Sunday, October 25, 2015

Configure Password Policy for Application Instances

Version: Oracle Identity Manager 11.1.2.3.0
Description: Demonstrates how to create a password policy and attach it to a specific resource object. The password policy is applied to application instances that use that resource object.
References:
https://docs.oracle.com/cd/E52734_01/oim/OMUSG/pwdpolicy.htm#OMUSG5481
http://docs.oracle.com/cd/E52734_01/oim/OMADM/appinstance.htm#OMADM4925



Creating a Password Policy
1. Log into Oracle Identity Self Service (E.g. http://localhost:14000/identity/) as an administrator.

Self Service Login

2. On the home page, navigate to Manage section, click the Policies icon panel, and then select Password Policies.

Go to Manage Section -> Click Policies Icon and Select Password Policies

3. On the Password Policies section, click the Create button.

Password Policies

4. Specify password policy rules. Refer to "Managing Password Policies" for more information. Click Apply when done.

Creating Password Policy


Attaching Password Policy to a Specific Resource Object
1. Log into Design Console. To run Design Console, execute xlclient.sh script located in $MW_HOME/Oracle_IDM1/designconsole/ (E.g. /home/oracle/Oracle/Middleware/Oracle_IDM1/designconsole/xlclient.sh).

Design Console Login
Deprecation Notice


2. Navigate to Resource Objects under Resource Management.

Resource Management -> Resource Objects


3. Search for the name of the application instance's resource object. Then navigate to the Password Policies Rule tab and click Add.

Search Name of Resource Object -> Click Add on Password Policies Rule

4. Specify Rule and Policy for the new row (double click column for Lookup values to appear). Then save.

Values for Rule
Values for Policy
Added Password Policy Rule to Resource Object


Verification
1. Log in to the Identity Self Service and search for a user who has the application instance.

2. Highlight the account, select >> to view more options on the account, and then select Reset Password.

Highlight account -> click ">>" -> Select Reset Password

3. Test resetting user's resource account password.

Account Password Reset


4. View the account's Resource History and verify the "Password Updated" process task, which is responsible for sending the data to the target system, is triggered.

Highlight Account -> Select ">>" -> Select Resource History

Resource History

Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)