My Oracle Support Banner

Oracle Identity Governance (OIG) 12c: Through Generic REST Connector, We Are Not Able To Pick Complex Attribute (Doc ID 2886602.1)

Last updated on JUNE 23, 2023

Applies to:

Identity Manager - Version and later
Identity Manager Connector - Version and later
Information in this document applies to any platform.


Ability to run Trusted Reconciliation of users from Oracle Identity Cloud Service (IDCS) as currently, IDCS does not have any Trusted/Authoritative capabilities.
Installed the Generic REST Connector in Oracle Identity Governance (OIG) to perform Trusted Reconciliation from IDCS application into OIG.

We need to bring following attributes from IDCS.  They are:

First Name
Last Name
User Login
Primary User Email

Out of above 5 attributes, we are able to bring 4 attributes. However, the attribute "Primary User Email" attribute cannot be reconciled into OIG as IDCS user emails are stored in a Javascript Object Notation (JSON) Array in IDCS.

What is required is to bring only work email value for a user from IDCS to OIM as single attribute, not Multi-Valued attribute. For a Multi-Value attribute, it would require a transformation groovy script.

We need to retrieve the "primary" eq "true" email from the JSON array of emails listed into payload:



To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.