Oracle Identity Governance (OIG) 12c: Through Generic REST Connector, We Are Not Able To Pick Complex Attribute
(Doc ID 2886602.1)
Last updated on JUNE 23, 2023
Applies to:
Identity Manager - Version 12.2.1.3.220115 and laterIdentity Manager Connector - Version 12.2.1.3.0 and later
Information in this document applies to any platform.
Goal
Ability to run Trusted Reconciliation of users from Oracle Identity Cloud Service (IDCS) as currently, IDCS does not have any Trusted/Authoritative capabilities.
Installed the Generic REST Connector in Oracle Identity Governance (OIG) to perform Trusted Reconciliation from IDCS application into OIG.
We need to bring following attributes from IDCS. They are:
First Name
Last Name
Status
User Login
Primary User Email
Out of above 5 attributes, we are able to bring 4 attributes. However, the attribute "Primary User Email" attribute cannot be reconciled into OIG as IDCS user emails are stored in a Javascript Object Notation (JSON) Array in IDCS.
What is required is to bring only work email value for a user from IDCS to OIM as single attribute, not Multi-Valued attribute. For a Multi-Value attribute, it would require a transformation groovy script.
We need to retrieve the "primary" eq "true" email from the JSON array of emails listed into payload:
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
References |