OIM 11g add custom role on user creation
Hi,
I when i create a user in OIM11g by default it gets added to "ALL USERS" role.
I have created a new role and want to add user to this custom role while creating users. How can i do this in OIM11g
Regards,
Ab
Edited by: 824473 on Jan 18, 2011 2:33 AM
set Auto submit true. you can't set the value for ValueChangedListener property in current release of R2. This is bug and you can raise SR for same. But, this won't cause saving data into USR table. ValueChandedListener property for Modify User page only.
As you said, data is not being saved in the USR table then verify your steps again:
create sandbox->users->create user/edit user/view user details page->click customize->leftTopcorner->View->Source->select area->edit->Click Add Content (on left top)->Data Component catalog->scroll down and select User VO->Refresh dialogue box->select the field and click 'Add'->on dropdown select 'ADF Input test w/label/for view user page it should be output test w/label->close that window->Check if it added to create user form->save and close customization
for user detail page select "Managed User->UserVo1 " as datacomponent
Re: UDF creation on User form in 11gR2
for valuechangedlistener the fixes all ready available. you have to do some workaround as other poster has given in above link:
1.Create a sandbox and activate it. Open the page that contains the UDF, and click Customize.
2.Select View, Source.
3.Note the value of the valueChangeListener property of a predefined field. To do so:
a.Click the predefined field, and then click Edit to open the Component Properties dialog box.
b.Copy the value of the valueChangeListener property.
4.Export the sandbox as a ZIP file.
5.Extract the ZIP file and edit the jsff.xml file for the specific screen.
6.Add the following attributes to the ADF tag, for example af:inputText, for the UDF:
◦valueChangeListener=VALUE_COPIED_IN_STEP3
◦autoSubmit="true"
7.Create the ZIP file for the sandbox.
8.Import the sandbox.
9.Publish the sandbox.
Edited by: Nishith Nayan on Sep 21, 2012 1:04 PM
Similar Messages
-
How to add a role so user can do Export, Copy & paste Master Data?
How to add a role so user can do Export, Copy & paste Master Data? Thanks!
Add S_GUI to the user role.
-
OIM 11g: Add process tasks as a result of a Request?
Is it possible in OIM 11g to have the result of a Request be that 1 or more process tasks are added to an an account's process?
The out-of-the-box Request framework seems to be very attribute driven (Modify Provisioned Resource, Self Modify Provisioned Resource), and I suppose we could add an attribute to trigger process tasks to be added, however, without going into detail, we'd really just like to be able to add the process task with no process form updates.
Has anyone attempted anything like this?Sure you can. Create a plugin on the request status:
<plugin pluginclass="com.custom.eventhandlers.request.RequestCompleted" version="1.0" name="RequestCompleted">
<metadata name="status">
<value>Request Completed</value>
</metadata>
</plugin>
In your code, using benEntity.getEntityKey() you can get the "Users-Object Instance For User.Key" value for the instance the request is for. Then search the user's existing instances of that resource object type (findObjects) and match it to the "Users-Object Instance For User.Key" value from the result set. Then get the process instance key. From there you can use this code to get the task details:
Map taskMap = new HashMap();
String taskName = map.get(resourceName);
taskMap.put("Process Definition.Tasks.Task Name",taskName);
tcResultSet rs = taskOper.getTaskDetail(processInstanceKey,taskMap);
long taskKey = rs.getLongValue("Process Definition.Tasks.Key");
And finally this code to insert the task:
provIntf.addProcessTaskInstance(taskKey, processInstanceKey);
And done!
-Kevin -
OIM 11g R2 Available Roles For Organizations Is Empty After XML Import
Hi,
When we exported Organizations in OIM via Deployment Manager and imported them back, available roles on Organizations are gone.
To be exact; Hierarchical role assignments are gone, which are done using "include-sub-orgs" check while putting organizations to Roles.
To understand the problem,
We took a single organization, exported it, changed only organization name in the XML and imported it back. The results are the same.
We included every possible dependency in the xml to see if this was the issue, apparently it wasn't.
Furthermore,
On the Role screens' Available Organization's tab, when we check the "include sub orgs" box, it works fine on manually added organizations. They are shown on Available Roles for the Organizations.
But this doesn't work on imported organizations.
Is there a trick to this in R2?
How can we export-import the organizations and still see the available roles?
Thanks,
ErdogduHi All
Any updates please . Can any one just update whether creating a custom attribute on User Profile adds the attribute in the list of attributes for membership rules for roles .
Thanks
Darshan -
Automatically assign user roles on user creation
Hi,
I have a scenario where i am creating database users in Oracle database and we need that no matter from where the database users are created they have a couple of roles automatically assigned to them.
How can this be done?
Quick response will be very helpful.
UZpost and wait for a valid answer more than 20 minutes, search by yourself at oracle documentation less than 5 minutes. worth it?
http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_8003.htm
a trick --> group of roles = profile
another trick --> profile can be add in the user creation
Edited by: Fran on 26-feb-2013 2:17 -
OIM 11g r2 - Do we have User history in OIM?
Hi,
when we created a user in OIM, is there any time stamp for creation or last modification?
It is OIM 11g r2.
Thank in advance
dongsuHi Dongsu,
Login to DB using OIM username and use below query and verify
select * from usr;
which gives all user details including modified date, creation data and all other details.
Thanks & Regards,
Chinni
Edited by: chinni on 25-Apr-2013 16:50 -
Add customized task to user screen for IdM 7.0
The user screen in IdM 7.0 is a lot more different from the previous versions.
A navigation bar is used for launching different tasks(workflows).
I want to add a new user request task to MenuBar Requests or add a new task to the Launch Requests page. The old document/training mentioned adding customized task to End User Tasks is not working for Version 7.0 at all.
Overall, my question is how I can add my customized workflow to /user screen?
Thank you.Hi,
Look to implement links to custom taskdefinitions from the End User Request Menu. Unfortunately there's no form/process mapping for this object at this time. Here's an example of a customisation on the End User Request Menu,
<Form noDefaultButtons='true' objectLocationID='objectName=End+User+Request+Menu&isBegin=true&objectPath=0&objectType=UserForm'>
<Display class='EditForm'>
<Property name='title' value='UI_ENDUSER_REQUEST_LAUNCH_TITLE'/>
<Property name='subTitle' value='UI_ENDUSER_REQUEST_LAUNCH_SUBTITLE'/>
</Display>
<Properties>
<Property name='doNotRegenerateEndUserMenu'>
<Boolean>false</Boolean>
</Property>
</Properties>
<Field>
<Display class='SectionHead'>
<Property name='required'>
<Boolean>false</Boolean>
</Property>
<Property name='title' value='Self-Service Options'/>
</Display>
<Field>
<Display class='LinkForm'/>
<Field>
<Display class='Link'>
<Property name='name' value='Request Application Access'/>
<Property name='URL' value='user/processLaunch.jsp?id=Request+Application+Access'/>
<Property name='arguments'>
<map>
<s>op_requestorOrg</s>
<ref>waveset.organization</ref>
<s>op_requestorFullname</s>
<ref>accounts[Lighthouse].fullname</ref>
</map>
</Property>
</Display>
</Field>You also need to register the workflow in the End User Tasks configuration objects as follows:
<Configuration id='#ID#Configuration:EndUserTasks' name='End User Tasks'>
<Extension>
<List>
<List>
<String>Request Application Access</String>
<String>Initiates a request for a new account</String>
</List>HTH,
Paul -
OIM 11g R2 - API to validate user's password
Hi,
Is there any API available to validate if an user's password in OIM is valid.I have an user login and password and need to verify if the user's password in OIM is same the input password.I am not looking for the API to validate my password against password policy,for which I have the API.
Thanks.One of the ways to do it would be to decrypt the current password and then compare with the new password. Where are you doing this check? Depending upon where you want to do this, you can use different ways to decrypt the current password of the user.
There are various posts in the forum about decryting the password.
On a side note, if your policy does not allow same password, then new password validation against the policy should suffice your requirement.
-Bikash -
OIM 11g r1 custom field in simple user search result
Good morning,
i need to visualize a custom field in the OIM simple user search result table. At the moment, when a simple user search is performed, the returned attribute is only the "Display Name".
For the advanced user search result table, is possible to add other fields modifying the Search Results table configuration in Advanced->User configuration->Search Configuration.
How can i do the same the for simple user search result?
Thank you.Yes, i tried to add my custom attribute to both Simple and Adv search result table, but without luck. Only Display Name column attribute is shown when a simple search is performed.
-
OIM 11g R2 Custom UDF Creation
We have created custom UDFS, but when I try to create a new user with the new field, the data for the new field is not getting saved in the USR table.
We have checked the 'Auto Submit' for that field (on the Create User page) and for the Value Change Listener, I tried to add #{pageFlowScope.cartDetailStateBean.attributeValueChangedListener}, it is throwing an error.
Mset Auto submit true. you can't set the value for ValueChangedListener property in current release of R2. This is bug and you can raise SR for same. But, this won't cause saving data into USR table. ValueChandedListener property for Modify User page only.
As you said, data is not being saved in the USR table then verify your steps again:
create sandbox->users->create user/edit user/view user details page->click customize->leftTopcorner->View->Source->select area->edit->Click Add Content (on left top)->Data Component catalog->scroll down and select User VO->Refresh dialogue box->select the field and click 'Add'->on dropdown select 'ADF Input test w/label/for view user page it should be output test w/label->close that window->Check if it added to create user form->save and close customization
for user detail page select "Managed User->UserVo1 " as datacomponent
Re: UDF creation on User form in 11gR2
for valuechangedlistener the fixes all ready available. you have to do some workaround as other poster has given in above link:
1.Create a sandbox and activate it. Open the page that contains the UDF, and click Customize.
2.Select View, Source.
3.Note the value of the valueChangeListener property of a predefined field. To do so:
a.Click the predefined field, and then click Edit to open the Component Properties dialog box.
b.Copy the value of the valueChangeListener property.
4.Export the sandbox as a ZIP file.
5.Extract the ZIP file and edit the jsff.xml file for the specific screen.
6.Add the following attributes to the ADF tag, for example af:inputText, for the UDF:
◦valueChangeListener=VALUE_COPIED_IN_STEP3
◦autoSubmit="true"
7.Create the ZIP file for the sandbox.
8.Import the sandbox.
9.Publish the sandbox.
Edited by: Nishith Nayan on Sep 21, 2012 1:04 PM -
OIM 11g R2 Custom Challenge Questions
What is the process in R2 to add new challenge questions
I have added the new questions to lookup 'Lookup.WebCLient.Questions' and to the adfCommonModel BUndles but it is throwing errors when I access the User Information page.Hi,
The main points are descrobed here.
http://docs.oracle.com/cd/E27559_01/admin.1112/e27149/app_localizing.htm#CHDJDHCF
Basically you need to locate the resource-bundle file in this WAR (ear) file:
OIM_HOME/server/apps/oracle.iam.ui.model.ear
(unpack it, add your custom questions, and then re-deploy the WAR)
I know, it's not pretty..
Regards,
Henrik -
OIM 11g: Error Installing Sybase DBUM User Management 9.1.0.4 connector
Hi All,
While installing Sybase DBUM User Management 9.1.0.4 connector from OIM console, I get the following:
While on Step 2 of the wizard (Connector Installation):
- Configuration of connector libraries: passes
- Import of connector XML Files (using deployment manager): FAILS
The following error message appears:
DOBJ.XML_IMPORT_ERROR
Unresolved dependency{WIN=Reconciliation Manager}
Operating System: Linux
Thanks in advance for any ideas!which release of OIM are you using.
Did you try to retry the installation of connector?
If not then refrsh your OIM database and then install again.
Seems like some earlier installation has kept some data in OIM DB. -
OIM 11g R1: How to export Users
Hello,
how can i export users to an ldif, csv or xml file from OIM?
I need an automated process, which give me a list of special users and their attributes to import this to another system.Hello,
a out-of-the-box function is not available by default in OIM?
BI-Publisher would be a solution, isn't it? -
OIM 11g R1 - Restrict Role assignment
Hello,
is it possible, if a user have a special role, that no other roles can be assigned?
For example:
User1 have the role "Restricted" assigned. No other roles can be assigned to that users. Either SYS ADMIN cannot assign other roles.
Only after this role was revoked from the user, other roles can be assigned again.
Is it possible to handle this scenario by an eventhandler?
Edited by: 960944 on May 6, 2013 7:58 AMI don't know if you can prevent, but i am pretty sure you can immediately fix. You can create an event handler like this:
<action-handler class="com.client.code.eventhandler.RoleUserProcessor" entity-type="RoleUser" operation="CREATE" name="RoleUserProcessor" stage="postprocess" order="1000" sync="TRUE"/>
This is just a sample event handler that i've used before that did a check any time a member became a member of a role to perform a certain action. You could do some testing on the operation type, and the stage if you want. But it is possible for you to know anytime a user is added to this role, and anytime a user is added to a different role to check if they are a member of this role you mention. If they are a member, use the APIs to remove them from any others. If they get added to a new role, immediately remove them.
So yes, it is possible, and perhaps this can give you a start at some testing.
-Kevin -
OIM 11g - Modify Assign Roles request
Hi everyone,
I would like to know if it's possible to modify Assign Roles request in order to restrict the available assignees. I mean for example, if a manager wants to create a new Assign Roles request, he will be able to select only users whose he is the manager of.
If someone knows how to do that he will be really helpfull !
Thanks in advance,
ThibaultThanks for both of you !!
Indeed it's OOTB and it didn't work for me because there was another authorization policy configured for REQUEST_ADMINISTRATOR which allowed them to search for all users. And because all of my requesters had this role, they could search for all users. So I configured a new request template which allow a role, that I had already created before, to create request and now it works fine.
Thanks !!
Thibault
Maybe you are looking for
-
"No bootable devices" screen after Windows 7 Boot Camp failure.
As a lifetime Windows user, I thought that it would not be such a bad idea to install Windows 7 via Boot Camp Assistant. The process went smoothly until I reached the 3rd and final section of the procedure titled "Install Windows 7 or Later Version.
-
My iPad is locked up and has a apple and a bar under it on the screen and it will not turn on or off. Anyone know how to solve this problem?
-
Problem uploading photos to "Web Gallery"
I have selected 107 photos to upload to my web gallery. I click "web Gallery" > Would you like to publish.... > click publish> 10 second later , I receive this "error occured while publishing the album Request to the server failed" http://members.cox
-
Juice Pack Air di mophie per iPhone 4
Should I buy this product vs. the third-party store (mophie Juice Pack Air for iPhone 4) but first I need to know some very technical information on the charging mode. Let me know if you can simultaneously charge the case and the iphone via usb cable
-
After four months my Imac hard drive suddenly began making very audible noises. What should I do?