IdM Rockstar
Adam Callen
Search Archives
"One of the top Identity Management Strategists in the market today!"
Welcome to my Identity Management blog with focus on proven implementation stratigies, best practices, product selection, and where I open my expertse to You!
Fortune 100, Higher Education, Government... I've done it all. I'm 7 feet tall, live in NYC, tattooed, and love a challenge! Here's what I've learned...
1
I was working with a colleague of mine today on a OIM / ORM implementation and integration. One of the steps was to add all the Organizations from Oracle Role Manager into Oracle Identity Manager. We had about 300 or so, which means I wasn’t about to enter them all in by hand. Welcome Perl! A quick script is whipped up and with an XML output we imported all the Organizations into OIM. Voila! All the Org’s are imported and ready to go… until I try to change a user from one organization to another and I see a StackOverflow error in the design console with a ton of these:
[...]com.thortech.xl.client.events.tcUSRCheckUsrOrgChange.traverseParentActs (Unknown Source)[...]
The web app times out, the app server craps all over itself, and nothing is updated. WTF?
Well, it turns out, that if your partner gives you an XML file to import that has all the Organizations with the parent organization as itself, it creates an infinite loop and this happens. Another wonderful side effect is that you can’t delete any of them to re-import them. Mainly because there’s a child organization (itself) that needs to be removed first, which is also impossible due to logic error. So… I had to remove all the parent keys by hand. Awesome.
Lesson of the day: Check your import XML files before you import them for logic errors =)
.: Adam
So messing around with the integration between the current version of Oracle Role Manager and Oracle Identity Manager, I’m seeing a lot of bugs / issues. The main one being that ORM is not updating OIM properly with the roles and entitlements to the associated account like it’s supposed to. I’m pretty sure this is a bug with the integration pack.
After a couple calls into Oracle, I found out that Oracle is going to be releasing a point release on both OIM and ORM really soon (first week of May is what I was told). This will also include an update to the integration piece.
Not only is this update supposed to fix that issue, but a whole plethora of others.
So, if you’re having a bunch of problems during an install of these products right now, you may want to get in touch with Oracle and make sure you get these updates. They may just help you out!
.: Adam
Back to top