Enterprises often have custom applications that have been developed. These applications often have their own user repositories and custom developed relational database structures to capture user and security information. The application tables connector allows us to provision users information to these custom tables.
the following section will describe how to configure the application tables connector. To add clarity to the explanation, we will provision to the simple database table shown below:
Connector Registration
The Application Tables connector is a webservice based connector and is deployed as part of the standard install of the OpenIDM Identity Manager. The following screens, which are available under the Provisioning | Provisioning Connectors menu, are provided so that you can ensure that the connector has been registered correctly. By default this connector is installed as part of the standard product install.
Field Name | Value |
|---|---|
Connector Interface | Local |
Service URL | localhost:8080/openiam-idm-esb/idmsrvc/ApplicationTablesConnector |
Service Namespace | [http://www.openiam.org/service/connector] |
Connection Information
The connection information is used to tell the Application Table connector who to connect to the database that contain the table that we want to provision into. To define the connection information do the following:
- Select Managed Connections from the Provisioning menu option.
- Select New
- You will see the screen below.
Field Name | Description |
|---|---|
Resource Name | Can be any descriptive value that you want to enter |
Connector | Select Application Tables Connector from the dropdown |
JDBC Driver | Driver that will be used to connect to your table. You must the JDBC driver in product classpath. Drivers for MySQL,Oracle and MS SQL Server are included as part of the standard OpenIAM distribution. |
Connection String | This is the connection URL for the JDBC driver |
Login ID | ID that can connect to the database. This ID should have the rights to be able to select, insert, update and delete users. |
Password | Password for the login ID |
Resource Configuration and Attribute Mapping
This section describes how we can map attributes in OpenIAM to the columns in your database table. To do this, first you need to create a Resource. To create a resource for an application table, use the steps below:
- From the access control menu, select Resource
- From the drop down, select Managed Systems
- Next, click on New Resource
- The screen below will be shown
Field Name | Description |
|---|---|
Link to Managed System | Select the name of the managed connection that you created in the step above |
TABLE_NAME | Enter the name of the table that you want to provision to |
INCLUDE_IN_SYNC | Enter 'Y' for Yes to include this during provisioning |
INCLUDE_IN_PASSWORD_SYNC | Enter 'Y' for Yes to include this during a password sync |
|
|
Next, we need to map the attributes in IDM to the columns in our tables. This can be done using the steps below:
- From the access control menu, select Resource
- From the drop down, select Managed Systems
- Next, select the resource that you created in the last step.
- Click on Policy Map link
- The screen below will be show
The resource policy map, allows you to list the columns in your table and link them to an attribute policy. In the example above, the Attribute Name column lists the columns in our table. The Policy lists the Attribute Policies that we have available. The final component of this is to indicate the type of Attribute that we are working with - String, Date, Integer. This is specified in the Data Type column above.
Click on Save after each column. After the columns have been defined, this resource should be linked to a role. Then is ready for use.