So the last weekend was dedicated to IDM solution upgrade procedure – and it all went OK! After several months of continuous integration of new target systems and expressions and after weeks of integration and acceptance testing we got a green light and the upgrade was started. How does such upgrade look like? Is it Read more about Successful IDM solution upgrade[…]
When provisioning users in the multi-tenant environment, you have many organizations in your organization structure and your users belong to different organizations. Their access rights are combinations of roles AND tenants to which they belong. For example you can use a directory system, where users are provisioned, and assigned into groups, which are created and Read more about Working with multi-tenant roles[…]
Identity Management Engineer is not just a job. It’s rather a mission. IDM Engineer is supposed to be ready to be involved in the IDM project in any or multiple phases. He can start from the very beginning, when the project is in its pre-sales phase; he can provide consultations for partners during the analysis Read more about What Does IDM Engineer Do?[…]
Sometimes the customer requirements are very interesting, such as generating random attribute values. In this case I will show you how midPoint can generate random sAMAccountName attribute value for Microsoft Active Directory (AD) account provisioning. Although you can let the Active Directory to generate sAMAccountName just by omitting any value when creating a new account, Read more about Provisioning Random sAMAccountName Value[…]
Customers usually have different deployment environments such as production, testing and development. The names and number of the environments may vary of course. If you want to maintain the configuration in XML files for revision control, you will most probably need to maintain multiple copies of (almost) the same configuration, mappings etc. Can we do Read more about Storing Extended Attributes in System Configuration[…]
Some time ago we’ve discussed how to generate e-mail address for resource target attribute. But almost everytime you would need to store user’s e-mail address in midPoint to push it anywhere you need. So we need to enter the value in midPoint (we have fancy “emailAddress” attribute handy) and let the resource schema handling mappings Read more about Unique E-mail Address Value[…]
When customizing midPoint for deployment, you will need expressions sooner or later. In this post, I would like to present one possible way of the email expression evolution. Let’s suppose that our target system has an account attribute “InternetAddress” to store user’s e-mail address. Goal generate e-mail address based on user’s givenName and familyName attributes. Read more about Expression Evolution In Real Life[…]