RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Table f Cntents Purpse 3 Supprted Sftware 3 Prerequisites 3 Cnfiguratin 3 General 3 Settings 5 Capabilities 4 CreateAccunt 6 DeleteAccunt 6 ResetPasswrd 6 AddAccuntTGrup 6 RemveAccuntFrmGrup 6 EnableAccunt 6 DisableAccunt 6 UpdateAccunt 6 AddAppRleTAccunt 6 RemveAppRleFrmAccunt 7 AddRleTAccunt 7 RemveRleFrmAccunt 7 AddEntTAccunt 7 RemveEntFrmAccunt 7 CreateGrup 7 DeleteGrup 7 AddEntTGrup 7 RemveEntFrmGrup 8 AddAppRleTGrup 8 RemveAppRleFrmGrup 8 AddGrupTGrup 8 RemveGrupFrmGrup 8 AddAppRleTAppRle 8 RemveAppRleFrmAppRle 8 AddEntTAppRle 8 RemveEntFrmAppRle 9 CreateRle 9 DeleteRle 9 ChangeRlePrfile 9 DisableRle 9 EnableRle 9 AddAppRleTRle ;9 RemveAppRleFrmRle 9 AddEntTRle 9 RemveEntFrmRle 10 AddGrupEntTRle 10 RemveGrupEntFrmRle 10 ChangeDataResurce 10 Limitatins 10 RSA Identity Gvernance and Lifecycle 7.0.1 2
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Purpse This data sheet prvides the cnfiguratin infrmatin required t create a new Oracle Database cnnectr. Supprted Sftware RSA Identity Gvernance and Lifecycle Versin: 6.8.1 and later Applicatin: Oracle Database Server 11g,12c and later. Prerequisites Install Oracle Database Cnfiguratin The Cnnectr creatin is made up f three sectins: General General details abut the Cnnectr; viz. the name, type etc. Settings The cnnectin settings required t cnnect the RSA-IMG and the End-pint Applicatin in cnsideratin. Capabilities These are the list f verbs r capabilities that the RSA-IMG Cnnectr supprts; fr e.g. Create, Update, Delete, etc. General The fllwing table lists the parameters n the General screen, while creating the Cnnectr. Field Name Name Value Oracle Cnnectr Descriptin Oracle Database Cnnectr Server AFX Server Cnnectr Template Oracle State Active Exprt As Template N/A RSA Identity Gvernance and Lifecycle 7.0.1 3
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Settings The fllwing table lists the parameters n the Settings screen, while creating the Cnnectr. Field Name Value Driver Class racle.jdbc.driver.oracledriver Driver URL jdbc:racle:thin:/@[server]:[prt]:[sid] User Name Username Passwrd Passwrd Use Secure Cnnectin If SSL true, Otherwise false. SSL TrustStre Path Path f SSL trust stre certificates. E.g. /tmp/server/ewallet.p12 Nte: If yur Database is hsted n a different machine(ther than lcalhst). Please cpy /tmp/server frm the database server t /tmp at RSA Identity G&L Server. SSL TrustStre Type Type SSL certificates. E.g. PKCS12 SSL TrustStre Passwrd Passwrd fr SSL trust stre Capabilities Cmmands CreateAccunt DeleteAccunt ResetPasswrd AddAccuntTGrup RemveAccuntFrmGrup RSA Identity Gvernance and Lifecycle 7.0.1 4
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database EnableAccunt DisableAccunt UpdateAccunt AddAppRleTAccunt RemveAppRleFrmAccunt AddRleTAccunt RemveRleFrmAccunt AddEntTAccunt RemveEntFrmAccunt CreateGrup DeleteGrup AddEntTGrup RemveEntFrmGrup AddAppRleTGrup RemveAppRleFrmGrup AddGrupTGrup RemveGrupFrmGrup AddAppRleTAppRle RemveAppRleFrmAppRle AddEntTAppRle RemveEntFrmAppRle CreateRle DeleteRle ChangeRlePrfile DisableRle EnableRle AddAppRleTRle RemveAppRleFrmRle AddEntTRle RemveEntFrmRle AddGrupEntTRle RemveGrupEntFrmRle ChangeDataResurce RSA Identity Gvernance and Lifecycle 7.0.1 5
Cmmand Input Parameters CreateAccunt Map Accunt t ${User.Name} RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Map Passwrd ${AccuntTemplate.Passwrd} SQL Cmmand: CREATE USER ${Accunt} IDENTIFIED BY ${Passwrd} DeleteAccunt Map Accunt t ${Accunt.Name} SQL Cmmand: DROP USER ${Accunt} CASCADE ResetPasswrd Map Accunt t ${Accunt.Name} Map Passwrd ${AccuntTemplate.Passwrd} SQL Cmmand: ALTER USER ${Accunt} IDENTIFIED BY ${Passwrd} AddAccuntTGrup Map Accunt t ${Accunt.Name} Map Grup t ${Grup.Name} RemveAccuntFrmGrup Map Accunt t ${Accunt.Name} Map Grup t ${Grup.Name} EnableAccunt Map Accunt t ${Accunt.Name} SQL Cmmand: GRANT CREATE SESSION TO ${Accunt} DisableAccunt Map Accunt t ${Accunt.Name} SQL Cmmand: REVOKE CREATE SESSION FROM ${Accunt} UpdateAccunt Map Accunt t ${Accunt.Name} Map Name t ${User.Lastname} SQL Cmmand: ALTER USER ${Accunt} PROFILE ${Prfile} AddAppRleTAccunt Map Accunt t ${Accunt.Name} RSA Identity Gvernance and Lifecycle 7.0.1 6
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Map AppRle t ${ApplicatinRle.Name} SQL Cmmand: GRANT ${AppRle} TO ${Accunt} RemveAppRleFrmAccunt Map Accunt t ${Accunt.Name} Map AppRle t ${ApplicatinRle.Name} SQL Cmmand: REVOKE ${AppRle} FROM ${Accunt} AddRleTAccunt Map Accunt t ${Accunt.Name} Map Rle SQL Cmmand: GRANT ${Rle} TO ${Accunt} WITH ADMIN OPTION RemveRleFrmAccunt Map Accunt t ${Accunt.Name} Map Rle SQL Cmmand: REVOKE ${Rle} FROM ${Accunt} AddEntTAccunt Map Accunt t ${Accunt.Name} Map Resurce t ${Entitlement.Resurce} Map Actin t ${Entitlement.Actin} SQL Cmmand: GRANT ${Actin} ON ${Resurce} TO ${Accunt} RemveEntFrmAccunt Map Accunt t ${Accunt.Name} Map Resurce t ${Entitlement.Resurce} Map Actin t ${Entitlement.Actin} SQL Cmmand: REVOKE ${Actin} ON ${Resurce} FROM ${Accunt} CreateGrup Map Grup t ${Grup.Name} DeleteGrup Map Grup t ${Grup.Name} AddEntTGrup Map Grup t ${Grup.Name} Map Resurce t ${Entitlement.Resurce} RSA Identity Gvernance and Lifecycle 7.0.1 7
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Map Actin t ${Entitlement.Actin} RemveEntFrmGrup Map Grup t ${Grup.Name} Map Resurce t ${Entitlement.Resurce} Map Actin t ${Entitlement.Actin} AddAppRleTGrup Map Grup t ${Grup.Name} Map AppRle t ${ApplicatinRle.Name} RemveAppRleFrmGrup Map Grup t ${Grup.Name} Map AppRle t ${ApplicatinRle.Name} AddGrupTGrup Map Grup t ${Grup.Name} Map Grup2 t ${Grup.Name} RemveGrupFrmGrup Map Grup t ${Grup.Name} Map Grup2 t ${Grup.Name} AddAppRleTAppRle Map AppRle t ${ApplicatinRle.Name} Map SubAppRle t ${ApplicatinRle.Name} SQL Cmmand: GRANT ${SubAppRle} TO ${AppRle} RemveAppRleFrmAppRle Map AppRle t ${ApplicatinRle.Name} Map SubAppRle t ${ApplicatinRle.Name} SQL Cmmand: REVOKE ${SubAppRle} FROM ${AppRle} AddEntTAppRle Map AppRle t ${ApplicatinRle.Name} Map Resurce t ${Entitlement.Resurce} Map Actin t ${Entitlement.Actin} SQL Cmmand: GRANT ${Actin} ON ${Resurce} TO ${AppRle} RSA Identity Gvernance and Lifecycle 7.0.1 8
RemveEntFrmAppRle Map AppRle t ${ApplicatinRle.Name} RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database Map Resurce t ${Entitlement.Resurce} Map Actin t ${Entitlement.Actin} SQL Cmmand: REVOKE ${Actin} ON ${Resurce} FROM ${AppRle} CreateRle Map Rle SQL Cmmand: CREATE ROLE ${Rle} DeleteRle Map Rle SQL Cmmand: DROP ROLE ${Rle} ChangeRlePrfile Map Rle Map Prfile DisableRle Map Rle EnableRle Map Rle AddAppRleTRle Map Rle Map AppRle t ${ApplicatinRle.Name} SQL Cmmand: GRANT ${AppRle} TO ${Rle} RemveAppRleFrmRle Map Rle Map AppRle t ${ApplicatinRle.Name} SQL Cmmand: REVOKE ${AppRle} FROM ${Rle} AddEntTRle Map Rle Map Actin t ${Entitlement.Actin} SQL Cmmand: GRANT ${Actin} TO ${Rle} WITH ADMIN OPTION RSA Identity Gvernance and Lifecycle 7.0.1 9
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database RemveEntFrmRle Map Rle Map Actin t ${Entitlement.Actin} SQL Cmmand: REVOKE ${Actin} FROM ${Rle} AddGrupEntTRle Map Rle Map Actin t ${Entitlement.Actin} RemveGrupEntFrmRle Map Rle Map Actin t ${Entitlement.Actin} ChangeDataResurce Limitatins Map Data Resurce As f nw, there is n mapping supprted fr Rles, Prfiles and Data Resurces by ACM. Currently, Oracle Database des nt supprt the fllwing peratins: All grup related peratins Enable / Disable Rle ChangeDataResurce ChangeRlePrfile RSA Identity Gvernance and Lifecycle 7.0.1 10
RSA Identity Gvernance and Lifecycle Cnnectr Data Sheet fr Oracle Database COPYRIGHTS Cpyright 2016 EMC Crpratin. All Rights Reserved. Published in the USA. TRADEMARKS RSA, the RSA Lg, and EMC are either registered trademarks r trademarks f EMC Crpratin in the United States and/r ther cuntries. All ther trademarks used herein are the prperty f their respective wners. Fr a list f EMC trademarks, g t www.rsa.cm/legal/trademarks_list.pdf. RSA Identity Gvernance and Lifecycle 7.0.1 11