Description: Demonstrates how to create a password policy and attach it to a specific resource object. The password policy is applied to application instances that use that resource object.
References:
https://docs.oracle.com/cd/E52734_01/oim/OMUSG/pwdpolicy.htm#OMUSG5481
http://docs.oracle.com/cd/E52734_01/oim/OMADM/appinstance.htm#OMADM4925
Creating a Password Policy
1. Log into Oracle Identity Self Service (E.g. http://localhost:14000/identity/) as an administrator.
 |
| Self Service Login |
2. On the home page, navigate to Manage section, click the Policies icon panel, and then select Password Policies.
 |
| Go to Manage Section -> Click Policies Icon and Select Password Policies |
3. On the Password Policies section, click the Create button.
 |
| Password Policies |
4. Specify password policy rules. Refer to "Managing Password Policies" for more information. Click Apply when done.
 |
| Creating Password Policy |
Attaching Password Policy to a Specific Resource Object
1. Log into Design Console. To run Design Console, execute xlclient.sh script located in $MW_HOME/Oracle_IDM1/designconsole/ (E.g. /home/oracle/Oracle/Middleware/Oracle_IDM1/designconsole/xlclient.sh).
 |
| Design Console Login |
 |
| Deprecation Notice |
2. Navigate to Resource Objects under Resource Management.
 |
| Resource Management -> Resource Objects |
3. Search for the name of the application instance's resource object. Then navigate to the Password Policies Rule tab and click Add.
 |
| Search Name of Resource Object -> Click Add on Password Policies Rule |
4. Specify Rule and Policy for the new row (double click column for Lookup values to appear). Then save.
 |
| Values for Rule |
 |
| Values for Policy |
 |
| Added Password Policy Rule to Resource Object |
Verification
1. Log in to the Identity Self Service and search for a user who has the application instance.
2. Highlight the account, select >> to view more options on the account, and then select Reset Password.
 |
| Highlight account -> click ">>" -> Select Reset Password |
3. Test resetting user's resource account password.
 |
| Account Password Reset |
4. View the account's Resource History and verify the "Password Updated" process task, which is responsible for sending the data to the target system, is triggered.
 |
| Highlight Account -> Select ">>" -> Select Resource History |
 |
| Resource History |
"This information really helped me a lot. It was very informative.
ReplyDeletePassword Policy Management"