Provisioning from OIM to OpenIDM via SPML?

This topic has 1 reply, 2 voices, and was last updated 5 years, 7 months ago by [email protected].

  • Author
  • #16146


    I want to provision accounts in the local Oracle Identity Manager and use SPML to integrate OIM with 100s of different OpenIDM instances. Is that possible and what is the proper way to do it?



    I’m running a small proxy converting OpenIDM-REST-call to SPML-calls for Oracle Waveset, so just the other way around. Don’t like it and looking forward to finally getting rid of Waveset.

    Since OpenIDM has no SPML-support whatsoever, you will need to create your own proxy accepting SPML and calling OpenIDM-REST, either standalone (what I prefer) or as a bundle for jetty, extending OpenIDM directly.

    The other option would be to use a system in between, that both Oracle and OpenIDM can access, like a database that Oracle writes and which is source for OpenIDM with a short livesync shedule. That would have the benefit of being async, so no worries about retries when OpenIDM can’t handle the call.

    If you need to transfer passwords, it would be better to use OpenDJ, having Oracle writing to OpenDJ, which would receive the passwords in clear, perform a password-sync to OpenIDM before storing the passwords hashed.

    Last option would be to write your own connector for Oracle calling OpenIDM via REST.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?