Database Provisioning using JDBC
Steps to create JDBC application in IIQ and table in Database: -
1. Login as spadmin and navigate to application definition.
(Application>Application Definition>Add new Applicatoin).
2. Fill in the details as per your requirements and select application type as JDBC.
(Provide the connection settings, SQL statement, Discover the schema, define Identity attribute and preview the table, Provide provisioning policy as per requirements(Create, update, delete etc.) and also provide the global provision rule. Hit on test connection to test connection.)
Note: - Red asterisk fields are mandatory.
3. Once all things has been configured properly, hit save.
4. JDBC application has been created successfully.
Create table in Database(MySQL): -
1. Make connection to database(MySQL).
2. Run the create query according to required fields.
3. Table created.
Steps to raise access request from any identity(spadmin/Manager): -
1. Create identities as per requirements.
(Click on extreme right corner, 3 horizontal bar>Manage Identity>Create Identity)
2. Login as spadmin/manager and Navigate to Manage Identity.
(Click on extreme upper left corner, 3 horizontal bar>Manage Access>Manage Accounts)
3. Select the identity for which you want to raise a request and click on Manage.
4. Raise a request account from upper right corner.
5.Once the request has been made, it should be approved by the application owner.
6. Once approval process has been completed, provision process starts and completed at the backend.
7. Run the query of MySQL to view table contents.
Meaning of Database Provisioning: -
Database provisioning means that account creation on target application and the account's data will be written to database.
Things to remember: -
1. account.getNativeIdentity(); is the function to call identity attribute value.
2. Discovering the schema in application is mandatory as the same attributes will be defined in Provisioning policy as well as in your provision rule code.
3. To add a new field in create identity form, add a new attribute in Identity Mapping and make it searchable.
Create table in Database(MySQL): -
1. Make connection to database(MySQL).
2. Run the create query according to required fields.
3. Table created.
Steps to raise access request from any identity(spadmin/Manager): -
1. Create identities as per requirements.
(Click on extreme right corner, 3 horizontal bar>Manage Identity>Create Identity)
2. Login as spadmin/manager and Navigate to Manage Identity.
(Click on extreme upper left corner, 3 horizontal bar>Manage Access>Manage Accounts)
3. Select the identity for which you want to raise a request and click on Manage.
4. Raise a request account from upper right corner.
6. Once approval process has been completed, provision process starts and completed at the backend.
7. Run the query of MySQL to view table contents.
Meaning of Database Provisioning: -
Database provisioning means that account creation on target application and the account's data will be written to database.
Things to remember: -
1. account.getNativeIdentity(); is the function to call identity attribute value.
2. Discovering the schema in application is mandatory as the same attributes will be defined in Provisioning policy as well as in your provision rule code.
3. To add a new field in create identity form, add a new attribute in Identity Mapping and make it searchable.
Excellent work Ashish
ReplyDeleteHi,
ReplyDeleteI've followed the above steps , but " Request account" is disabled for me
First go to Settings>Quicklink Population> Configure the Manage Access
DeleteThen Grear>Lifecycle manager and there look for Manage access and select all application or select the application you want to request account for
Excellent Explanation for Db provisioning
ReplyDeleteTo learn all types of Quicklinks like External, internal and Workflow and creating custom Quicklinks you can learn from ITJobZone.biz
You can also follow our blog on sailpoint and ask your queries there.. we will try to reply.
WE are providing the most comprehensive training on Sailpoint in the industry.
Keep up the good blog.
Cheers Team ITJobZone.biz
can you explain sailpoint
ReplyDelete