Student Guide - Oracle Identity Manager 11g Essentials Volume II

580 1.7K 1
Student Guide - Oracle Identity Manager 11g Essentials Volume II

Đang tải... (xem toàn văn)

Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống

Thông tin tài liệu

Oracle Identity Manager 11g: Essentials Volume II • Student Guide D65160GC10 Edition 1.0 November 2010 D6980 Copyright © 2010, Oracle and/or its affiliates All rights reserved Disclaimer This document contains proprietary information and is protected by copyright and other intellectual property laws You may copy and print this document solely for your own use in an Oracle training course The document may not be modified or altered in any way Except where your use constitutes "fair use" under copyright law, you may not use, share, download, upload, copy, print, display, perform, reproduce, publish, license, post, transmit, or distribute this document in whole or in part without the express authorization of Oracle The information contained in this document is subject to change without notice If you find any problems in the document, please report them in writing to: Oracle University, 500 Oracle Parkway, Redwood Shores, California 94065 USA This document is not warranted to be error-free Restricted Rights Notice If this documentation is delivered to the United States Government or anyone using the documentation on behalf of the United States Government, the following notice is applicable: U.S GOVERNMENT RIGHTS The U.S Government’s rights to use, modify, reproduce, release, perform, display, or disclose these training materials are restricted by the terms of the applicable Oracle license agreement and/or the applicable U.S Government contract Trademark Notice Oracle and Java are registered trademarks of Oracle and/or its affiliates Other names may be trademarks of their respective owners Authors Robert LaVallie, Terri Cantor Technical Contributors and Reviewers Eswar Vandanapu, Raj Kuchi, Rajesh Bhabu, Sri Subramanian, Gopal Kumarappan, Mario Lim, Ajay Keni, Brad Donison, Ashok Maram, Bitan Biswas, Amol Dharmadhikari, Abhishek Sharma, Semyon Shulman, Viresh Garg, Sid Choudhury, Javed Beg, Jatan Rajvanshi, Sidhartha Das, Ashutosh Pitre, Shyam Narayan Singh, Sanjay Rallapalli, Srinivas Marni, Debapriya Datta, Alexandre Babeanu, Don Biasotti, Gururaj B.S This book was published using: Oracle Tutor Table of Contents Introduction 1-1 Introduction 1-2 Road Map 1-3 Course Objectives 1-4 Road Map 1-7 Course Units 1-8 Unit 1: Product Overview .1-9 Unit 2: Managing Users, User Entities, and Resources 1-11 Unit 3: Handling Reconciliation Workflows .1-13 Unit 4: Managing Policies, Reports, and Tools 1-14 Unit 5: Deploying Configurations 1-16 Road Map 1-17 Lesson Summary 1-18 Road Map 1-19 What's Next? 1-20 Identity Management and Identity Administration: Overview 2-1 Identity Management and Identity Administration: Overview 2-2 Road Map 2-3 Lesson Objectives 2-4 Road Map 2-6 Identity Management: Overview .2-7 Identity Management: Importance 2-9 Identity Management: Benefits .2-11 Quiz 2-13 Identity Management: Values 2-17 How Can Identity Management Help? 2-19 Quiz 2-23 Identity Management: Terminology 2-25 Identity Management: Functions 2-27 Identity Administration 2-29 Access Management 2-31 Directory Services 2-33 Audit and Compliance 2-35 Suite Management 2-37 Quiz 2-39 Road Map 2-43 Identity Administration: Infrastructure .2-44 Identity Administration: Benefits .2-45 Road Map 2-46 Lesson Summary 2-47 Road Map 2-48 Lesson Demos .2-49 Road Map 2-50 What's Next? 2-51 Launching Oracle Identity Manager .3-1 Launching Oracle Identity Manager .3-2 Road Map 3-3 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents i Lesson Objectives 3-4 Road Map 3-6 Oracle WebLogic Server Overview 3-7 Oracle WebLogic Server Overview: Domains 3-8 Comparing Administration Servers and Managed Servers 3-10 Oracle Identity Manager Server Overview .3-12 SOA Server Overview 3-13 Starting Administration and Managed Servers .3-15 Starting the Administration Server 3-16 Starting the Managed Servers 3-17 Monitoring the Status of the Managed Servers 3-18 Quiz 3-19 Road Map 3-22 Oracle Identity Manager Interfaces 3-23 Oracle Identity Manager Administrative and User Console Overview 3-24 Oracle Identity Manager Unauthenticated Self Service Console Overview 3-26 Oracle Identity Manager Unauthenticated Self Service Console: Reset Password 3-27 Oracle Identity Manager Unauthenticated Self Service Console: Self-Registration .3-30 Oracle Identity Manager Unauthenticated Self Service Console: Track Registration .3-33 Web Console Overview 3-35 Self-Service Functionalities 3-36 Oracle Identity Manager Self Service Console .3-38 Oracle Identity Manager Administration Console 3-40 Oracle Identity Manager Advanced Administration Console 3-42 Starting the Oracle Identity Manager Web Consoles .3-45 Oracle Identity Manager Design Console Overview .3-46 Design Console: User Management 3-47 Design Console: Resource Management .3-48 Design Console: Process Management 3-49 Design Console: Administration .3-50 Design Console: Development Tools .3-52 Starting the Oracle Identity Manager Design Console 3-54 Quiz 3-55 Road Map 3-58 Oracle SOA Consoles Overview 3-59 Oracle SOA Platform 3-60 Oracle BPM Worklist Console 3-61 Launching the Oracle SOA Consoles 3-62 Road Map 3-63 Lesson Summary 3-64 Road Map 3-65 Practice Overview: Launching Oracle Identity Manager .3-66 Road Map 3-67 What's Next? 3-68 Understanding Oracle Identity Manager 4-1 Understanding Oracle Identity Manager .4-2 Road Map 4-3 Lesson Objectives 4-4 Road Map 4-6 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents ii Oracle Identity Management Products 4-7 Road Map 4-10 Oracle Identity Manager: Overview 4-11 Oracle Identity Manager: Features 4-14 Oracle Identity Manager Features: Self-Service and Delegated Administration 4-16 Oracle Identity Manager Features: Workflow and Policy Management 4-17 Oracle Identity Manager Features: Password Management 4-19 Oracle Identity Manager Features: Audit and Compliance Management .4-21 Oracle Identity Manager Features: Integration Solutions .4-23 Oracle Identity Manager: Functional Layers 4-25 Oracle Identity Manager: Solving Business Challenges 4-27 Quiz 4-29 Road Map 4-32 Oracle Identity Manager Architecture .4-33 Quiz 4-35 Road Map 4-39 Use Case #1: Initial Onboarding 4-40 Use Case #2: Request-Based Scenario .4-41 Road Map 4-42 Reconciliation and Provisioning: Overview 4-43 Quiz 4-45 Road Map 4-47 Oracle Identity Manager Connector: Overview .4-48 Quiz 4-49 Road Map 4-50 Lesson Summary 4-51 Road Map 4-53 What's Next? 4-54 Understanding Organizations, Roles, and Users 5-1 Understanding Organizations, Roles, and Users 5-2 Road Map 5-3 Lesson Objectives 5-4 Road Map 5-5 Oracle Identity Manager User 5-6 User Entity Life Cycle .5-7 Oracle Identity Manager User Types 5-9 Oracle Identity Manager Functional Users .5-11 Quiz 5-13 Road Map 5-16 Oracle Identity Manager Organizations 5-17 Oracle Identity Manager Roles .5-18 Role Hierarchy .5-19 Role Category 5-20 Oracle Identity Manager Entity Relationships 5-21 Quiz 5-22 Road Map 5-25 Overview of the Bulk Load Utility 5-26 Loading Data with the Bulk Load Utility 5-27 Bulk Load Utility Scripts, Data Files, and Database Tables 5-29 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents iii Bulk-Load Input Source 5-31 Bulk-Load Database Columns 5-32 Configuring the Bulk Load Utility 5-36 Quiz 5-37 Road Map 5-38 Creating Oracle Identity Manager Entities 5-39 Creating an Organization .5-40 Creating a User 5-42 Creating a Role Category .5-45 Creating a Role 5-47 Assigning a User to a Role .5-49 Revoking a Role from a User 5-52 Bulk Modification of Users 5-54 Modifying an Organization .5-55 Deleting an Organization 5-56 Disabling and Deleting a User 5-57 Deleting a Role .5-59 Loading User and Role-Related Data with the Bulk Load Utility 5-61 Quiz 5-68 Road Map 5-70 Lesson Summary 5-71 Road Map 5-72 Practice Overview: Understanding Organizations, Roles, and Users .5-73 Road Map 5-74 What's Next? 5-75 Using Predefined Connectors 6-1 Using Predefined Connectors (Initial Onboarding) 6-2 Road Map 6-3 Lesson Objectives 6-4 Road Map 6-6 Oracle Identity Manager Connectors: Overview 6-7 Quiz 6-8 Road Map 6-9 Types of Oracle Identity Manager Connectors .6-10 Quiz 6-13 Road Map 6-14 Transferring Oracle Identity Manager Connectors: Ways 6-15 Transferring Oracle Identity Manager Connectors: Advantages 6-17 Transferring Oracle Identity Manager Connectors: Best Practices .6-18 Transferring Oracle Identity Manager Connectors: Tools .6-23 Quiz 6-25 Road Map 6-28 Using Oracle Identity Manager Connectors: Setup 6-29 Using Oracle Identity Manager Connectors: Run Time 6-33 Step 1: Verifying Installation and Deployment Requirements .6-34 Step 2: Configuring the External Resource 6-35 Step 3: Copying Connector and External Code Files 6-36 Copying Connector Files: Sun Java System Directory Server 6-38 Step 4: Configuring Oracle Identity Manager Server .6-44 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents iv Configuring Oracle Identity Manager Server: Clearing the Server Cache 6-45 Configuring Oracle Identity Manager Server: Enabling Logging 6-47 Step 5: Importing an Oracle Identity Manager Connector .6-50 Step 6: Defining an IT Resource 6-52 Step 7: Configuring Reconciliation Workflows 6-55 Step 8: Configuring Provisioning Workflows 6-60 Step 9: Assigning the Connector to a User 6-62 Step 10: Completing the Custom Process Form 6-64 Step 11: Accessing the Resource 6-66 Quiz 6-67 Road Map 6-72 Lesson Summary 6-73 Road Map 6-74 Practice Overview: Using Predefined Connectors (Initial Onboarding) 6-75 Road Map 6-76 What's Next? 6-77 Understanding Manual and Automated Provisioning 7-1 Understanding Manual and Automated Provisioning .7-2 Road Map 7-3 Lesson Objectives 7-5 Road Map 7-7 Resources 7-8 Oracle Identity Manager Connectors 7-9 Differences Between Assigning Resources and Provisioning Resources 7-10 Quiz 7-11 Road Map 7-13 Assigning Resources to Users: Overview 7-14 Assigning Resources to Users: Criteria 7-15 Assigning Resources to Users: Request 7-16 Assigning Resources to Users: Direct Provisioning .7-17 Quiz 7-18 Road Map 7-21 Types of Provisioning .7-22 Manual Provisioning .7-23 Autoprovisioning 7-24 Quiz 7-25 Road Map 7-26 Using Criteria to Assign a Resource to a User .7-27 Step 1: Creating an Auto Membership Rule 7-28 Step 2: Assigning an Auto Membership Rule to a Role .7-30 Step 3: Building an Access Policy 7-32 Provisioning a User with a Resource Manually 7-34 Step 1: Verifying a Resource Is Assigned to a User .7-36 Step 2: Completing a Custom Process Form 7-38 Step 3: Accessing the Resource 7-40 Quiz 7-41 Road Map 7-43 Modifying an Oracle Identity Manager Connector 7-44 Step 1: Modifying the Provisioning Process 7-46 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents v Step 2: Modifying the Custom Process Form 7-49 Provisioning a User with a Resource Automatically .7-51 Step 1: Verifying a Resource Is Assigned to a User .7-53 Step 2: Accessing the Resource 7-55 Quiz 7-56 Road Map 7-58 Lesson Summary 7-59 Road Map 7-61 Practice Overview: Understanding Manual and Automated Provisioning 7-62 Road Map 7-63 What's Next? 7-64 Understanding Approval Processes and Requests 8-1 Understanding Approval Processes and Requests 8-2 Road Map 8-3 Lesson Objectives 8-4 Road Map 8-6 Request Workflow and Approval Process Overview 8-7 Request Overview 8-8 Request Type 8-10 Request Type Catalog 8-12 Request Dataset 8-14 Default Request Dataset XML Files .8-16 Request Template 8-18 Approval Process 8-21 Approval Processes .8-22 Oracle SOA Platform 8-23 Template Level Approval Process 8-25 Approval Policies and the Request and Operation Approval Levels 8-26 Request and Operation Level Approval Processes 8-27 Quiz 8-29 Road Map 8-36 JDeveloper and SOA Composite Overview 8-37 Loading an SOA Composite in JDeveloper 8-38 Deploying an SOA Composite to a Defined Application Server .8-40 Registering an SOA Composite with Oracle Identity Manager .8-47 Registering a New SOA Composite with Oracle Identity Manager 8-48 Disabling an SOA Composite from Oracle Identity Manager 8-51 Enabling an SOA Composite with Oracle Identity Manager 8-52 Road Map 8-53 Creating an Approval Policy 8-54 Policy Details 8-55 Set Approval Rule 8-56 Approval Policy Summary 8-57 Approval Policy: Operation-Level Example 8-58 Quiz 8-59 Road Map 8-60 Modeling a Request Template .8-61 Access the Request Template Wizard 8-62 Request Template Details 8-63 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents vi Allowed Resources 8-65 Attribute Restrictions 8-66 Attribute Restriction Details 8-67 Additional Attributes .8-68 Template User Roles .8-69 Request Template Confirmation 8-70 Road Map 8-71 Request Initiation Flowchart 8-72 Request and Approval Stages for Requests 8-74 Request and Approval Stages for Bulk Requests 8-76 Initiating a Request 8-77 Request Beneficiary .8-78 Request Template 8-79 Select Users 8-80 Select Resources 8-81 Resource Details and Additional Data 8-82 Request Justification 8-83 Road Map 8-84 Lesson Summary 8-85 Road Map 8-86 Practice Overview: Understanding Request Workflows and Approval Processes 8-87 Road Map 8-88 What's Next? 8-89 Understanding Reconciliation 9-1 Understanding Reconciliation 9-2 Road Map 9-3 Lesson Objectives 9-5 Road Map 9-8 Reconciliation and Provisioning .9-9 Reconciliation: Types .9-11 Reconciliation: Events 9-14 Quiz 9-17 Road Map 9-23 Authoritative Reconciliation: Conceptual Diagram 9-24 Authoritative Reconciliation: Single and Multiple Trusted Sources .9-25 Account Reconciliation: Conceptual Diagram 9-26 Account Reconciliation: Target System 9-27 Account Reconciliation: Data Process Flow 9-28 Road Map 9-30 Implementing a Reconciliation Workflow 9-31 Step 1: Verifying Installation and Deployment Requirements .9-34 Step 2: Configuring the External Resource 9-36 Step 3: Copying Connector and External Code Files 9-38 Copying Connector Files: Microsoft Active Directory 9-40 Copying External Code Files: Microsoft Active Directory 9-45 Step 4: Configuring Oracle Identity Manager Server .9-46 Configuring Oracle Identity Manager Server: Clearing the Server Cache 9-47 Configuring Oracle Identity Manager Server: Enabling Logging 9-49 Step 5: Importing an Oracle Identity Manager Connector .9-51 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents vii Step 6: Defining an IT Resource 9-54 Step 7: Modifying a Scheduled Job 9-59 Modifying a Scheduled Job: Trusted Source 9-61 Modifying a Scheduled Job: Target Resource .9-63 Step 8: Reconciling with a Trusted Source 9-64 Step 8: Reconciling with a Target Resource 9-67 Quiz 9-70 Road Map 9-74 Lesson Summary 9-75 Road Map 9-76 Practice Overview: Understanding Reconciliation 9-77 Road Map 9-78 What's Next? 9-79 Managing Authorization Policies 10-1 Managing Authorization Policies 10-2 Road Map 10-3 Lesson Objectives 10-4 Road Map 10-6 Security Principles: Identity, Authentication, and Authorization 10-7 What Is Authorization? 10-9 Quiz 10-10 Road Map 10-12 Oracle Entitlement Server 10-13 Authorization Policy – Overview .10-15 Authorization Policy: Relationship to Roles 10-17 Authorization Policy: Target 10-18 Entity Association and Functional Security: Role Management 10-19 Entity Association and Functional Security: Self Service User Management 10-21 Entity Association and Functional Security: User Management 10-22 Authorization Policy: Defining Scope with Data Security 10-24 Authorization Policy: Policy Assignment 10-26 Out-of-the-Box Authorization Policies 10-27 When to Define Authorization Policies 10-34 Quiz 10-35 Road Map 10-41 Creating Role Management Authorization Policies 10-42 Step 1: Complete the Basic Policy Information 10-43 Step 2: Select the Role Management Permissions 10-44 Step 3: Choose Data Constraints 10-45 Step 4: Select the Assignees 10-46 Step 5: Confirm the Results 10-47 Creating Self Service User Management Authorization Policies 10-48 Step 1: Complete the Basic Policy Information 10-49 Step 2: Select the Self Service User Management Permissions 10-50 Step 3: Select the Assignees 10-51 Step 4: Confirm the Results 10-52 Creating User Management Authorization Policies 10-53 Step 1: Complete the Basic Policy Information 10-54 Step 2: Select the User Management Permissions 10-55 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents viii Copy the trinidad-config.xml file, from the D:\app\oracle\product\ middleware\iam_home\server\apps\oim.ear\iam-consolesfaces.war\WEB-INF directory Paste these files into the backups folder Open the trinidad-skins.xml file, found in the backups folder Note: For this procedure, you are defining a new skin for the Identity Administration Console New skins for this console are created in the trinidad-skins.xml file Locate the following line of code: 10 Below this line of code, add the following lines of code (as shown in the screenshot in the slide): myskin.desktop myskin fusion.desktop org.apache.myfaces.trinidad.desktop skins/myskin/myskin.css oracle.iam.consoles.faces.resources.AdfComponentsMessageBund le Note: By adding these lines of code to the trinidad-skins.xml file, you are defining a new skin (myskin) for the Identity Administration Console In addition, you are setting this skin to be the default skin for the console 11 Save your changes to the trinidad-skins.xml file Close the file You created a new skin for the Identity Administration Console You are ready to register the skin New skins for the console are registered in the trinidad-config.xml file Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 52 Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet Change the value of the parameter in the trinidad-config.xml file to myskin to register this skin for the Identity Administration Console Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet (continued) 12 Open the trinidad-config.xml file, found in the backups folder 13 Locate the following line of code: fusion 14 Change the value for the parameter from fusion to myskin (as shown in the screenshot in the slide) Note: By changing the value for the parameter, you are registering this skin You defined this skin in the trinidad-skins.xml file 15 Save your changes to the trinidad-config.xml file Close the file 16 Navigate to the D:\app\oracle\product\middleware\iam_home\server\apps\ oim.ear\admin.war\WEB-INF directory Replace the unedited trinidadskins.xml file and trinidad-config.xml file with the modified files You created and registered myskin, a new skin for the Identity Administration Console You are ready to create a style sheet for this console This style sheet (myskin.css) is Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 53 used to override default elements for the console, such as the console’s background color, menu link color, and activity icon (located in the upper-right corner of the console) 17 Navigate to the D:\app\oracle\product\middleware\iam_home\server\ apps\oim.ear\admin.war directory 18 Create a subdirectory titled skins\myskin in this directory Note: This folder is to contain myskin.css, the style sheet for the Identity Administration Console 19 Copy the myskin.css file, and paste it into the D:\app\oracle\product\ middleware\iam_home\server\ apps\oim.ear\admin.war\skins\myskin directory Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 54 Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet The background color, menu link color, and activity icon of the Identity Administration Console are modified Modifying the Functionality and Appearance of the Identity Administration Console: Creating a Custom Skin and Style Sheet (continued) 20 Restart Oracle Identity Manager Server and the Identity Administration Console The Home page of this console appears The appearance of this console is modified and reflects the custom skin and style sheet that you created for the console These changes include the console’s background color, menu link color, and activity icon (located in the upper-right corner of the console) Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 55 Modifying the Functionality and Appearance of the Authenticated Self Service Console: Overview Modifying the Functionality and Appearance of the Authenticated Self Service Console: Overview Modifying the functionality and appearance of the Authenticated Self Service Console includes: • Renaming button text (or labels) for the console • Creating custom skins and style sheets for the console Modifying the Functionality and Appearance of the Authenticated Self Service Console: Overview In this section, you modify the functionality and appearance of the Authenticated Self Service Console This includes: • Renaming button text (or labels) for the console For this appendix, change the text in the Apply and Revert buttons to Submit and Cancel These buttons are located on the Challenge Questions page of the console • Creating custom skins and style sheets for the console As a result, the appearance of the console is modified and reflects the custom skin and style sheet that you created for the console These changes include the console’s background color, menu link color, and activity icon (located in the upper-right corner of the console) Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 56 Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels Change the values of the SECURITY_SAVE and SECURITY_REVERT parameters in the Agent_en.properties file to Submit and Cancel Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels In this procedure, you rename button text (or labels) for the Authenticated Self Service Console For this appendix, change the text in the Apply and Revert buttons to Submit and Cancel These buttons are located on the Challenge Questions page of the console To rename button labels for the Authenticated Self Service Console: Shut down the Oracle Identity Manager Server and the Identity Administration Console Open a DOS window Navigate to the D:\app\oracle\product\middleware\iam_home\server\ apps\oim.ear\iam-consoles-faces.war\WEB-INF\lib directory Create a folder titled backups in this directory This folder contains a copy of all the files that you are to modify for this procedure Copy the OIMUI.jar file, which resides in the D:\app\oracle\product\ middleware\iam_home\server\apps\oim.ear\iam-consolesfaces.war\WEB-INF\lib directory Paste this file into the backups folder Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 57 Navigate to the backups folder At the prompt, enter jar –xf OIMUI.jar Using a text editor, open the Agent_en.properties file, found in the backups2\oracle\iam\selfservice\self\agentry\resources directory Note: This directory appears after you extract the contents of the OIMUI.jar file Locate the following lines of code: Intent[SECURITY_SAVE].name = Apply Intent[SECURITY_SAVE].description = Save challenge questions Intent[SECURITY_REVERT].name = Revert Intent[SECURITY_REVERT].description = Revert changes made for setting challenge questions Note: You search for these lines of code because you will rename button labels on the Challenge Questions page of the Authenticated Self Service Console 10 Change the value of the Intent[SECURITY_SAVE].name parameter from Apply to Submit Then, change the value of the Intent[SECURITY_REVERT].name parameter from Revert to Cancel (as shown in the screenshot in the slide) Note: By modifying the values for the Intent[SECURITY_SAVE].name and Intent[SECURITY_REVERT].name parameters, you are renaming the Apply and Revert buttons (to Submit and Cancel) These buttons are located on the Challenge Questions page of the Authenticated Self Service Console 11 Save your changes to the Agent_en.properties file Close the file Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 58 Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels Change the button labels in the Challenge Questions page of the Authenticated Self Service Console to Submit and Cancel Modifying the Functionality and Appearance of the Authenticated Self Service Console: Renaming Button Labels 12 Navigate to the backups directory At the prompt, enter jar –cf OIMUI.jar * 13 Navigate to the D:\app\oracle\product\middleware\iam_home\server\ apps\oim.ear\iam-consoles-faces.war\WEB-INF\lib directory Replace the unedited OIMUI.jar file with the modified file 14 Restart Oracle Identity Manager Server and the Authenticated Self Service Console The Home page of this console appears 15 Click the Profile tab on the Self Service Console Home page The My Profile tab appears 16 Click the Security tab Your modifications to the Agent_en.properties file are reflected in this form Specifically, you changed the text in the Apply and Revert buttons to Submit and Cancel (as shown in the screenshot in the slide) Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 59 Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet Change the value of the parameter in the trinidad-config.xml file to myskin to register this skin for the Authenticated Self Service Console Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet In this procedure, you create a custom skin and style sheet for the Authenticated Self Service Console For this appendix, this skin and style sheet is used to change the console’s background color, menu link color, and activity icon (located in the upper-right corner of the console) To create a custom skin and style sheet for the Authenticated Self Service Console: Shut down the Oracle Identity Manager Server and the Authenticated Self Service Console Open a DOS window Copy the trinidad-skins.xml file, from the D:\app\oracle\product\ middleware\iam_home\server\apps\oim.ear\admin.war\WEB-INF directory Paste this file into the D:\app\oracle\product\middleware\iam_home\server\ apps\oim.ear\iam-consoles-faces.war\WEB-INF directory Note: The trinidad-skins.xml file contains modifications that you made for the Identity Administration Console These changes are also applicable for the Authenticated Self Service Console By copying the trinidad-skins.xml file, you Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 60 create a new skin for the Authenticated Self Service Console You are ready to register the skin New skins for this console are registered in the trinidad-config.xml file Navigate to the D:\app\oracle\product\middleware\iam_home\server\apps\ oim.ear\iam-consoles-faces.war\WEB-INF directory Create a folder titled backups in this directory This folder contains a copy of all the files that are to modify for this procedure Copy the trinidad-config.xml file, from the D:\app\oracle\product\ middleware\iam_home\server\apps\oim.ear\iam-consolesfaces.war\WEB-INF directory Paste this file into the backups folder Open the trinidad-config.xml file, found in the backups folder 10 Locate the following line of code: fusion 11 Change the value for the parameter from fusion to myskin (as shown in the screenshot in the slide) Note: By changing the value for the parameter, you are registering this skin You defined this skin in the trinidad-skins.xml file 12 Save your changes to the trinidad-config.xml file Close the file 13 Navigate to the D:\app\oracle\product\middleware\iam_home\server\apps\ oim.ear\iam-consoles-faces.war\WEB-INF directory Replace the unedited trinidad-config.xml file with the modified file You created and registered myskin, a new skin for the Authenticated Self Service Console You are ready to use the myskin.css style sheet for this console The myskin.css style sheet is used to override default elements for the console, such as the console’s background color, menu link color, and activity icon (located in the upperright corner of the console) 14 Navigate to the D:\app\oracle\product\middleware\iam_home\server\ apps\oim.ear\iam-consoles-faces.war\skins directory 15 Create a folder titled myskin in this directory Note: This folder is to contain myskin.css, the style sheet for the Authenticated Self Service Console 16 Copy the myskin.css file, and paste it into the D:\app\oracle\product\ middleware\iam_home\server\ apps\oim.ear\iam-consolesfaces.war\skins\myskin directory Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 61 Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet The background color, menu link color, and activity icon of the Authenticated Self Service Console are modified Modifying the Functionality and Appearance of the Authenticated Self Service Console: Creating a Custom Skin and Style Sheet (continued) 17 Restart Oracle Identity Manager Server and the Authenticated Self Service Console The Home page of this console appears The appearance of this console is modified, and reflects the custom skin and style sheet that you created for the console These changes include the console’s background color, menu link color, and activity icon (located in the upper-right corner of the console) Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 62 Road Map Road Map • • • Appendix Objectives Oracle Identity Manager Interfaces Customizing Interfaces – Overview – Branding – Modifying Functionality • • Appendix Summary Appendix Practice Road Map This section lists areas of customizing Oracle Identity Manager Web-based user interfaces that you should have learned in this appendix Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 63 Appendix Summary Appendix Summary In this appendix, you should have learned how to: • Identify five Web-based user interfaces for Oracle Identity Manager • Define customization levels for the Oracle Identity Manager user interfaces • Brand the interfaces • Change interface appearance and functionality • Deploy customizations so that they are visible and operable in an Oracle Identity Manager environment Appendix Summary By now, you should have an in-depth understanding of : • Five Web-based user interfaces available in Oracle Identity Manager • Customization levels for the user interfaces • How to modify the look and feel of these interfaces to brand them for your company • How to change interface appearance and functionality by modifying Oracle Identity Manager code • How to deploy customizations so that they are visible and operable in an Oracle Identity Manager environment Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 64 Road Map Road Map • • • Appendix Objectives Oracle Identity Manager Interfaces Customizing Interfaces – Overview – Branding – Modifying Functionality • • Appendix Summary Appendix Practice Road Map In this section, you become familiar with customizing Oracle Identity Manager user interfaces Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 65 Practice F Overview: Customizing the Oracle Identity Manager User Interfaces Practice F Overview: Customizing the Oracle Identity Manager User Interfaces In this practice, you become familiar with customizing the following Web-based user interfaces for Oracle Identity Manager: • Identity Administration Console • Authenticated Self Service Console Practice F Overview: Customizing the Oracle Identity Manager User Interfaces This exercise is designed to familiarize you with customizing two Web-based user interfaces for Oracle Identity Manager: the Identity Administration Console and the Authenticated Self Service Console Specifically, you learn how to: • Customize the overall layout of each console This includes: - Modifying the text that appears in the header banner of each console This text is known as branding text Adding a logo to each console - Changing the mouseover text associated with each logo • Rename button text (or labels) for each console • Create custom skins and style sheets for both consoles Copyright © 2010, Oracle and/or its affiliates All rights reserved Customizing the Oracle Identity Manager User Interfaces Chapter 18 - Page 66 [...]... 1 2-2 0 Oracle Fusion Middleware Audit Framework: Oracle Identity Manager and SOA 1 2-2 1 Auditing – Oracle Identity Manager 1 2-2 2 Auditing: Oracle Identity Manager Audit Engine .1 2-2 3 Auditing: Oracle Identity Manager Audit Levels .1 2-2 5 Auditing: Changing the Oracle Identity Manager Audit Level 1 2-2 6 Auditing: SOA Audit Levels 1 2-2 7 Auditing:... .1 6-6 Road Map 1 6-8 Oracle Identity Manager Architecture: Advantages 1 6-9 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials Table of Contents xiii Road Map 1 6-1 2 Oracle Identity Manager Architecture: Features and Benefits .1 6-1 3 Road Map 1 6-2 0 Oracle Identity Manager. .. 1 7-2 0 Constructing an Oracle Identity Manager Connector: Step 2 1 7-2 2 Constructing an Oracle Identity Manager Connector: Step 3 1 7-2 4 Constructing an Oracle Identity Manager Connector: Step 4 1 7-2 6 Constructing an Oracle Identity Manager Connector: Step 5 1 7-2 8 Constructing an Oracle Identity Manager Connector: Step 6 1 7-3 0 Constructing an Oracle Identity. .. 1 7-8 Oracle Identity Manager Connector Types: Predefined Connectors 1 7-9 Oracle Identity Manager Connector Types: Generic Technology Connectors .1 7-1 0 Oracle Identity Manager Connector Types: Custom Connectors 1 7-1 2 Road Map 1 7-1 3 Oracle Identity Manager Connector: Components 1 7-1 4 Road Map 1 7-1 9 Constructing an Oracle Identity Manager. .. .1 4-1 8 Oracle Access Manager 1 4-1 9 Oracle Adaptive Access Manager 1 4-2 0 Oracle Authentication Service for OS 1 4-2 2 Oracle Enterprise Single Sign-On 1 4-2 3 Oracle Entitlements Server 1 4-2 4 Oracle Identity Federation 1 4-2 5 Oracle Web Services Manager 1 4-2 6 Copyright © 2010, Oracle and/or its... 1 6-3 5 Appendix Summary 1 6-3 6 Oracle Identity Manager Connectors 1 7-1 Oracle Identity Manager Connectors 1 7-2 Road Map 1 7-3 Appendix Objectives 1 7-4 Road Map 1 7-5 Oracle Identity Manager Connector: Overview .1 7-6 Road Map 1 7-7 Oracle Identity Manager Connector:... Products 1 4-6 Oracle Identity Management Products: Functional Aspects 1 4-9 Oracle Identity Management Products: Functionalities 1 4-1 0 Oracle Identity Management Products: Solutions 1 4-1 1 Identity Administration: Infrastructure .1 4-1 4 Oracle Identity Manager 1 4-1 5 Oracle Identity Analytics .1 4-1 6 Access Management:... Server 1 5-1 09 How a Node Manager Shuts Down a Server Instance 1 5-1 10 Road Map 1 5-1 11 Lesson Summary 1 5-1 12 Oracle Identity Manager Architecture 1 6-1 Oracle Identity Manager Architecture .1 6-2 Road Map 1 6-3 Appendix Objectives 1 6-4 Road Map 1 6-5 Oracle Identity Manager Architecture... Logging for Oracle Identity Manager .1 2-8 5 Managing Logging for SOA 1 2-9 1 Roadmap .1 2-9 3 Lesson Summary 1 2-9 4 Roadmap .1 2-9 6 Practice 12 Overview: Auditing, Monitoring, and Logging for Oracle Identity Manager 1 2-9 7 Copyright © 2010, Oracle and/or its affiliates All rights reserved Oracle Identity Manager 11g: Essentials. .. Identity Manager Connector: Step 7 1 7-3 2 Constructing an Oracle Identity Manager Connector: Step 8 1 7-3 4 Road Map 1 7-3 6 Appendix Summary 1 7-3 7 Customizing the Oracle Identity Manager User Interfaces 1 8-1 Customizing the Oracle Identity Manager User Interfaces 1 8-2 Road Map 1 8-3 Appendix Objectives 1 8-5

Ngày đăng: 25/11/2016, 19:23

Từ khóa liên quan

Mục lục

  • Oracle Identity Manager 11g:Essentials (SG2)

  • Table of Contents

  • Lesson 10: Managing Authorization Policies

    • Managing Authorization Policies

    • Road Map

    • Lesson Objectives

    • Road Map

    • Security Principles: Identity, Authentication, and Authorization

    • What Is Authorization?

    • Quiz

    • Road Map

    • Oracle Entitlement Server

    • Authorization Policy – Overview

    • Authorization Policy: Relationship to Roles

    • Authorization Policy: Target

    • Entity Association and Functional Security: Role Management

    • Entity Association and Functional Security: Self Service User Management

    • Entity Association and Functional Security: User Management

    • Authorization Policy: Defining Scope with Data Security

    • Authorization Policy: Policy Assignment

    • Out-of-the-Box Authorization Policies

Tài liệu cùng người dùng

  • Đang cập nhật ...

Tài liệu liên quan