OIM

Oracle Identity Manager ( OIM )

http://www.oim.allidm.com/

Disclaimer and Acknowledgments

The contents here are created as a own personal endeavor
and thus does not reflect any official stance of Oracle on
any particular technology

http://www.oim.allidm.com/

INTRODUCTION
Oracle Identity Manager at Glance

http://www.oim.allidm.com/

Oracle Identity Manager (OIM)

Is an Identity lifecycle management software that includes

provisioning, reconciliation and administration tools

Is an enterprise identity management system that

manages user's access privileges in enterprise IT

resources
o Controlling users, roles, accounts, and entitlements

Is designed to administer intranet as well as extranet

users, roles, and organizational access privileges across

a company's resources
http://www.oim.allidm.com/

Functionality
Some functionality you can find in the product are
o Provisioning

o Identity and role administration

o Approval and request management
o Policy-based entitlement management
o Technology integration
o Audit and compliance automation

http://www.oim.allidm.com/

Features
Some features you can find in the product are
o Easy of Deployment
o Simplified UI Customization and Configuration

o Maximum Reuse of Existing Infrastructure

o Extensive User Management
o Web-Based User Self-Service
o Modular and Scalable Architecture
o Powerful and Flexible Process Engine
o Built-In Change Management
o Workflow and Policy

o Audit and Compliance Management

o User Provisioning

http://www.oim.allidm.com/

User Provisioning
Provisioning is the process by which an action to create,

modify, or delete user information in a resource is started

from Oracle Identity Manager and passed into the
resource
Provisioning includes the following
o Automated user identity and account provisioning
o Workflow and policy management
o Reporting and auditing
o Attestation
o Access deprovisioning

http://www.oim.allidm.com/

Application Integration
The applications can be integrated in Oracle Identity

Manager in the next ways thru

o Adapter Factory
o Predefined Connectors

o Generic Technology Connectors

o Identity Connectors

http://www.oim.allidm.com/

Application Integration
Adapter Factory
o Eliminates the complexity associated with creating and maintaining
connections to proprietary systems
o Is a code-generation tool that enables you to create Java classes
o Provides rapid integration with commercial or custom systems
o Integrations by using the graphical user interface of the Adapter
Factory, without programming or scripting.
Predefined Connectors
o Oracle Identity Manager offers an extensive library of predefined
connectors for commercial applications and other identity-aware
systems that are used widely.
o enable out-of-the-box integration between a set of heterogeneous
target systems and Oracle Identity Manager
o connectors provide a set of components that were originally developed
by using the Adapter Factory
you can further modify them with the Adapter Factory to enable the unique

integration requirements of each organization.

http://www.oim.allidm.com/

Application Integration
Generic Technology Connectors
o If you do not need the customization features of the Adapter
Factory to create your custom connector, you can use the Generic
Technology Connector (GTC) feature of Oracle Identity Manager to
create the connector.
Identity Connectors ( ICF )
o decouples the connectors from Oracle Identity Manager.
o designed to separate the implementation of an application from the
dependencies of the system that the application is attempting to
connect to.

http://www.oim.allidm.com/

INSTALLATION

http://www.oim.allidm.com/

Installation Tasks
Preparation Tasks
o Review System Requirements and Specifications
o Review Certification Information
o Review Interoperability and Compatibility
Execution Tasks
o Install Database
o Install an Application Server
o Create database Schemas
o Install Identity Software
o Install SOA
o Configure Weblogic Domain
o Configure IDM
http://www.oim.allidm.com/

Installing Oracle Identity Manager

o Install Database
Oracle Database

o Install an Application Server

Weblogic

o Create database Schemas

Using the java tool Repository Creation Utility (RCU)

o Install Identity Software

o Install SOA
o Configure and Create Weblogic Domain
o Configure Oracle Identity Manager

http://www.oim.allidm.com/

Server URLs
http://<serverName>:<admin_server_port>/console
To check if WebLogic console is configured and running.

http://<serverName>:<admin_server_port>/em
is to check if Fusion Middleware Control is configured and running.

http://<serverName>:<oim_server_port>/oim
is to check if Oracle Identity Manager is configured and running.

http://<serverName>:<soa_server_port>/soa-infra
is to check if SOA Suite is configured and running.

http://www.oim.allidm.com/

Server Ports
default admin server port is 7001
soa server port is 8001
oim server port is 14000

http://www.oim.allidm.com/

Deinstalling
Deinstalling the Oracle Identity Management Oracle Home
o Verify your Oracle Identity and Access Management Oracle Home is

not in use by an existing domain

o Stop all processes that use the Oracle Identity and Access

Management Oracle Home.

o Invoke the Deinstaller from command line using the -deinstall option.
On UNIX:
./runInstaller -deinstall
On Windows:
setup.exe -deinstall

http://www.oim.allidm.com/

START / STOP

http://www.oim.allidm.com/

Start Oracle Identity Manager Process

Database
o Start Oracle Database
Application Servers
o Weblogic
Start Administration Server

Start Identity Servers

o Weblogic Manager Servers
Start Oracle SOA server

Start Oracle Identity Manager server

http://www.oim.allidm.com/

Start Oracle Identity Manager Process

Start admin server:
o On Unix: $DOMAIN_HOME/bin/startWebLogic.sh
o On Windows: %DOMAIN_HOME%\bin\startWebLogic.bat
Start Oracle Identity Manager server:
o On Unix: $DOMAIN_HOME\bin\startManagedWebLogic.sh oim_
o server1 t3://<adminServerHost>:<admin_server_port>
o On Windows: %DOMAIN_HOME%\bin\startManagedWebLogic.bat
o oim_server1 t3://<adminServerHost>:<admin_server_port>
Start Oracle SOA server:
o On Unix: $DOMAIN_HOME\bin\startManagedWebLogic.sh soa_
o server1 t3://<adminServerHost>:<admin_server_port>
o On Windows: %DOMAIN_HOME%\bin\startManagedWebLogic.bat
o soa_server1 t3://<adminServerHost>:<admin_server_port>
http://www.oim.allidm.com/

Stop Oracle identity Manager Process

Stop WebLogic managed components
o W_HOME/user_projects/domains/DOMAIN_NAME/bin/stopManag
edWebLogic.sh \
o {SERVER_NAME} {ADMIN_URL} {USER_NAME} {PASSWORD}
Stop the Oracle WebLogic Administration Server
o MW_HOME/user_projects/domains/DOMAIN_NAME/bin/stopWebL
ogic.sh

http://www.oim.allidm.com/

QUICK LOOK

http://www.oim.allidm.com/

Oracle Identity Manager Consoles

Oracle Identity Manager supports three consoles to

perform identity management tasks:

o Oracle Identity Manager Administrative Console
o Oracle Identity Manager User Console

o Oracle Identity Manager Design Console

http://www.oim.allidm.com/

Oracle Identity Manager Consoles

Oracle Identity Manager User Console
o Self-Service Console for unauthenticated users
Forgot User Login
Forgot Password
New User Regristration
Track My Registration

o Self-Service Console for authenticated users

console is available to all users with an account in Oracle Identity

Manager
My Profile
Requests
Administration

http://www.oim.allidm.com/

Oracle Identity Manager Consoles

Oracle Identity Manager AdministrativeConsole
o Advanced Administration for authenticated users
console is available to all users with an administrator capabilities

account in Oracle Identity Manager

Event Management
Policies
Configuration
System Management
Upgrade

http://www.oim.allidm.com/

Logging to the Oracle Identity Manager

Default
o http://server:14000/oim
o http://server:14000/identity
User Console
o http://HOSTNAME:PORT/identity

Admin Console
o http://your_server:14000/oim/admin
o http://your_server:14000/sysadmin

http://www.oim.allidm.com/

User
By default the user created during the installation is the

xelsysadm

http://www.oim.allidm.com/

RESOURCES

http://www.oim.allidm.com/

Resources
Part of the material presented here was compiled from the next sources:
o Oracle Identity Management Official Web Site
http://www.oracle.com/technetwork/middleware/id-mgmt/overview/index.html
http://www.oracle.com/us/products/middleware/identity-management/overview/index.html
http://www.oracle.com/us/products/middleware/identity-

management/oiam/overview/index.html
o Official Oracle Documentation Library
http://docs.oracle.com/cd/E27559_01/index.htm
http://www.oracle.com/technetwork/middleware/id-mgmt/documentation/index.html

o Forum
https://forums.oracle.com/forums/category.jspa?categoryID=195
o Identity Manager Identity Connectors Documentation
http://docs.oracle.com/cd/E22999_01/index.htm

http://www.oim.allidm.com/

Resources
Oracle Identity and Access Management Certification

Matrix
o http://www.oracle.com/technetwork/middleware/id-mgmt/identity-

accessmgmt-11gr2certmatrix-1714221.xls

http://www.oim.allidm.com/