1. Solutions Architecture Design
Oracle Identity Manager “OIM”
Purpose of this solution is to define the architecture design to both
meet the project’s Business Requirements and to establish a solution
framework. The solution architecture document shall be designed as the
Master Template to the overall Oracle Identity Manager solution. Any
subsequent changes or additional capabilities to the solution, should
always append this document as reference. This master document
should not change until a new platform or upgrade replaces it. It is
anticipated that additional appendance documents will follow the
master document in order for a more granular level of how OIM will
interact with individual resources that require identity manager
interaction.
Scope
• Deploy a new infrastructure for Oracle Identity Manager “OIM” R2 PS2
• Sunset Legacy Provisioning Processes
• Establish the Identity & Access Management conduit to the enterprise
• Define a new Access Provisioning Model while enhancing existing business capabilities
• Provide reconciliation and provisioning to business resources
• Provide training and documentation to all support tiers involved
• Build an Enterprise Solution that’s guided by the sets of principals
2. Solutions Architecture Design
Oracle Identity Manager “OIM”
Solution Goals:
Build an elite enterprise access provisioning platform that keeps ahead of the Business
Capability Curve
Replace the legacy components with Oracle technology
Enhance our current business logic to reduce help desk calls
Provide an extendable framework for meeting our current business needs
Establish an IT process to build an alignment to a service-oriented platform
Build automatic approval workflows for important business events
Establish a process for the Help Desk to easily manage users in one centralized location
Provide a comprehensive audit trail
The design shall elegantly incorporate necessary business changes at minimal cost, while
limiting customizations
3. Solutions Architecture Design
Oracle Identity Manager “OIM”
How will Oracle Identity Manager add Business Value?
The solution will eliminate manual processes, eliminate unnecessary headache to end-
users, eliminate volume of tickets, and build a foundational architectural model built to
become an IdMaaS (Identity Management as a Service).
The solution will finally replace old provisioning platform
4. Solutions Architecture Design
Oracle Identity Manager “OIM”
What is Oracle Identity Manager?
The Oracle Identity Management Platform R2 PS2 is an enterprise identity management
system that automatically manages users' access privileges within enterprise IT resources. Its
flexible architecture easily handles the most uncompromising business requirements without
requiring changes to existing infrastructure, policies or procedures. Oracle Identity Manager
is designed to manage user access privileges across all organizational resources, throughout
the entire identity management lifecycle from initial creation of access privileges to
dynamically adapting to changes within the business
Resource
Authoritative
Identity
OIM
5. Solutions Architecture Design
Oracle Identity Manager “OIM”
Resource
Authoritative
Identity
What will Oracle Identity Manager do?
OIM will ultimately server several functions such as becoming the centralized platform that
provides the identity data flow conduit for the entire enterprise platform that leverage
Identity Management. OIM will also be the centralized entry point for the Help Desk and IdM
Admins to manage identities. OIM will encapsulate business logic known as “Event Handlers”
in order to execute the rules and polices set fourth in the business requirements.
OIM
SOAOIM Policy
6. Resources
Solutions Architecture Design
Oracle Identity Manager “OIM”
What role does OIM play in Identity Management?
OIM will provide the conduit to manage user accounts in downstream resources, ensures
identity governance, provides self-service functions, Identity lifecycle management, and
maintain audit trails. It will provide the base management of roles and groups that other
identity services leverages in order authorize someone access to a stand-alone resource
within the Identity Management ecosystem. This is considered the essential foundational
element for providing Identity Management functionality to the organization.
OIM
Corporate
Email
Home DrivesCentral
Repository
OIM Policy
LaptopWork PhoneBadge
7. Solutions Architecture Design
Oracle Identity Manager “OIM”
What will OIM replace in our current environment?
OIM will ultimately replace the legacy provisioning platform and other component
dependencies. The current provisioning processes will become enhanced with business logic.
OIM will be based on new architectural models used in the industry as best practices which
means improvement in most areas are needed in order to considered an enterprise solution
Bye-Bye Legacy
8. Solutions Architecture Design
Oracle Identity Manager “OIM”
What is dependent on OIM?
OIM impacts everything related to Identity Management since it is the foundational
component of managing access to resources. OIM alone is just one part to entirety Identity &
Access Management. OIM is important to become established before the Oracle Access
Manager platform can leverage authorizing users to the resources that are protected.
OIM
OAM
Access
Request
Resources
Corporate
Email
Central
Repository
Pay checkCorporate
Portal