user interface
Using predefined database queries
Working in different time zones
Determining working hours
Editing country information
Process orchestration in One Identity Manager
Enabling other countries and states
Specifying the standard hours for countries and states/provinces/counties
Displaying public holidays for countries and states
Editing countries
Editing states
Country properties
State properties
Public holiday properties
Language-dependent data representation
Basic rules for using language-dependent data
Labeling columns for translation
Using the text memory for translation
Displaying the translations in the Language Editor
Showing usage of a translation
Editing the translations from a single table
Editing all translations
Changing the key text of a translation
Importing translations
Setting up Job servers in Designer
Tracking changes with process monitoring
Editing a Job server
Machine roles and server functions
Job server statistic information
Connection data for process generation
Installing the One Identity Manager Service on the Job server
Configuring the One Identity Manager Service
One Identity Manager Service configuration files
Customizing the One Identity Manager Service configuration for a Job server
Handling processes in One Identity Manager
Template for the configuration file
Selecting the module types and editing the parameters
Validity check on configuration file
Process collection module
Job destination module
Selecting a method
Logwriter module
Dispatcher module
Connection module
HTTP authentication module
Module plug-ins
HTTPLogPlugin
ScheduleCommandPlugin
RequestWatchDogPlugin
PerformanceCounterPlugin
DebugMailPlugin
ShareInfoPlugin
RemoteConnectPlugin
File module with private key
Editing processes with the Process Editor
Defining processes
Creating and editing processes
Copying processes
Creating and editing process steps
Copying individual process steps
Importing a process step into a process
Searching for an entry within a process
Comparing processes
Exporting and importing processes
Properties of a process
Process step properties
Process step parameters
Events for processes
Simulating process generation
Checking the validity of a process
Compiling a process
Using process-specific and global variables for the process definition
Thresholds for handling processes
Specifying the executing server
Notifications about process step handling
Executing processes automatically
Displaying the status of process plans
Starting a process plan immediately
Creating and editing a process plan
Process plan properties
Overview of process components
Basic rules for process monitoring
Logging data changes
Logging process information during process handling
Conditional compilation using preprocessor conditions
Editing the process information for processes
Editing the process information for process steps
Editing the process information for events
Recording messages in the process history
Process tracking for DBQueue Processor operations
Archiving and deleting records
Preprocessor-relevant configuration parameters
Preprocessor conditions in objects
Preprocessor conditions in VB.Net expressions
Evaluation of preprocessor conditions during compilation
Scripts in One Identity Manager
Using scripts
Notes on message output
Notes on using date values
Using dollar ($) notation
Reports in One Identity Manager
Accessing local object columns
Accessing columns of an object connected by a relation
Accessing the old column value
Accessing the display value of a column
Accessing references in comments
Accessing meta values of the local object
Using base. Object
Calling functions
Pre-scripts for use in processes and process steps
Using session services
Querying configuration parameters
Testing for the existence of certain database entries
Querying session object global variables
Using #LD-Notation
Scripts in the script library
Support for processing of scripts in Script Editor
Creating and editing scripts with the Script Editor
Copying scripts in the Script Editor
Testing a script in the Script Editor
Testing script compilation in the Script Editor
Overriding scripts
Editing and testing script code with the System Debugger
Loading the system library
Editing script code in the System Debugger
Logging database queries and object actions
Testing script code in the System Debugger
Testing scripts in the System Debugger
Testing templates and formatting scripts in the System Debugger
Testing methods in the System Debugger
Testing table scripts in the System Debugger
Saving changes to the database
Working with the Report Editor
Adding custom tables or columns to the One Identity Manager schema
Menu items in Report Editor
Views in the Report Editor
Program settings for the Report Editor
Logging database queries
Creating and editing reports in the Report Editor
Editing the general report properties
Creating and editing a data source
Data retrieval using an SQL query
Data retrieval using a database view
Data retrieval using an object
Data retrieval using single object history
Data retrieval using multiple object history
Data retrieval using historical assignments
Data query for simulation data
Report parameters
Editing report parameters
General parameter settings
Defining the parameter values
Settings for calculating values
Using virtual data sources
Editing the report form
Example of a simple report with data grouping
Translating reports
Embedding reports in the user interface
Creating and exporting reports on a cyclical basis
Creating a new table
Extending a table
Defining columns
Web service integration
Creating a simple column
Creating a foreign key column
Creating a dynamic foreign key column
Creating a new column for database views of View type
Advanced configuration of columns
Creating database views with read-only type
Creating database views of Union type
Creating a new assignment table
Creating indexes
Removing custom schema extensions
Permissions for schema extensions
Change labels for the schema extensions
Applying the schema extensions
Recommendations for advanced configuration of custom schema extensions
Managing custom database objects within the database
Binding a web service
SOAP Web Service
Generic web service call
Direct web service call
Self-defined web service call
Creating a web service solution with the Web Service Integration Wizard
Modifying a web service solution
Deleting a web service solution
Installing and configuring the SOAP Web Service
One Identity Manager as SPML provisioning service provider
Installing SOAP Web Service
Configuring the SOAP Web Service
Display the status of a SOAP Web Service
Uninstalling the SOAP Web Service
Examples of calls
SPML web service
Installing and configuring the SPML web service
Configuring the One Identity Manager schema
Testing SPML web service functionality
Processing DBQueue tasks
Configuring the DBQueue Processor for test and development environments
Initializing the DBQueue Processor
Reinitialization of DBQueue Processor
Controlling processing of DBQueue Processor tasks
Processing DBQueue Processor tasks
Reactivating DBQueue Processor tasks
Bulk processing in DBQueue Processor
How the central dispatcher communicates with individual slots
Appendix: Configuration files of the One Identity Manager Service
DebugMailPlugin
If this plug-in is enabled, email notifications generated by the One Identity Manager Service are not sent but are kept in a drop folder. The file names contain the time stamp in this case. If a mail contains HTML text, a *.html file is saved with the same name as the descriptive *.txt file with the body. Email attachments are also saved in this way.
|
|
NOTE:
|
Enter the following parameter:
- Drop folder (DropFolder)
Directory for storing email notifications.
ShareInfoPlugin
This plug-in is required for solving Samba shares (smb.conf) under the Linux operating system. The plug-in solves UNC paths to local paths. This plug-in does not required any parameters.
|
|
NOTE: Install the plugin if the One Identity Manager Service executes copy actions between servers with Linux operating system. |
RemoteConnectPlugin
Process orchestration in One Identity Manager > Configuring the One Identity Manager Service > Module plug-ins > RemoteConnectPlugin
To configure synchronization with a target system, One Identity Manager must load the data from the target system. One Identity Manager communicates directly with target system to do this. Sometimes direct access from the workstation on which the Synchronization Editor is installed is not possible, because of the firewall configuration, for example, or because the workstation does not fulfill the necessary hardware and software requirements. , you can set up a remote connection. Prerequisite for this is that the RemoteConnectPlugin is installed on the Job server.
| Parameter | Value | Description |
|---|---|---|
|
Authentication method |
ADSGroup |
Method with which incoming queries can be authenticated.
Permitted values: ADGroup |
|
Permitted AD group |
|
Distinguished name or object SID of the Active Directory group whose members are permitted to use a remote connection. This parameter is only required for the ADGroup authentication method. |
|
Port |
2880 |
Port for reaching the server. |
|
|
NOTE: Authentication of a remote connection can only be done through an Active Directory group. |
File module with private key
Process orchestration in One Identity Manager > Configuring the One Identity Manager Service > File module with private key
In this module, you provide the data for files with a private key. Use this parameter if you work with several private keys, for example, if One Identity Manager Service data must be exchanged between two encrypted One Identity Manager databases.
If no key is entered here, the private key file from the File with private key (PrivateKey) parameter of the JobServiceDestination is used.
To enter a file with a private key
- Click New and enter the following information:
- Property: Enter the ID of the private key. The ID is expected in the JobServiceDestination in the Private key identifier parameter (PrivateKeyId). The default key has the ID Default.
- Value: Enter the path of the private key file. You can enter the absolute or relative path to the One Identity Manager Service.
Example of the configuration in the file Jobservice.cfg.
configuration>
<category name="privatekeys">
<value name="Default">private.key</value>
<value name="Key2">key2.key</value>
<value name="OtherKey">C:\Path\To\Other.key</value>
</category>
</configuration>