OpenIDM with OpenDJ data attributes Integration

This topic has 12 replies, 3 voices, and was last updated 6 years, 7 months ago by raghukanakala.

  • Author
    Posts
  • #7304
     raghukanakala
    Participant

    Hello,

    I have integrated OpenDJ (2.6.0) with OpenIDM(3.1.0) and have used Sample 2b data to test. I could see the liked systems in the User View as a admin logged into the openIDM. I am able to change the password and also add new user from OpenIDM but still some of fields are not mapped in OpenIDM and OpenDJ so those data need to goto OpenDJ and updating from backend. Could you please suggest me where i can map missing filed in the OpenIDM so that one place Admin can add new user / modify existing user from openIDM.

    Thank you very much for helping on this integration.
    Thanks,
    Raghu

    #7307
     ssripathy
    Participant

    Not sure what the question is about. Are you asking how additional fields could be made visible in Admin view or where IDM fields can be mapped to attributes in DJ and data synched with the LDAP connector?

    #7319
     raghukanakala
    Participant

    Are you asking how additional fields could be made visible in Admin view
    Yes I would like to visible more fields through Admin View and Admin can modify & fill required data.

    or where IDM fields can be mapped to attributes in DJ and data synched with the LDAP connector?
    I had modified in sync.json data from LDAP connector. It is working fine. Only i need to know how to map OpeDJ attributes to IDM filed.

    #7501
     Javed Shah
    Moderator

    Raghu,
    If you have the attributes added to the provisioner file for the LDAP connector, they should show up in the UI. From there you can add them as mapped attributes. Internally, these would get added to sync.json of course. Needless to say, please ensure the attributes are part of the OpenDJ schema.

    #7506
     raghukanakala
    Participant

    Thanks Javed for your replay. I have added what are the fields are available in LDAP(OpenDj) but I am not able see in admin/ user view. Only I could see following Username, FirstNzme, LastName, ChangePassword link etc but along with that I need to see my LDAP fields which are mapped in provision file.
    Below of the fixed fields I could see linked system details of LDAP but it is not allowing to edit,

    Could please suggest where I can map to see LDAP fields in Viewer screen to edit

    Thank you in advance for your quick response

    #7508
     Javed Shah
    Moderator

    Raghu,

    As an example, I just added a custom attribute called xuid to my provisioner ldap file and restarted OpenIDM. This attribute now shows up in my admin screen as an attribute I could potentially map to a target. Look at the attached screenshot- xuid in admin ui

    Can you attach a screenshot of the admin screen where you say you cannot view the attributes that are present in the provisioner ldap file?

    #7533
     raghukanakala
    Participant

    Hello Javed,

    Thank you verymuch for your quick replay
    Even, I could see attributes in admin screen. I logged into the openidmui (https://localhost:8443/openidmui/index.html#users/show/UserA/) under Users view. There i would like to see xuid attribute to admin to enter/update along with default attributes (i.e. Username, First Name, Last Name,Email address, Role, Account Status, Mobile Phone, Address 1, Address 2, City, Postal Code, Country, State/Province ). Can we configure “xuid” also.

    Even i could see (Linked Systems) as a LDAP but it is not allowed to edit. Can you please help on this.

    #7567
     Javed Shah
    Moderator

    Raghu,

    Did you get a chance to go through this document ?
    https://wikis.forgerock.org/confluence/display/openidm/OpenIDM+UI+Customization

    It is probably what you are looking for. Let me know if that solves it.

    #7647
     Javed Shah
    Moderator

    Raghu,
    Did it help you?

    #7648
     raghukanakala
    Participant

    Thank you very much Javed Shah.
    It worked for me. Only issue now, when i am updating the new fields those are updated in OpenIDM but it is not reflecting in OpenDJ. I am checking on that. I could see entry in provisioner file and sync.json. I need to check any configuration is missing.

    Thank you again for quick replay and supporting on this.

    Thanks,
    Raghu

    #7819
     raghukanakala
    Participant

    Hello Javed,

    I have added new filed employeeID as you suggested in customized UI and also added in provisioner file and sync.json file. While updating employee ID through OpenIDM is not reflecting in OpenDJ but the data stored in OpenIDM. Anywhere i need to configure or anything i am missing here.

    Thanks in advance for your replay.

    #7821
     Javed Shah
    Moderator

    Raghu,
    You will need to setup OpenDJ as a target. So the source will be managed user and target will be OpenDJ. Setup the attribute map, and check the reconciliation policy. On target absent, the action should be to create the account, etc.

    #7883
     raghukanakala
    Participant

    Thank you Javed. I could able to sync now.

Viewing 13 posts - 1 through 13 (of 13 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?