ISE Identity Manager Account Discovery


This tutorial is part of the Identity Manager track within the Identity Suite Essentials program.

Description

This tutorial covers how a user can identify and "link" and account they have in a Resource to their Identity Manager account. The Setup involves importing an Identity Manager configuration file that defines what Resources user can select in the Self Discovery interface. The demonstration involves logging into the End-User interface and selecting the Resource where the user knows they have an account.

Top

Learning Objectives

After completing this tutorial, the following topics should be understood.

  1. Understand the value of User Self Discovery
  2. Enable Self Discovery
  3. Demonstrate use of Self Discovery

Top

Prerequisites

The following items must be completed before starting this tutorial.

Top

Setup

The following steps need to performed to enable the demonstration.

Section 1: Load Configuration Object

Resource self discovery is not enabled by default. A Configuration called End User Resources define which Resources will be available for Self Discovery from the End-User Interface.

NOTE:  This step will be done automatically in the if you are using the Netbeans project and the supplied artifacts in module1.

The file contains a list of Resource that can be selected by the End User. Here is part of the file:

<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Configuration PUBLIC 'waveset.dtd' 'waveset.dtd'>
<Configuration authType='EndUserConfig' id='#ID#Configuration:EndUserResources' name='End User Resources' creator='%STARTUP%Configurator' createDate='1214589347138' repoMod='1214589347000'>
<Extension>
<List>
<String>Timecard</String>
</List>
</Extension>
<MemberObjectGroups>
<ObjectRef type='ObjectGroup' id='#ID#End User' name='End User'/>
</MemberObjectGroups>
</Configuration>

  1. Access the Admin Interface http://localhost:8080/idm and log in as: configurator / configurator
  2. Select the Configure tab
  3. Select the Import Exchange File sub-tab
  4. Click the Browse Button next to the File to Upload field
    Locate the file Configuration-EndUserResources.xml
  5. Click the Import Button
  6. A confirmation page is displayed.

Section 2: Create a User

We'll create a new user that only has an Identity Manager account. We'll use this account to demonstrate the Self Discovery. This user already exists in the Timecard Resource.

  1. Access the Admin Interface http://localhost:8080/idm and log in as: configurator / configurator
  2. Select the Accounts tab
  3. Select the List Accounts sub-tab
  4. Select the -- New Actions -- Drop Down List
    Pick the New User item
  5. Fill out the Create User Form:
    • AccountId: jwayne
    • First Nam: John
    • Last Name: Wayne
    • Email: john.wayne.jones@example.com
    • Password/Confirm: Passw0rd
  6. Click Save
  7. A confirmation page is displayed

Top

Demonstration

After completing the setup above, the following steps should be performed to complete this tutorial.

Section 1: Discover the Timecard Resource

  1. Access the End User Interface http://localhost:8080/idm/user and log in as: jwayne / Passw0rd
  2. Select the Profile tab
  3. Select the Self Discovery sub-tab
  4. The User Interface will update (refresh)
  1. In the User ID Text Field, enter jwayne
  2. In the Password Text Field, enter Passw0rd
  3. Click Save

Section 2: Verify the Timecard Resource

Look at the user's account information to show that the user has been "linked" to the Timecard Resource

  1. Select the Profile tab
  2. Select the Account Attributes sub-tab
  3. Notice that the user has the id of jwayne on the Timecard Resource

Top

Resources

The following links provide more information:

Copyright (c) 2008-2009, Sun Microsystems, Inc.
All rights reserved

Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.

Sign up or Log in to add a comment or watch this page.


The individuals who post here are part of the extended Sun Microsystems community and they might not be employed or in any way formally affiliated with Sun Microsystems. The opinions expressed here are their own, are not necessarily reviewed in advance by anyone but the individual authors, and neither Sun nor any other party necessarily agrees with them.

Copyright 1994-2009 Sun Microsystems, Inc.
Powered by Atlassian Confluence Sun Guidelines on Public Discourse Privacy Policy Terms of Use Trademarks Site Map Employment Investor Relations Contact