In this intensive course, you'll learn about Oracle Identity Manager(OIM) 11g R2 PS3, a product of the Oracle Identity Governance Suite. You learn the architecture of Oracle Identity Governance 11g R2 and know the various development tools used. You also learn how to implement advanced techniques and customization in Oracle Identity Manager. As a result, you will be able to deliver sophisticated Identity Management solutions.
- Integrate OIM with systems not supported by out-of-the-box connectors.
- Create, customize, and enrich the reconciliation process, leveraging plug-ins, event handlers, and scheduled jobs.
- Install, configure, and extend OIM out-of-the-box connectors for a LDAP server.
- Leverage advanced techniques to provision resources and entitlements to users.
- Customize SOA composites.
- Implement approval rules, using the new approval workflow feature.
- Extend the OIM UI with new functionalities
- Enable and implement the Identity Auditor and explore the Role Lifecycle Management features
- Implement role analytics, certification, and Segregation of Duties (SoD), using the new Identity Auditor.
- Implement custom reports and report automation using BI Publisher.
- Explore the OIM Java API and the new SCIM (RESTful/JSON based) APIs
You'll learn how to implement a testing point for OIM integration with Java, modern SOA, RESTful and JSON clients, insulating developers, simplifying troubleshooting client integrations, and promoting modularization and segregation of concerns.
Develop a custom connector for a trusted source without an out-of-box connector
You'll learn how to develop a connector for a trusted source without an out-of-box connector leveraging the Identity Connector Framework (ICF). Connector development and tests are executed outside Oracle Identity Manager, promoting modularity and insulating the product implementation.
On-board Users from an Authoritative Source
You'll learn how to develop, test, and troubleshoot plug-ins, event handlers, system properties, and scheduled jobs that allows OIM dynamically and conditionally populate user data, such as user’s initial, common name, username, and e-mail.
Implement Advanced Entitlement techniques
You'll learn how to use advanced techniques to improve the overall User Experience requesting entitlements in the Identity Self Service console. Configuration includes exposing entitlement descriptions, technical glossaries (hierarchical attributes of entitlements, and temporal grants (Sunrise and Sunset) for application instances and entitlements.
Customize the Self Service Profile Management
You'll learn how extend Oracle Identity Manager's user entities with new attributes, extend the user entity with new attributes, and configure authorization to implement conditional Self-Service authorization for contractors and employees.
Optimize the user experience requesting applications in the catalog
You'll learn how to customize the application instance forms in the Identity Self Service Console to optimize the user experience requesting accounts. Optimization includes hidinh attributes, providing default values for attributes, List of Values provided by Managed Beans, and embedded links to the external pages.
Implement Advanced Certification & Identity Audit
This course teaches you to review access in OIM, by using advanced certification configuration that includes implement access review during management transfers by using event listeners, closed loop remediation, certification reports, certification oversight, and multi-phased certifications. You'll also learn to use advanced Identity Audit configuration and techniques in OIM to detect and prevent Segregation of Duties violations.
- Identity Management concepts
- Java programming & Web Services
- Basic Oracle WebLogic Server Administration concepts
- Oracle Identity Governance 11g R2: Essentials
Delegates will learn how to
- Configuring certifications with event listeners, closed-loop remediation, multi-phased, and certification oversight.
- Configuring the Identity Audit (IDA) to detect, remediate, and prevent Segregation of Duties (SoD) violations.
- Customizing reports and automate report delivery with BI Publisher.
- Configuring the new Identity Auditor to leverage role lifecycle management, role history, and role analytics.
- Oracle Identity Governance 11gR2 PS3 architecture and development tools.
- Oracle Identity Manager client APIs: Java, SPML, and SCIM (REST/JSON based).
- Developing a Custom Trusted Source Connector, using the Identity Connector Framework (ICF).
- Customizing the reconciliation with: plug-ins, event handlers, scheduled tasks, and system properties.
- Installing, configuring, and extending Oracle Identity Manager connectors.
- Implementing advanced entitlement administration techniques, such as hierarchical entitlements and temporal access.
- Customizing approval workflows and developing SOA composites.
- Customizing self-profile management, using the new authorization model.
- Customizing the Oracle Identity Manager UI with ADF.
- Identify the objectives of the course
- Discuss the course agenda
- Access additional information and resources
Overview Oracle Identity Governance 11g Architecture and Development Tools
- Review identity governance, management, and architecture concepts
- Examine the functional areas of identity management
- Identify Oracle Identity Manager as a solution for Identity Management tasks
- Examine use cases for Oracle Identity Manager
- Review Oracle Identity Manager user interfaces and development tools
- Discuss ways to populate identities in Oracle Identity Manager
- Explore the course practice environment
Developing Connectors to Integrate Systems
- Discuss the Identity Connector Framework (ICF)
- Identify the ICF application programming interface (API) and service provider interface (SPI) layers
- Develop a Connector implementation class
- Develop a Configuration implementation class
- Exchange data with Oracle Identity Manager through Attribute or ConnectorObject object types
- Create and modify Ant build files to generate a connector bundle JAR file ready for deployment or installation
Testing and Installing ICF Connectors
- Develop a connector test application by using the ICF application programming interface (API)
- Execute test applications in Oracle JDeveloper with the connect bundle JAR local to the test application
- Install the ICF connector in Oracle Identity Manager
- Manage the connector installation and configuration life cycle
- Explain reconciliation and the different types of reconciliation and modes
- Discuss the Oracle Identity Manager reconciliation architecture
- Create reconciliation objects by using the Design Console
- Implement trusted or target reconciliation by applying the Oracle Identity Manager object model
- Initiate reconciliation through a scheduled task
Customizing Reconciliation with Plug-ins, Event Handlers, and Scheduled Tasks
- Describe the plug-in framework including plug-ins and plug-in points
- Explain Oracle Identity Manager orchestration concepts
- Create and register a plug-in contained in a zip file
- Create and register an event handler
- Develop and register a custom scheduled task
Provisioning Resources to Users
- Configure an Oracle Identity Manager connector to make it operable
- Identify an Oracle Identity Manager application instance
- Describe how application instances relate to connector objects
- Provide examples of application instances
- Manage sandboxes
- Describe how to create an application instance
- Describe how to manage the Catalog
- Compare ways to provision a resource to an Oracle Identity Manager user: policy-based (user membership rules and access policies), request-based, and autoprovisioning
Granting Entitlements to Users
- Identify entitlements for application instances
- Manage entitlements for application instances
- Identify requests
- Explain the types of requests that you can create and manage
- Describe the two types of approval workflows associated with requests: request-level and operational-level approval workflows
- Identify the stages of a request
- Explain the request stages throughout a request’s life cycle
- Complete request-level and operational-level approval workflows
Introduction to Oracle SOA Suite
- Describe Oracle SOA Suite 11g and SOA composite applications
- Describe the components of a SOA composite application
- Create, condifure, and develop BPEL Process, Human Task, and Business Rule components
- Deploy and test a SOA composite application
Customizing Approval Processes in SOA Suite
- Design a custom approval composite
- Implement a custom approval composite interface and its callback requirements
- Generate a skeleton custom approval composite
- Secure the Request Web Service and invoke its operations from a composite
- Configure Oracle Universal Messaging Service (UMS) for notification services
Configuring Self Profile Management
- Compare authorization and authentication
- Identify authorization policies
- Explain how to define authorization policies that control access rights that users have in Oracle Identity Manager
- Discuss how to use authorization policies to determine whether a user can perform a specific action in Oracle Identity Manager
- Describe the relationship between authorization policies and administrative roles in Oracle Identity Manager
- Discuss how to manage authorization policies
- Identify Oracle Identity Manager system entities
- Add user-defined fields (UDFs) to system entities
Configuring Oracle Identity Manager Certifications
- Describe identity certification and attestation
- Identify the business drivers for certification
- Configure certification in Oracle Identity Manager
- Create and manage certification definitions
- Explain how risk summaries are calculated
- Describe closed-loop remediation and remediation tracking
- Describe and configure multiphased reviews and event listeners for user certifications
Extending an Oracle Identity Manager Connector
- Discuss how to extend an Oracle Identity Manager connector
- List the steps to complete to extend a connector
- Verify that the connector extensions are operable
Customizing the Oracle Identity Manager User Interface
- Describe the MVC architectural design layers and its benefits
- Explain the Oracle Identity Manager UI architecture
- Explain the ADF main components and Expression Languages
- Describe the approaches available to customize the Oracle Identity Manager UI
- Extend Oracle Identity Manager with a custom ADF application
- Provide links in Oracle Identity Manager
- Change Oracle Identity Manager console logo
Customizing the Application Instance Form for Access Requests
- Describe how to use the Oracle Identity Manager UI customization approaches to optimize application instance forms for access requests
- List the steps needed to customize the application instance form