Identity And Access Management - Rajiv Dewan

Oracle Identity Manager 11g Interview Questions

  1. What is Identity Management ?
  2. What all are the issues you faced in OIM 11g which were not there in OIM 10g ?
  3. What are difference between OIM 11g and OIM 10g ?
  4. What is Request Template ?
  5. Why we need Request Template in OIM ?
  6. Can we use OES /Authorization Policies to work at attribute level ?
  7. What is Notification Template and how it works in OIM ?
  8. Can we extend Request Models in OIM 11g ?
  9. How Request Datasets are related to Object Form ?
  10. What are the advantages of Request Dataset over Object Form ?
  11. What is the function of SOA in OIM 11g ?
  12. What are the steps and challeneges to export/import UDF in OIM 11g ?
  13. What are the benefits of OIM 11g over OIM 10g ?
  14. In OIM 11g we have UploadJar Utillity, what are the benefits of that ?
  15. Can we attach an image on Request Dataset ?
  16. What are the operations supportes in Event Handlers in OIM 11g ?
  17. Which class do you implement to create an Event Handler ?
  18. Which class do you implement to create a Schedule Task ?
  19. What is Authorization Policy in OIM 11g ? 
  20. Tell me atleast 5 good things about OIM which are not present in other IDM Products ?
  21. Difference between Approval Policy and Access Policy?
  22. Can we create Approval Rule using Java ?
  23. Can we create Approval Rule in Approval Policy using User Defined Attributes of User ?
  24. Steps to deploy Scheduler, EventHandlers and Approval Workflow ?
  25. What is the best practice to migrate code from one env to another env ?

Oracle Identity Manager 11.1.1.5.0 Installation Guide - Windows Platform


Please find the Oracle Identity Manager 11.1.1.5.0 Installation Guide on Windows Platform







Note:
I accept no liability for the content of this document, or for the consequences of any actions taken on the basis of the information provided. Use this document for learning purpose.

GTC and USER ID Generation Issue

I have seen one intresting issue so thought to share with you all:

Requirement:
DB/Flat File GTC is Trusted Reconciliation and we have to generate a unique User ID in OIM.



Assumption:
OIM Version: Oracle Identity Manager 10g


General Design:

  1. As User ID is required field in OIM then we pass a Lietral Value say 'DUMMYID' in User ID field through GTC
  2. We attach an Event Handler/Entity Adapter to generate Unique User ID and attach it on User Form
  3. And this Event Handler will update the User ID field of OIM with generated Unique User ID
  4. We make Reconciliation Rule on some other unique field of Trusted Source say "Employee Number"
Issue with the Design:

Reconciliation will work fine for the first time but when we run for the second time then it would be having 'DUMMYID' in User ID field and it will update the OIM User ID with 'DUMMYID' again.

And if we run reconciliation for more than one user then it will try to update same User ID i.e. 'DUMMYID' for all the users and will throw exception "Can not insert duplicate User Id"

Solution:

  1. Don't pass 'DUMMYID' from GTC
  2. Make User ID as Non Mandatory in OIM




Add Role to Request Template Using OIM 11g APIs

RequestTemplateService requestTemplateService = RequestTemplateService requestTemplateService = oimClient.getService(RequestTemplateService.class);
List roleList = new ArrayList() ;
roleList .add("241"); // 241 is the Group Key
Long requestTemplateKey = 67L; // 67 is the Request Template Key
requestTemplateService.grantTemplateToRoles(requestTemplateKey , roleList );