The process for installing RBPM adds the files for creating the drivers for the Identity Applications. The driver configuration support allows you to do the following:
Associate one User Application driver with a Role and Resource Service driver.
Associate one User Application with a User Application driver.
Before you attempt to configure the drivers, ensure that you have all of the necessary packages in the Package Catalog in Designer. When you create a new Identity Manager project, the user interface automatically prompts you to import several packages into the new project.
The User Application driver serves both as a runtime component and as a storage wrapper for directory objects (comprising the User Application’s runtime artifacts). It is responsible for storing application-specific environment configuration data. The driver also notifies the directory abstraction layer when important data values change in the Identity Vault. This notification causes the directory abstraction layer to update its cache.
Open your project in Designer.
In the Modeler > Provisioning view, select User Application in the palette.
Drag the icon for User Application onto the Modeler view.
In the Driver Configuration Wizard, select User Application Base, and then click Next.
At the prompt for installing several additional packages, click OK.
(Optional) Specify the name of the driver.
Click Next.
In the connection parameters window, specify the ID and password for the User Application Administrator.
Specify the host and port for the User Application server.
Specify the application context for the User Application server.
(Optional) To allow the Provisioning Administrator to start workflows in the name of another person for whom the Provisioning Administrator is designated as proxy, select Yes for Allow Initiator Override.
In the Confirm Installation Tasks window, click Finish.
The User Application uses the Role and Resource Service Driver to manage back-end processing of resources. For example, it manages all resource requests, starts workflows for resource requests, and initiates the provisioning process for resource requests.
Open your project in Designer.
In the Modeler > Provisioning view, select Role Service in the palette.
Drag the icon for Role Service onto the Modeler view.
In the Driver Configuration Wizard, select Role and Resource Service Base, and then click Next.
(Conditional) If this is the first driver you have installed in Designer, click OK to install the Common Settings Advanced Edition package.
Specify the URL for the User Application server.
Specify the eDirectory DN for the User Application Administrator.
Specify the LDAP DN for the User Application Provisioning Service account. It can be the same account as your User Application Administrator or a different account.
If a Role or Resource provisioning request is initiated by this service account, then any approvals or provisioning workflows associated with this role or resource are bypassed.
(Optional) Specify the name of the driver.
Click Next.
In the User Application/Workflow Connection window, specify the User-Group base container DN and the User Application Driver that you just created.
Since the driver has not yet been deployed, the browse function will not show the User Application Driver that you just configured. You might need to type the DN for the driver.
Specify the URL for the User Application.
Specify the LDAP DN of the User Application Administrator account
The User Application Administrator account authenticates to the User Application in order to start the Approval Workflow. For more information, see Assigning Rights to Identity Vault Administrator and User Application Administrator Account.
Specify the password of the User Application Administrator account.
Click Next.
In the Confirm Installation Tasks window, click Finish.
The User Application and the Role and Resource Service drivers will not be available for use until you deploy them.
NOTE:When replicating an eDirectory environment, you must ensure that the replicas contain the NCP Server object for Identity Manager. Identity Manager is constrained to local replicas of a server. Due to this, Role and Resource Service Driver might not start properly if a secondary server does not include the server object.
To deploy the drivers:
Open your project in Designer.
In either the Modeler or the Outline view, select the Driver Set.
Click Live > Deploy.