|
Oracle® Identity Management Integration Guide
10g Release 2 (10.1.2) B14085-02 |
|
 Previous |
 Next |
|
Oracle® Identity Management Integration Guide
10g Release 2 (10.1.2) B14085-02 |
|
|
Previous |
Next |
This section describes the procedures for provisioning users in Oracle Identity Management. It contains these topics:
You can use the Provisioning Console to centrally manage user provisioning and deprovisioning of one or more users simultaneously. The console includes a wizard-based interface for creating, modifying, and deleting individual users, and for selectively provision and deprovision users for any provisioning-integrated applications. The Provisioning Console also supports bulk user creation, modification, and deletion of users from an LDIF file. See "Bulk Provisioning" for more information.
When Oracle Internet Directory is used as a central repository and enterprise user entries are synchronized from third-party directories to Oracle Internet Directory, each user identity is automatically provisioned according to the default provisioning policy of each provisioning-integrated application.
Any tools developed by Oracle or third-party vendors that use standard command-line LDAP tools can create user entries in Oracle Internet Directory. As with user entries that are synchronized from external sources, any user entries created with command-line LDAP tools or any other means are provisioned according to the default provisioning policies for each provisioning-integrated application.
You can use the Provisioning Console or the Directory Integration and Provisioning Assistant to create and provision user entries by providing an LDIF (LDAP Data Interchange Format) file containing user data. The LDIF file should contain only LDAP-specific attributes. When user entries in an LDIF file are created in Oracle Internet Directory, each entry is provisioned according to the default provisioning policy of each provisioning-integrated application.
On-demand provisioning occurs when a user attempts to access an application and the application has no knowledge of the user in its repository. The application determines whether to provision a user account based on its default provisioning policies. After provisioning a user account in its repository, an application will update the provisioning status of the user entry in Oracle Internet Directory.
