OIM and OID

Hi ,
I have a doubt over OID and OIM. I know both are different products but its related to user provisioning , reconcilation etc ...
Is it necessary to use both the products. Since I can create the user in OID , provisoned , delete , revoke grants in OID itself, Then what the use of OIM ? Any advantage of this ?
I am new to both the technologies.
Regards
Sourabh Gupta

Can you achieve following things in OID:
- Whenever a user joins a company. His data goes in HR data. In OIM we implement trusted source reconciliation, which run at several intervals to load data from HR feed and then automatically provision those users to a certain roles, applications as per requirement.
- We can generate all kinds of reports on a particular user
- We can implement custom schedulers which run on certain intervals
- We have eventhandlers which can run on certain event like preinsetr, postinsert of users in OIM. Same way event handlers can be implmented for pre-update, post update, pre-delete, post delete etc.
- We can customize forms for provisioning
- Request and approvals workflow
- Complete centralized management of identities
Also, OID is an LDAP tool, meant to use for faster access of data. There are applications which may require to perform join operation on database table. In LDAP we can't perform joins.
regards,
GP

Similar Messages

  • OIM User Creation Error After OIM and OID Intregation

    Hi,
    I am new in oim and i am getting popup error message for user creation from OIM application after oim and oid intregation through libovd.
    Error message : LDAP create event failed : orclguid attribute has duplicate value.
    please guide me for resolving error.
    Thanks & Regards,
    Rajeev

    Hi,
    Thanks for reply...i checked1307549.1 in metalink, In that link they are telling us to modify some tables in the data base.i have some question regarding the following steps please help.
    === ODM Solution / Action Plan ===
    1. Use the following query to find fields with "plain text" values:
    select svr.svr_name, spd.spd_field_name, svp.svp_key, svp_field_value
    from svp
    inner join spd on spd.spd_key = svp.spd_key
    inner join svr on svr.svr_key = svp.svr_key
    2. Set these plain text values to null after making backup of table.
    *(kashyap:: Which fields values we have to change)*
    3. Edit the Directory Server to re-set values.
    *(kashyap:: could you please explain this)*
    Expected error at this stage:
    -- no "System Error call admin...", but that makes sense since the values in question pertained directly to the Directory Server --

  • Integration and reconciliation of OIM and OID

    I need to do integration with OID and OIM, when i import the XML file, there are two XML files,
    1) oimOIDuser
    2) oimUser
    which xml should be used for the integration of OIM and OID.
    and for the trusted source Reconciliation.
    -sudhan elango.

    oimOIDUser.xml
    If you are using OIM 9.1.0 or later then you don't have to import the connector
    You can install it by copying the contents of the installation in OIM_HOME/xellerate/ConnectorDefaultDirectory
    and then Deployment Manager-> Install connector and from the connector list select OID connector and Load
    Hope it helps,
    Saggu

  • OIM and OID High Availability Info

    Can somebody share documents, info, links describing how we can achieve High Avilability for OIM and OID components? I know we can have two OID systems in multi-master replication configurations which can actively replicated data but need complete scenario.
    Will appreciate quick response.
    Thanks in advance!

    The sizing guide from 2007 contains most of the information that you need: http://www.oracle.com/technology/products/id_mgmt/oxp/pdf/oracle%20identity%20manager%20sizing%20version%201.3.pdf
    Some of the info is slightly outdated (i.e. the JMS discussion) but most of the info is still applicable. Also feel free to contact me through LinkedIn if you need anything specific. I do have some material around this topic that I can share.
    Hope this helps
    /Martin

  • OIM and OID Domains in Weblogic

    I have a quick question:
    Can I install and make OID 11g and OIM 9.1.0.2 use the same domain (IDMDomain for example) in Weblogic 10.3.1?
    I want to see if we can use the same Weblogic domain for both OID and OIM and use the same port and domain management in Weblogic console.
    Will appreciate quick response.
    Regards!

    No

  • Integrate a EBS, OIM ,and OID with orclGUID

    Hi expert,
    I already connect OID and EBS with OIM.
    My scenario is when I provisions user from OIM to OID, OID will generate orclGUID and I want this parameter to get back to OIM.
    Next, I want to provisions user to EBS and insert orclGUID to SSO GUID field to EBS provisioning form.
    My question is "How I get orclGUID from OID to EBS via OIM ?" .
    Noraset,

    Hi Bikash,
    I don't know the way to create task.
    Can you briefly explain to me or provide some document ?
    Thank,
    Noraset
    PS. I found something in EBS IT resource (SSO Enabled, SSO IT Resource, SSO Identifier, SSO Login Attribute) <<< Can it solve my problem ?
    Edited by: Noraset on May 3, 2013 3:51 PM

  • Date difference in OIM and OID

    Hi All
    I am using OIM 11.1.1.5.4 having ldap sync with OID
    users are getting ldap sync properly, but the issue is when i check the date fields lyk start date, end date, hiredate there is a one day diff in OID
    for example
    i have date fields values in oim lyk
    start date 28 February 2013
    end date 28 February 2023
    hire date 28 February 2013
    and i have values in oid as
    orclActiveStartDate 20130227230000z
    orclActiveEndDate 20230227230000z
    orclHireDate 20130227230000z
    i am observing that in oid date fields are storing as oim date field -1
    why it happens lyk that i am facing issues because of this
    please help me out from this
    Thanks & Regards
    $sid
    Edited by: $sid on Mar 5, 2013 10:56 AM

    Bug opened by you? Bug id: 16438468
    -Bikash

  • OIM and ldap sync

    I am using OIM 11gR2 and OID 11.1.1.6. Users and groups will be in OID, and OIM is
    required to do the provisioning of users. Plan is to use ldap sync between oid and oim.
    With ldap sync, all users will be available in OIM. And then in OIM can one do the
    provisioning of users. Is this approach ok? Or should we have OID connector? Or both?

    You can use LDAP Sync between OIM and OID. You dont need OID connector in this case.
    More here...
    Why would you use the LDAP Sync instead of the OID Connector?
    http://fusionsecurity.blogspot.com/2012/01/oim-11g-ldap-synchronization.html

  • Creation of users in OIM from OID, where OID is target resource

    Hi,
    I am new to OIM. We have a scenario where we have OIM and OID. The users are being created in OID. Now we need to get these users to the OIM system to use the Change Password, Forgot Password functionalities of OIM. Can we have OID as the target resource for OIM and have a reconciliation done to get all the users from OID and have them created in OIM.
    Or this possible only when OID is the Trusted Source?
    Thanks in advance,

    Re: OIM's Trusted Source

  • OIM to OID provisioning

    I have a requirement where users need to be created into OIM bu running a one time Trusted Source Recon. Once the users are created on OIM we want to link the account on OID with the user account created on OIM. When we run a Target Recon for these users the OIM accounts are not getting linked to the OID account.
    Also when i create an user in OIM and try to provision the OID resource to him, he is getting Provisioned, whereas if i try to provision OID to a user created in OIM through Trusted Source Recon the status shows as Provisioning.
    Can anyone please help me out by letting me know what might be the difference between users created manually through OIM admin console and the ones created through Trusted Recon, since provisioning is not working for the second set of users.
    Thanks,
    Partha

    This indicates that your manual provisioning is working, but not target reconciliation.
    When you are running target reconciliation:
    Make sure that the scheduled job that you are running for target recon is given appropriate values in the parameters to be given.

  • OIM to OID Provisioning - Userid getting 'null' in OID

    OIM provisioned to OID. When Im creating a user in OIM and provisioning the OID resource, the userid is getting 'null' value in OID.
    Any reasons? How to fix this ?
    I have checked the design console and the ldapuserDNPrefix is mapped to uid.

    Hi,
    You have to had an another atrribute in order to make it work:
    Solution
    While creating a user account on Oracle Internet Directory through Oracle Identity Manager, the
    user ID that you specify is assigned to the cn field of Oracle Internet Directory.
    If required, you can customize the mapping so that the user ID is assigned to the uid field of
    Oracle Internet Directory.
    1.In the Design Console, open the AttrName.Prov.Map.OID lookup definition.
    2.Change the decode value of the ldapUserDNPrefix code key to uid.
    *3.Add the following item to AttrName.Prov.Map.OID lookup defintion*
    Code key "User ID", decode value "uid".
    Please note that Key is case sensitive.

  • Provisoning users from OIM to OID having org other than xellerate users

    Hi,
    when i provision a user belonging to default Xellerate Users organization in OIM to OID, it is done.
    what changes do i need to do if a want to provision a user in any other organization say 'MyCompany' to OID user
    (it gives naming exception error when i try doing so)

    let me explain what I am trying to acheive.
    I create a user using flat file reconciliation such that the user is created in organization say 'XYZ'. Also I've created a group say XYZmember (membership rule is organization name=XYZ)
    I created an access policy such that whenever a user who is a member of XYZmember group(means organization name is XYZ)is created in OIM the user gets provisioned to OID and will be assigned an OID role say role1.
    Now when i create a user with XYZ as organization,he becomes a member of XYZmember group.... according to access policy he should be provisioned to OID user and assigned role1
    But it gives naming exception error.
    i want to know if i create a user in some org other than xellerate users will it get provisioned to OID? and HOW?

  • Bulk Load from OIM to OID

    hi,
    i am trying to figure out how to move existing user from OIM to OID in bulk.
    Is there anyway by which we can move all the existing user in OIM simultaneously rather than one by one through resource profile by provisioning.
    Regards
    Pegasus

    I don't know if I understood the question, ignore me if I'm wrong.
    If you want to provision all your users in a Resource you can do the following:
    1) Create an "Access Policy" through Admin. Console, wich provisions your OID Resource (ensure you check the "Retrofit Access Policy" Checkbox!)
    2) When creating the Policly you'll be asked to select the Users Groups that will be affected by the policy. As all OIM users belong to "ALL USERS" group, you can assign your Access Policy to this group. By the way I would consider to create a new Users Group if there is any chance that you add a user to OIM who you won't need to be provisioned in OID.
    You can have a look to chapters 10 and 11 in the Admin. Console Documentation:
    link
    Shout me if I missunderstood you ;)
    Regards,

  • Provision a multivalued attribute from OIM to OID

    Hi,
    I have a requirement to provision a new multivalued attribute from OIM to OID.
    Steps followed:
    Created a child form
    Attached child form to the OID Parent form
    Created a process task adapter.
    Created a task in process definition and the attached the adapter
    Adapter code.
    public String addChildData(tcDataProvider ioDatabase, long procInstKey, long childDefKey){
              try{
                   tcFormInstanceOperationsIntf formInstOper = (tcFormInstanceOperationsIntf)tcUtilityFactory.getUtility(ioDatabase, "Thor.API.Operations.tcFormInstanceOperationsIntf");
                   HashMap testval = new HashMap();
                   testval.put("UD_TESTCHIL_TESTGROUP","abcd2134");
                   System.out.println("testval..."+testval);
                   long formreturn = formInstOper.addProcessFormChildData(childDefKey,procInstKey,testval);
                   System.out.println("formreturn" +formreturn);
              catch(Exception e){
                   System.out.println("exce" +e);
              return "Success";
    After attaching while provisioning I am seeing both parent and child forms. I have provided the values and its successfully provisioning.
    But how I can provision the new OID multivalued attribute. We have to do any setting in the lookup?
    Regards,
    KK

    Just create your new adapter for add and delete from this new child table just like the other triggered tasks. If it's a multi value on the user profile, use the adapter for Add Multi Value Attribute that comes with the connector. In the property name, put in your multi value attribute name, and map the value from the child table.
    -Kevin

  • User Provisioning not working from OIM to OID

    Hi All,
    I am trying to create new user from OIM to OID, am getting following error message on console...
    Response: INVALID_NAMING_ERROR
    Response Description: Naming exception encountered
    Notes:
    In logs files while creation am getting following message....
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_ALIAS
    INFO,09 Oct 2011 23:37:50,253,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_CUSTID
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_IVRPIN
    INFO,09 Oct 2011 23:37:50,254,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_USERAPPSTATUS
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_CREATEDDATE
    INFO,09 Oct 2011 23:37:50,255,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_OAMLOCKTIME
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],retrieving object from cache key = xlCustomClienten_US
    INFO,09 Oct 2011 23:37:50,256,[XELLERATE.WEBAPP],Key not found in Custom Resource Bundle: newKey = global.udf.USR_UDF_PASSWORD_EXPIRE
    INFO,09 Oct 2011 23:37:50,257,[XELLERATE.WEBAPP],Writing Custom default resource bundle object to cache : Key = xlConnectorResourceBundleen_US
    Please help me on this....
    Thanks in Advance
    YJR

    That is not the log output of the OID connector. Check the connector docs, and enable the OID logging only. The INVALID_NAMING_ERROR means something is wrong with the naming of your object. Most likely there is an LDAP error output somewhere, but all the output you provided is info level, nothing wrong with it.
    -Kevin

Maybe you are looking for

  • How to capture the data entered in a textfield in a JTable

    How to capture the data entered in a textfield present in a cell of a textfield or how to add listener to this textfield

  • Photoshop CS5 Crashes When Trying to Print

    I don't know what anyone needs in order to solve this problem so I'm going to paste the details because it seems like what some people are using. Process:         Adobe Photoshop CS5 [344] Path:            /Applications/Adobe Photoshop CS5/Adobe Phot

  • Deleting photos from photo library on iphone

    Hello people, i am a new user of iphone and i am not able to figure out the solution for deleting photos from the photo library of iphone.please help me out with this.i will be very glad if i am provided with the solution.

  • Barcode Reader

    This is a bit of a long shot that I'll get an answer here, but I'm trying to use a handheld barcode scanner to scan in barcoded serial numbers. If I scan in barcodes in to a Console or in to an AWT text area it's fine but if I scan in to a Swing text

  • Server with 3 NICs wants to connect to 2 switches

    I have two 6509 on the distro layer ( distro 1 and distro2 ), running layer 2 only. They are connected to two 6509s on the core layer. One of the server admins has a 3 port NIC on his server bundled together to increase bandwidth. He wants to connect