Oracle Identity Management

Below are the link of multi- post series we articulated for Oracle for latest OIM PS3 release with perspective of real world scenarios and breaches. Recent headline Cyber Crimes at major retailers, health insurers, and even US Government agencies suggest that those involved were not necessarily performed by criminal masterminds, but rather by individuals that at one time had been properly credentialed to access systems or by individuals that were simply exploring open doors to identify vulnerabilities This is multi-part series for educating the customers and users on Identity governance . https://blogs.oracle.com/oracleidm/ensuring-you-dont-become-the-next-data-breach-story-part-1-simeio-solutions https://blogs.oracle.com/oracleidm/managing-the-keys-to-the-kingdom-privilegedshared-accounts-simeio-solutions https://blogs.oracle.com/oracleidm/the-lifecycle-management-opportunities-of-a-data-breach-part-3-simeio-solutions https://blogs.oracle.com/oracleidm/reducing-exposure-to

Out of the box, the following are the minimum required fields that need to be mapped when creating a Trusted GTC: User Login Last Name Organization Role :This is the same as the Employee Type in earlier versions, i.e. Contractor, Full-Time, ... User Type :Design Console Access (User Type in 11g PS1) Valid values would be End-User or End-User Administrator, where accounts with End User Administrator as the value would be able to login to the Design Console

OIM 11g R2 Installation & Configurations High Level Steps : Install the Database Alter DB system properties Run RCU to create the OIM specific schema . Install Weblogic Install SOA Install OIM Create Weblogic Domain Configure OIM . Restart the Server’s. Create full client jar and add to respective locations Configure Design Console. Set compiler path Version of Components Used: Component Component Version Oracle Database 11.2.0 RCU 11.2 Oracle Identity Manager IAM 11.1.2.0.0 SOA Suite 11.1.1.6 Weblogic 10.3.6 Jdk Sun JDK 1.6 Update 34 (jdk1.6.0_34)        Alter DB system properties ( Step 2) Increase the number of cursors cached and processes in the DB alter system set session_cached_cursors=100 scope=spfile; alter system set processes=500 scope=spfile;   For 11gR2 the DB needs more resources and

Latest Interview Questions : 1) What is eventhandler and how its different from entity adapter . 2) Scenario : Suppose you have to track who made changes in User profile from Helpdesk Group (Name of person ) how will you configure that . Means what ever change in user profile attributes the name of person should be known . 3)Scneraio : When you do intial bulk load ,how you update manager's as for intial load the manager may load later . 4)Why OVD is used in OID Ldap sync . 5)Cookies of OAM 11g . What are new cookies name 6) What are request ,template and operational approvals in OIM11g. 7) Difference Authorization policy and Access policy . 8) Have you done ADF customization & branding changes . 9) What are SOA composites . What is process for registration with OIM . 10) Why MDS is used in OIM 11g . Is it due security reasons. 11)What is difference between Task and Job in 11g OIM. 12) Process to create custom Connector . Logical steps . 13) Process for Request Da

Problem : How to use FVCUtil(Form Version Control Utility) in OIM for newer version of form to work for users which are already provisioned with that resource object. Solution :OIM have “Form Version Control Utility” (FVCUtil) utility to deal with this. By the help of FVCUtil, newer version of form will work for existing users(i.e: users those are already provisioned with the old . Run the fvcutil.cmd for this but need to make sure \fvc.properties file should be properly configured then only changes will be reflect. Important question Object form versus Process form { Object form in 11g Replaced by Request Data Set} The basics are that a Process form is attached to a process, such as a provisioning process, and an object form is attached to a resource object. When a provisioning process has been initiated that form is required data.However, if a request, either a self-request or a request from some manager or admin, is initiated, then it is not yet a provisioning process an

** I have tried to collect OIM interview questions from various blogs/ sites / forums  like reference of those blogs. 11 G Based: http://identityandaccessmanager.blogspot.com/2011/02/basic-interview-question-for-oim-10g.html 10g Questions: http://identityandaccessmanager.blogspot.com/2011/02/basic-interview-question-for-oim-10g.html Idea here is to provide a collective spot so that we can prepare for interview and crack them in single shot :) What are the benefits of Identity Management? Centralized auditing and reporting – Know who did what and report on system usage. Reduce IT operating costs – Immediate return on investment is realized by eliminating the use of paper forms, phone calls and wait time for new account generation and enabling user self service and password management. Minimize Security Risk – Control access to the network and instantaneously update accounts in a complex enterprise environment including: layoffs, acquisitions, partner changes, temporary and