Friday, 6 April 2018

Database(MySql) Provisioning using JDBC

Database Provisioning using JDBC

 Steps to create JDBC application in IIQ and table in Database: -

1. Login as spadmin and navigate to application definition.
(Application>Application Definition>Add new Applicatoin).


2. Fill in the details as per your requirements and select application type as JDBC.
(Provide the connection settings, SQL statement, Discover the schema, define Identity attribute and preview the table, Provide provisioning policy as per requirements(Create, update, delete etc.) and also provide the global provision rule. Hit on test connection to test connection.)
Note: - Red asterisk fields are mandatory. 


3. Once all things has been configured properly, hit save.
4. JDBC application has been created successfully.

Create table in Database(MySQL): -
1. Make connection to database(MySQL).
2. Run the create query according to required fields.
3. Table created.

Steps to raise access request from any identity(spadmin/Manager): -
1. Create identities as per requirements.
   (Click on extreme right corner, 3 horizontal bar>Manage Identity>Create Identity)

2. Login as spadmin/manager and Navigate to Manage Identity.
  (Click on extreme upper left corner, 3 horizontal bar>Manage Access>Manage Accounts)
 3. Select the identity for which you want to raise a request and click on Manage.

 4. Raise a request account from upper right corner.
 5.Once the request has been made, it should be approved by the application owner.
 6. Once approval process has been completed, provision process starts and completed at the backend.
 7. Run the query of MySQL to view table contents.

Meaning of Database Provisioning: - 
Database provisioning means that account creation on target application and the account's data will be written to database.

Things to remember: - 
1. account.getNativeIdentity(); is the function to call identity attribute value.
2. Discovering the schema in application is mandatory as the same attributes will be defined in Provisioning policy as well as in your provision rule code.
3. To add a new field in create identity form, add a new attribute in Identity Mapping and make it searchable.

5 comments:

  1. Hi,
    I've followed the above steps , but " Request account" is disabled for me

    ReplyDelete
    Replies
    1. First go to Settings>Quicklink Population> Configure the Manage Access
      Then Grear>Lifecycle manager and there look for Manage access and select all application or select the application you want to request account for

      Delete
  2. Excellent Explanation for Db provisioning
    To learn all types of Quicklinks like External, internal and Workflow and creating custom Quicklinks you can learn from ITJobZone.biz

    You can also follow our blog on sailpoint and ask your queries there.. we will try to reply.
    WE are providing the most comprehensive training on Sailpoint in the industry.

    Keep up the good blog.
    Cheers Team ITJobZone.biz

    ReplyDelete

SOAPAPi Call and Reading

<?xml version='1.0' encoding='UTF-8'?> <!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">...