Skip Headers
Oracle® Identity Manager Connector Guide for JD Edwards EnterpriseOne User Management
Release 9.0.4
Part Number E10453-04
Go to Documentation Home
Home		 Go to Book List
Book List		 Go to Table of Contents
Contents		 Go to Index
Index		 Go to Feedback page
Contact Us
Go to previous page
Previous		 Go to next page
Next
View PDF

3 Configuring the Connector

After you deploy the connector, you must configure it to meet your requirements. This chapter discusses the following connector configuration procedures:

Note:

These sections provide both conceptual and procedural information about configuring the connector. It is recommended that you read the conceptual information before you perform the procedures.

Note:

This chapter provides both conceptual and procedural information about configuring the connector. It is recommended that you read the conceptual information before you perform the procedures.

3.1 Configuring Reconciliation

As mentioned earlier in this guide, reconciliation involves duplicating in Oracle Identity Manager the creation of and modifications to user accounts on the target system. This section discusses the following topics related to configuring reconciliation:

3.1.1 Configuring Trusted Source Reconciliation

While configuring the connector, the target system can be designated as a trusted source or target resource. If you designate the target system as a trusted source, then during a reconciliation run:

  • For each newly created user on the target system, an OIM User is created.

  • Updates made to each user on the target system are propagated to the corresponding OIM User.

If you designate the target system as a target resource, then during a reconciliation run:

  • For each account created on the target system, a resource is assigned to the corresponding OIM User.

  • Updates made to each account on the target system are propagated to the corresponding resource.

Note:

Skip this section if you do not want to designate the target system as a trusted source for reconciliation.

Enabling trusted source reconciliation involves the following steps:

  1. Import the XML file for trusted source reconciliation, JDEConnectorXLResourceObject.xml, by using the Deployment Manager. This section describes the procedure to import the XML file.

  2. Set the isTrustedSource scheduled task attribute to True. You specify a value for this attribute while configuring the user reconciliation scheduled task, which is described later in this guide.

To import the XML file for trusted source reconciliation:

  1. Open the Oracle Identity Manager Administrative and User Console.

  2. Click the Deployment Management link on the left navigation bar.

  3. Click the Import link under Deployment Management. A dialog box for opening files is displayed.

  4. Locate and open the JDEConnectorXLResourceObject.xml file, which is in the OIM_HOME/xellerate/JDE/xml directory. Details of this XML file are shown on the File Preview page.

  5. Click Add File. The Substitutions page is displayed.

  6. Click Next. The Confirmation page is displayed.

  7. Click Import.

  8. In the message that is displayed, click Import to confirm that you want to import the XML file and then click OK.

After you import the XML file for trusted source reconciliation, you must set the value of the isTrustedSource reconciliation scheduled task attribute to True. This procedure is described in the "Configuring the Reconciliation Scheduled Tasks" section.

3.1.2 Configuring the Reconciliation Scheduled Tasks

When you perform the procedure described in the "Importing the Connector XML File" section, the scheduled tasks for lookup fields and user reconciliations are automatically created in Oracle Identity Manager. To configure these scheduled tasks:

  1. Open the Oracle Identity Manager Design Console.

  2. Expand the Xellerate Administration folder.

  3. Select Task Scheduler.

  4. Click Find. The details of the predefined scheduled tasks are displayed on two different tabs.

  5. For the first scheduled task, enter a number in the Max Retries field. This number represents the number of times Oracle Identity Manager must attempt to complete the task before assigning the FAILED status to the task.

  6. Ensure that the Disabled and Stop Execution check boxes are not selected.

  7. In the Start region, double-click the Start Time field. From the date-time editor that is displayed, select the date and time at which you want the task to run.

  8. In the Interval region, set the following schedule parameters:

    • To set the task to run on a recurring basis, select the Daily, Weekly, Recurring Intervals, Monthly, or Yearly option. If you select the Recurring Intervals option, then you must also specify the time interval at which you want the task to run on a recurring basis.

    • To set the task to run only once, select the Once option.

  9. Provide values for the attributes of the scheduled task. Refer to the "Specifying Values for the Scheduled Task Attributes" section for information about the values to be specified.

  10. Click Save. The scheduled task is created. The INACTIVE status is displayed in the Status field, because the task is not currently running. The task is run at the date and time that you set in Step 7.

  11. Repeat Steps 5 through 10 to create the second scheduled task.

3.1.2.1 Specifying Values for the Scheduled Task Attributes

This section provides information about the values to be specified for the following scheduled tasks:

3.1.2.1.1 Lookup Fields Reconciliation Scheduled Task

You must specify values for the following attributes of the JDE LookUp Recon lookup fields reconciliation scheduled task.

Note:

  • Attribute values are predefined in the connector XML file that you import. Specify values only for those attributes that you want to change.

  • Values (either default or user-defined) must be assigned to all the attributes. If even a single attribute value were left empty, then reconciliation would not be performed.

Attribute Description Sample Value
Language Code of the language to be used in the lookup reconciliation en
Country Code of the country to be used in the lookup reconciliation us
ITResource Name of the IT resource for setting up a connection to JD Edwards JDE IT Resource
isRoleLookup Specifies whether or not to perform a lookup for the Role value during reconciliation

The value can be true or false.

 true
isDateSeparationCharacterLookup Specifies whether or not to perform a lookup for the Date Separation Character value during reconciliation

The value can be true or false.

 true
isLanguageLookup Specifies whether or not to perform a lookup for the Language value during reconciliation

The value can be true or false.

 true
isLocalizationCountryCodeLookup Specifies whether or not to perform a lookup for the Localization Country Code value during reconciliation

The value can be true or false.

 true
isDateFormatLookup Specifies whether or not to perform a lookup for the Date Format value during reconciliation

The value can be true or false.

 true
isUniversalTimeLookup Specifies whether or not to perform a lookup for the Universal Time value during reconciliation

The value can be true or false.

 true
isDecimalFormatCharacterLookup Specifies whether or not to perform a lookup for the Decimal Format Character value during reconciliation

The value can be true or false.

 true
isTimeFormatLookup Specifies whether or not to perform a lookup for the Time Format value during reconciliation

The value can be true or false.

 true
LanguagePreferenceForLookup Specifies the language setting for lookup field entries You can specify one of the following values:

  • For English: E

  • For French: F

  • For German: G

  • For Italian: I

  • For Japanese: J

  • For Korean: KO

  • For Simplified Chinese: CS

  • For Spanish: S

  • For Traditional Chinese: CT

After you specify values for the task attributes, proceed to Step 10 of the procedure to create scheduled tasks.

3.1.2.1.2 User Reconciliation Scheduled Task

You must specify values for the following attributes of the JDE User Recon user reconciliation scheduled task.

Note:

  • Attribute values are predefined in the connector XML file that you import. Specify values only for those attributes that you want to change.

  • Values (either default or user-defined) must be assigned to all the attributes. If even a single attribute value were left empty, then reconciliation would not be performed.

Attribute Description Sample Value
Organization Default organization assigned to a new user Xellerate Users
Xellerate Type Default type assigned to a new user End-User Administrator
Role Default employee type assigned to a new user Consultant
ITResource Name of the IT Resource for setting up a connection with JD Edwards JDE IT Resource
ResourceObject Name of the resource object that is used for JDE Resource Object
isTrustedSource Specifies whether or not trusted source reconciliation is to be performed

If it is set to true, then the target system is treated as a trusted source.

If it is set to false, then the target system is treated as a nontrusted target. By default, the value is false.

 false
XLDeleteUsersAllowed Specifies whether or not users are to be deleted in Oracle Identity Manager during user reconciliation false
Configuration Lookup Name of the lookup definition that stores configuration information used during connector operations Lookup.JDE.Configuration

After you specify values for the task attributes, proceed to Step 10 of the procedure to create scheduled tasks.

Stopping Reconciliation

Suppose the User Reconciliation Scheduled Task for the connector is running and user records are being reconciled. If you want to stop the reconciliation process:

  1. Perform Steps 1 through 4 of the procedure to configure reconciliation scheduled tasks.

  2. Select the Stop Execution check box in the task scheduler.

  3. Click Save.

3.1.3 Adding New Attributes for Target Resource Reconciliation

Note:

This section describes an optional procedure. You need not perform this procedure if you do not want to add new attributes for reconciliation.

By default, the attributes listed in the "Reconciled Target System Fields" section are mapped for reconciliation between Oracle Identity Manager and the target system. If required, you can add new attributes for target resource reconciliation.

To add a new attribute for target resource reconciliation, perform the following procedure:

Note:

You must ensure the new attributes that you add for reconciliation contain data in string-format only. Binary attributes must not be introduced into Oracle Identity Manager natively.

  1. Log in to the Oracle Identity Manager Design Console.

  2. Add the new attribute on the OIM User process form as follows:

    1. Expand Development Tools.

    2. Double-click Form Designer.

    3. Search for and open the UD_JDE process form.

    4. Click Create New Version.

    5. In the Label field, enter the version name. For example, version#1.

    6. Click the Save icon.

    7. Select the current version created in Step e from the Current Version list.

    8. Click Add to create a new attribute, and provide the values for that attribute.

      For example, if you are adding the organization attribute, then enter the following values in the Additional Columns tab:

      Field Value
      Name AddressNumber
      Variant Type String
      Length 100
      Field Label AddressNumber
      Order 14

    9. Click the Save icon.

    10. Click Make Version Active.

  3. Add the new attribute to the list of reconciliation fields in the resource object as follows:

    1. Expand Resource Management.

    2. Double-click Resource Objects.

    3. Search for and open the JDE Resource Object resource object.

    4. On the Object Reconciliation tab, click Add Field, and then enter the following values:

      Field Name: AddressNumber

      Field Type: String

    5. Click the Save icon.

  4. Create a reconciliation field mapping for the new attribute in the process definition form as follows:

    1. Expand Process Management.

    2. Double-click Process Definition.

    3. Search for and open the JDE Process process definition.

    4. On the Reconciliation Field Mappings tab, click Add Field Map, and then select the following values:

      Field Name: AddressNumber

      Field Type: String

      Process Data Field: AddressNumber

    5. Click the Save icon.

  5. Create an entry for the attribute in the lookup definition for reconciliation as follows:

    1. Expand Administration.

    2. Double-click Lookup Definition.

    3. Search for and open the Lookup.JDEReconciliation.FieldMap lookup definition.

    4. Click Add and enter the Code Key and Decode values for the attribute. The Code Key value must be the name of the attribute given in the resource object. The Decode value is the name of the attribute in the target system.

      For example, enter AN8 in the Code Key field and then enter AddressNumber in the Decode field.

    5. Click the Save icon.

  6. Add the new attribute to the Lookup.JDE.Configuration lookup definition as follows:

    1. Expand Administration.

    2. Double-click Lookup Definition.

    3. Search for and open the Lookup.JDE.Configuration lookup definition.

    4. Every attribute that you add belongs to a JDE database table. If the name of this JDE database table is already listed as the Code Key value, then enter the column name as Decode value.

      Note:

      If you have more than one value in the Decode column, then each value must be separated by a comma (,).

    5. If the name of this JDE database table is not listed as a Code Key value, then:

      1. Click Add.

      2. Enter the name of the JDE table as the Code Key value. For example, TF0092.

      3. Enter the JDE table column name as the Decode value. For example, Email.

    6. Click the Save icon.

3.2 Configuring Provisioning

As mentioned earlier in this guide, provisioning involves creating or modifying a user's account information on the target system through Oracle Identity Manager. This section discusses the following topics related to configuring provisioning:

3.2.1 Compiling Adapters

Note:

Skip this section if either of the following conditions is true:

Adapters are used to implement provisioning functions. The following adapters are imported into Oracle Identity Manager when you import the connector XML file:

See Also:

The "Supported Functionality" section for a listing of the provisioning functions that are available with this connector

  • Enable and Disable User

  • JDE Delete User

  • Modify Password

  • PrePopulate JDE Form

  • JDE Remove Role

  • JDE Modify User

  • JDE Create User

  • JDE Add Role

You must compile these adapters before they can be used in provisioning operations.

To compile adapters by using the Adapter Manager form:

  1. Open the Adapter Manager form.

  2. To compile all the adapters that you import into the current database, select Compile All.

    To compile multiple (but not all) adapters, select the adapters you want to compile. Then, select Compile Selected.

    Note:

    Click Compile Previously Failed to recompile only those adapters that were not compiled successfully. Such adapters do not have an OK compilation status.

  3. Click Start. Oracle Identity Manager compiles the selected adapters.

  4. If Oracle Identity Manager is installed in a clustered environment, then copy the compiled adapters from the OIM_HOME/xellerate/Adapter directory to the same directory on each of the other nodes of the cluster. If required, overwrite the adapter files on the other nodes.

If you want to compile one adapter at a time, then use the Adapter Factory form.

See Also:

Oracle Identity Manager Tools Reference Guide for information about using the Adapter Factory and Adapter Manager forms

To view detailed information about an adapter:

  1. Highlight the adapter in the Adapter Manager form.

  2. Double-click the row header of the adapter, or right-click the adapter.

  3. Select Launch Adapter from the shortcut menu that is displayed. Details of the adapter are displayed.

3.2.2 Adding New Attributes for Provisioning

Note:

This section describes an optional procedure. You need not perform this procedure if you do not want to add new attributes for provisioning.

By default, the attributes listed in the "Provisioning Module" section are mapped for provisioning between Oracle Identity Manager and the target system. If required, you can map additional attributes for provisioning.

To add a new attribute for provisioning, create an entry for the attribute in the lookup definition for provisioning as follows:

  1. Expand Administration.

  2. Double-click Lookup Definition.

  3. Search for and open the Lookup.JDEProvisioning.FieldMap lookup definition.

  4. Click Add and enter the Code Key and Decode values for the attribute. The Code Key value must be the name of the attribute given in the resource object. The Decode value is the name of the attribute in the target system.

    For example, enter UD_JDE_ADDRESSNUMBER in the Code Key field and then enter mnAddressNumber in the Decode field.

  5. Click the Save icon.

3.2.2.1 Enabling Update of New Attributes for Provisioning

After you add an attribute for provisioning, you must enable update operations on the attribute. If you do not perform this procedure, then you will not be able to modify the value of the attribute after you set a value for it during the Create User provisioning operation.

To enable the update of a new attribute for provisioning a user:

  1. Expand Process Management.

  2. Double-click Process Definition and open the JDE Process process definition.

  3. In the process definition, add a new task for updating the field as follows:

    1. Click Add and enter the task name, for example, AddressNumber Updated and the task description.

    2. In the Task Properties section, select the following fields:

      • Conditional

      • Required for Completion

      • Allow Cancellation while Pending

      • Allow Multiple Instances

    3. Click on the Save icon.

  4. On the Integration tab, click Add, and then click Adapter.

  5. Select the adpJDEMODIFYUSER adapter, click Save, and then click OK in the message that is displayed.

  6. To map the adapter variables listed in this table, select the adapter, click Map, and then specify the data given in the following table:

    Note:

    Some of the values in this table are specific to Address Number (mnAddressNumber value in the target system). These values must be replaced with values relevant to the attributes that you require.
    Variable Name Data Type Map To Qualifier Literal Value
    sPropertyName String Literal String mnAddressNumber
    processKeyInstance String Process Data Process Instance NA
    Adapter return value Object Response Code NA NA
    JDEITResource IT Resource Process Data IT Resource Type NA
    userID String Process Data User ID NA

  7. Click the Save icon and then close the dialog box.

Go to previous page
Previous		 Go to next page
Next
Go to Documentation Home
Home		 Go to Book List
Book List		 Go to Table of Contents
Contents		 Go to Index
Index		 Go to Feedback page
Contact Us