Oracle Identity Analytics 11gR1: Administration Activity Guide D68340GC20 Edition 2.0 December 2010 D71224 Authors Copyright © 2010, Oracle and/or its affiliates All rights reserved Steve Friedberg David Goldsmith Disclaimer Technical Contributors and Reviewers Neil Gandhi David Goldsmith Stephan Hausmann Stephen Man Lee Harsh Patwardhan Editors Vijayalakshmi Narasimhan PJ Schemenaur Graphic Designer Satish Bettegowda This document contains proprietary information and is protected by copyright and other intellectual property laws You may copy and print this document solely for your own use in an Oracle training course The document may not be modified or altered in any way Except where your use constitutes "fair use" under copyright law, you may not use, share, download, upload, copy, print, display, perform, reproduce, publish, license, post, transmit, or distribute this document in whole or in part without the express authorization of Oracle The information contained in this document is subject to change without notice If you find any problems in the document, please report them in writing to: Oracle University, 500 Oracle Parkway, Redwood Shores, California 94065 USA This document is not warranted to be error-free Restricted Rights Notice If this documentation is delivered to the United States Government or anyone using the documentation on behalf of the United States Government, the following notice is applicable: U.S GOVERNMENT RIGHTS The U.S Government’s rights to use, modify, reproduce, release, perform, display, or disclose these training materials are restricted by the terms of the applicable Oracle license agreement and/or the applicable U.S Government contract Publishers Trademark Notice Syed Ali Sumesh Koshy Oracle and Java are registered trademarks of Oracle and/or its affiliates Other names may be trademarks of their respective owners Table of Contents About This Course .Preface-xi Course Goals Preface-xi Topics Not Covered Preface-xii How Prepared Are You? Preface-xiii How to Use Course Materials Preface-xiv Conventions Preface-xv Icons Preface-xv Typographical Conventions Preface-xvi Additional Conventions Preface-xvi Installing Oracle Identity Analytics 11gR1 .1-1 Objectives 1-1 Exercise 1: Examine Your Practice System 1-2 Preparation 1-2 Task – Examine Your Practice System 1-2 Exercise 2: Install Oracle Identity Analytics 11gR1 1-4 Task – Copy and Unzip the Oracle Identity Analytics 11.1.1.3 Software 1-4 Task – Import the Oracle Identity Analytics Schema to the MySQL Database 1-4 Task – Configure the WAR File 1-5 Task – Prepare the Oracle Identity Analytics Environment 1-6 Task - Verify the Preinstallation Steps 1-7 Task – Deploy the Oracle Identity Analytics Application on GlassFish 1-10 Exercise Summary 1-12 Building the Identity Warehouse 2-1 Objectives 2-1 Exercise 1: Import Users 2-2 Preparation 2-2 Task – Copy the Sample Feed Files to the Appropriate Directories 2-2 Task – Configure Import Options 2-3 Copyright © 2010, Oracle and/or it affiliates All rights reserved i Task – Create a New Provisioning Server 2-3 Task – Schedule an Import Job to Import the Sample Feed 2-4 Task – Verify User Import 2-5 Exercise 2: Configure Metadata 2-6 Preparation 2-6 Task – Define Resource Type Metadata 2-6 Task – Define Attribute Categories 2-7 Task – Define Attributes 2-7 Exercise 3: Set Up Business Structures 2-10 Task – Import Sample Business Structures 2-10 Task – Create a Business Structure Rule 2-11 Task – Assign Users to a Business Structure Using Rules 2-12 Task – Assign Users to a Business Structure Using the Console 2-13 Exercise 4: Import Accounts 2-14 Task – Import Accounts From Sample Files 2-14 Task – Verify Accounts Import 2-15 Exercise 5: Configure an Application 2-16 Task – Create an Application 2-16 Task – Assign Users to an Application 2-17 Exercise 6: Import Roles 2-19 Preparation 2-19 Task – Import Roles 2-19 Task – Verify Role Import 2-20 Exercise 7: Import Policies 2-21 Task – Import Active Directory Policy 2-21 Task – Import DB2 Policy 2-23 Task – Import LDAP Policy 2-23 Task – Import Oracle Policy 2-24 Exercise 8: Manage Resource Data 2-26 Task – Configure Glossary, Data Owner, and Classification 2-26 Exercise Summary 2-28 Configuring Oracle Identity Analytics Security 3-1 Objectives 3-1 Exercise 1: Configure Oracle Identity Analytics Security 3-2 Task – Configure Creation and Correlation of Oracle Identity Analytics Users 3-2 Task – Create a Role 3-3 Task – Create a User 3-4 Task – Create a Proxy Assignment 3-4 Exercise 2: Configure LDAP Authentication 3-6 Task – Configure the ldap.properties File 3-6 Task – Create a User Account 3-7 Exercise Summary 3-9 Configuring Identity Certification 4-1 ii Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Objectives 4-1 Exercise 1: Configure Identity Certification 4-2 Task – Create an Email Template 4-2 Task – Configure Email Settings 4-3 Task – Configure Logging (Optional) 4-4 Task – Configure Certifications 4-4 Exercise 2: Create Data Owner and User Entitlement Certifications 4-6 Task – Create a Data Owner Certification 4-6 Task – Create a User Entitlement Certification 4-7 Exercise 3: Complete Certifications 4-9 Task – Complete User Certification 4-9 Task – Complete Transferred User Certification 4-11 Task – Complete Data Owner Certification 4-11 Exercise 4: Perform Remediation Validation 4-13 Task – Configure Remediation 4-13 Task – Perform Remediation Validation 4-13 Exercise Summary 4-15 Performing Identity Audits 5-1 Objectives 5-1 Exercise 1: Configure Identity Audit 5-2 Task – Configure Email Settings 5-2 Exercise 2: Create an Audit Rule and Policy 5-4 Task – Create an Audit Rule 5-4 Task – Create an Audit Policy 5-5 Exercise 3: Perform an Audit Scan 5-6 Task – Run a Policy Scan 5-6 Task – Close Violations 5-7 Exercise 4: Perform an Identity Audit 5-8 Exercise 4: Perform an Identity Audit – Solution 5-9 Exercise Summary 5-11 Performing Role Engineering 6-1 Objectives 6-1 Exercise 1: Perform Role Engineering 6-2 Task – Configure Logging (Optional) 6-2 Task – Perform a Role Mining Task 6-2 Task – Configure Role Mining Results 6-4 Task – Perform Entitlement Discovery 6-6 Exercise Summary 6-8 Performing Role Management .7-1 Objectives 7-1 Exercise 1: Configure Role and Rule Workflows 7-2 Task – Configure Email Template 7-2 Task – Configure Role Modification Workflow 7-2 Task – Configure Role Membership Rule Modification Workflow Copyright © 2010, Oracle and/or it affiliates All rights reserved iii 7-4 Exercise 2: Perform Role Modification and Approval 7-5 Task – Modify Candidate Role 7-5 Task – Approve Role Modification Request 7-6 Exercise 3: Perform Role Consolidation 7-7 Task – Analyze Role Consolidation by Role Membership 7-7 Task – Analyze Role Consolidation by Entitlements 7-7 Exercise 4: Configure Role Management Auto-Provisioning Rules 7-9 Task – Create Role Auto-Provisioning Rules 7-9 Task – Approve Modified Rule 7-10 Task – Run the Modified Rule 7-10 Task – Configure Rule Trigger Schedule 7-11 Exercise 5: Configure Role SoD 7-13 Task – Create a Role SoD Policy and Rule 7-13 Task – Run an SoD Check 7-14 Task – Configure a Role Exclusion 7-14 Exercise 6: Configure Event Listeners 7-16 Task – Configure Logging (Optional) 7-16 Task – Create Event Listener 7-16 Task – Trigger Event Listener 7-18 Exercise Summary 7-20 Generating Reports 8-1 Objectives 8-1 Exercise 1: Generate Reports 8-2 Task – Copy jrxml Files 8-2 Task – Run a Report 8-2 Task – Schedule a Report 8-3 Exercise 2: Upload a Custom Report 8-4 Task – Modify a Custom Report 8-4 Task – Run a Custom Report 8-5 Exercise Summary 8-6 Working with the Solaris Sandbox .A-1 Objectives A-1 Start, Log In to, and Log Out of Solaris Sandbox Zones A-2 Overview of Solaris OS Zones A-2 Solaris Sandbox Zones A-2 Zone Management Commands in the Solaris Sandbox A-3 Start Servers A-4 Start the MySQL Server A-4 Start the GlassFish Application Server A-4 Start the Directory Server Instance A-4 Assess the State of Your Practice System for Practice A-5 Assess the State of Your Practice System for Practices After Practice A-6 Start the Solaris Sandbox A-7 iv Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Bring the Solaris Sandbox to the Starting Point for Performing a Practice A-8 Run the Firefox Browser from the Zones A-9 Copyright © 2010, Oracle and/or it affiliates All rights reserved v vi Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Preface About This Course This course provides you with the opportunity to learn about Oracle Identity Analytics 11gR1 (OIA) software Oracle Identity Analytics provides comprehensive role lifecycle management and identity compliance capabilities to streamline operations, enhance compliance, and reduce costs The Oracle Identity Analytics course will provide you with an entry point into Oracle Identity Analytics and cover the necessary concepts for implementing and managing a role-based access control solution Practices will acquaint you with the components of Oracle Identity Analytics, including the identity warehouse, reports, and workflows You will also learn to perform identity certifications, audits, role engineering, and role management Course Goals After completing this course, you should be able to: ● Install and set up Oracle Identity Analytics ● Build an identity warehouse ● Configure Oracle Identity Analytics security ● Perform certifications ● Perform identity audits ● Perform policy and role lifecycle management ● Generate reports Copyright © 2010, Oracle and/or it affiliates All rights reserved Preface-xi Topics Not Covered Topics Not Covered This course does not cover the following topics: Preface-xii ● Sun Identity Manager / Oracle Waveset ● Oracle Identity Manager ● Identity management concepts Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Exercise 1: Generate Reports Exercise 1: Generate Reports In this exercise, you complete the following tasks: l Copy jrxml files l Run a report l Schedule a report Task – Copy jrxml Files In this task, you will copy the jrxml files to the reports directory In a terminal window, change to the reports folder # cd /OIA_11gR1/reports Delete all jasper files The jasper files will be recompiled from the jrxml file when the corresponding report is run # rm *.jasper Copy the jrxml files from the appropriate database folder (Note: This is not /mysql, it is /OIA_11gR1/reports/mysql.) # cp mysql/*.jrxml Task – Run a Report In this task, you will run an ad hoc report for user entitlements Log in to Oracle Identity Analytics if required Username: rbacxadmin Password: password 8-2 Navigate to Reports > Ad Hoc Reports Under Business Structure Reports, you see a list of report templates For the Business Structure User Entitlements Report, click Run a In the Select Business Structure window, click the Hierarchy tab, expand the Organization Structure > Operations b Select the Services business structure and click OK You should see a report after a few seconds (it is over 300 pages long.) Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Exercise 1: Generate Reports Task – Schedule a Report In this task, you will create a report job to run an audit exceptions report Navigate to Reports > Schedule Reports Click New Report Job Complete the form as follows: Name: Open Audit Exceptions Report Description: Daily report of open identity audit exceptions Report Name: All Open Audit Exceptions Report Scheduled Dates: Daily Start Time: (one minute from your practice system’s current time) Perform this Task: Every Day Click Create Wait about one minute for the report to run Navigate to Reports > Sign Off Reports You should see a new Pending IDAViolations report This is a report of all open Identity Audit Violations that were generated from the Identity Audit practice Click View Report Click the Sign Off button and select Accept Report Complete the form as follows, and then click OK: Comments: Report accepted Generating Reports Copyright © 2010, Oracle and/or it affiliates All rights reserved 8-3 Exercise 2: Upload a Custom Report Exercise 2: Upload a Custom Report In this exercise, you complete the following tasks: l Modify a custom report l Run a custom report Task – Modify a Custom Report In this task, you will modify a custom report and upload it to Oracle Identity Analytics In a terminal window, change to the /OIA_11gR1 directory: # cd /OIA_11gR1 Copy the customreports directory to the /OIA_11gR1 directory # cp -r /opt/ses/shared/labfiles/customreports Open the /OIA_11gR1/customreports/2RoleUsers.jrxml file in a text editor a Change the following on line 5: from name="RoleUsers" to name="CustomRoleUsers" b Change the following on line 143: from to Save and close the file Navigate to Reports > Custom Reports Click New Custom Report a Complete the form as follows: Report Name: Custom Role Users Report Sub Report: Deselect b 8-4 For Prompts, not select any of them Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Exercise 2: Upload a Custom Report c For File Uploads, click Browse and select the following file: /OIA_11gR1/customreports/2RoleUsers.jrxml Click OK The new custom report should appear on the list Task – Run a Custom Report In this task, you will schedule a job to run the custom report Navigate to Reports > Schedule Reports Click New Reports Job a Complete the form as follows: Name: My Role Users Report Description: List Users by Roles Report Name: Custom Role Users Report Scheduled Dates: One Time Only Start Time: (one minute from your host system’s current time) b Click Create After a minute, navigate to Reports > Sign off Reports For the CustomRoleUsers report, click View Report Note the name of the report Generating Reports Copyright © 2010, Oracle and/or it affiliates All rights reserved 8-5 Exercise Summary Exercise Summary ? 8-6 ! Discussion – Take a few minutes to discuss what experiences, issues, or discoveries you had during the practice exercise l Experiences l Interpretations l Conclusions l Applications Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A Working with the Solaris Sandbox Objectives This appendix explains how to: ● Start, log in to, and log out of Solaris Sandbox zones ● Start servers ● Assess the state of your practice system for Practice ● Assess the state of your practice system for practices after Practice ● Start the Solaris Sandbox ● Bring the Solaris Sandbox to the starting point for doing a practice ● Run the Firefox browser from the zones Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A-1 Start, Log In to, and Log Out of Solaris Sandbox Zones Start, Log In to, and Log Out of Solaris Sandbox Zones The Solaris Sandbox provides you with a global zone and twelve nonglobal zones A zone is a virtualized operating system environment created within a single instance of the Solaris OS If you are not familiar with the concept of Solaris OS zones, you can get more information at the following URL: http://www.sun.com/bigadmin/content/zones Overview of Solaris OS Zones The global zone is the only zone from which nonglobal zones can be configured, started, and accessed Nonglobal zones can be thought of as hosts One or more applications can run on these hosts without interacting with the rest of the system Nonglobal zones can have host names and IP addresses To access a nonglobal zone, you boot the nonglobal zone from the global zone, and then log in to the nonglobal zone Solaris Sandbox Zones The Solaris Sandbox has one global zone and 12 nonglobal zones The nonglobal zones in the Solaris Sandbox are named zonenn, where nn is a number between 01 and 12 When you start the Solaris Sandbox and open a terminal window, you gain access to the global zone, as indicated by the Solaris Sandbox terminal window prompt: global # Practices are performed almost exclusively in the nonglobal zones The Solaris Sandbox prompt lets you know when you are logged in to a nonglobal zone For example, when you are logged in to the zone01 zone, the following prompt appears in the terminal window: zone01 # Appendix A-2 Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Start, Log In to, and Log Out of Solaris Sandbox Zones Zone Management Commands in the Solaris Sandbox Manage zones as follows when working in the Solaris Sandbox: ● Boot a zone: global # zoneadm -z zonenn boot ● Log in to a zone that has already been booted: global # zlogin zonenn zonenn # The zonenn # prompt appears, indicating that you have successfully logged in to a nonglobal zone In this example, nn is the number of the zone into which you have logged in ● Log out of a zone: zone01 # exit global # The global # prompt appears, indicating that you have successfully logged out of the zone01 zone For example, to boot and log in to the zone01 zone, run the following commands: global # zoneadm -z zone01 boot global # zlogin zone01 zone01 # The zone01 # prompt appears, indicating that you have successfully logged in to the zone01 zone Working with the Solaris Sandbox Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A-3 Start Servers Start Servers The following sections provide instructions for starting servers used in the practices Start the MySQL Server Run the following command in the zone01 zone: zone01 # /etc/init.d/mysql start Start the GlassFish Application Server Run the following command in the zone01 zone: zone01 # asadmin start-domain domain1 Start the Directory Server Instance Run the following command in the zone01 zone: zone01 # /var/Sun/mps/slapd-zone01/start-slapd Appendix A-4 Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Assess the State of Your Practice System for Practice Assess the State of Your Practice System for Practice Before starting Practice 1, your practice system can be in one of two states defined in Table A-1 Determine which of these two states describes your practice system Then, depending on the state of your practice system, follow the instructions in the table Table A-1 Practice System Start States and Instructions Practice System State Description Instructions First time doing practices You have not done any practices on the Solaris Sandbox Perform the steps in ‘‘Start the Solaris Sandbox’’ on page A-7 Not at starting point You completed other practices in the Solaris Sandbox, and now you want to come back and this practice Perform the steps in ‘‘Bring the Solaris Sandbox to the Starting Point for Performing a Practice’’ on page A-8 Working with the Solaris Sandbox Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A-5 Assess the State of Your Practice System for Practices After Practice Assess the State of Your Practice System for Practices After Practice Before starting any practice after Practice 1, your practice system can be in one of three states defined in Table A-2 Determine which of these states describes your practice system Then, depending on the state of your practice system, follow the instructions in the table Table A-2 Practice System Start States and Instructions After Practice Practice System State Description Ready to go, powered up • You completed the No additional preparation prerequisite practices and no is required additional practices • After completing the prerequisite practices, you did not power down the Solaris Sandbox Not at Starting Point • Appendix A-6 Perform the steps in ‘‘Bring the Solaris You did not complete the Sandbox to the Starting Point for Performing a prerequisite practices Practice’’ on page A-8 You completed other practices in addition to the prerequisite practices, and now you want to come back and this practice One of the following: • Instructions Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Start the Solaris Sandbox Start the Solaris Sandbox Perform the following steps: Log in to the Solaris OS as the root user The password is cangetin Caution – When possible, examples in this course demonstrate security best practices However, your own specific security requirements might be more stringent than the techniques followed in this course Do not assume that the techniques demonstrated in this course meet your security requirements For your convenience, many of the passwords used in this class have the values cangetin and sunlearning Setting system passwords to the same value is not a security best practice Prepare the nonglobal zones for doing practice exercises global # lab -p You have successfully started the Solaris Sandbox You can now begin work on your practice If your practice system requires a proxy server to access the Internet, be sure to configure the proxy server address in the Firefox browser after you have started a zone Working with the Solaris Sandbox Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A-7 Bring the Solaris Sandbox to the Starting Point for Performing a Practice Bring the Solaris Sandbox to the Starting Point for Performing a Practice Perform the following steps: Open a terminal window if necessary If you are logged in to a zone, use the exit command to log out of this zone Run the lab -n command, which brings the Solaris Sandbox to the starting point for this practice global # lab -n lab_number In this example, lab_number is the number of the practice that you want to perform For example, if you wanted to bring the Solaris Sandbox to a state at which you could start working on Practice 2, you would run the following command: lab -n Progress messages appear in the terminal window as the lab -n command restores the Solaris Sandbox’s state to the starting point for this practice Note – In many cases, the lab -n command processes large quantities— gigabytes—of data Therefore, this command might require a significant amount of time—10 minutes or more—to complete Prepare the nonglobal zones for performing practice exercises: global # lab -p You have successfully brought the Solaris Sandbox to the starting point for a practice You can now begin work on the practice If your practice system requires a proxy server to access the Internet, be sure to configure the proxy server address in the Firefox browser after you have started a zone Appendix A-8 Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Run the Firefox Browser from the Zones Run the Firefox Browser from the Zones The Firefox browser is accessible from the global zone and the nonglobal zones When working within the nonglobal zones, you should launch Firefox from the command line using the following command: zone01 # firefox & This allows you to use the localhost address in the URL If you launch Firefox from the Launch menu, Firefox is launched in the global zone In order to access Web applications in the nonglobal zones, you need to address the fully qualified host name of the nonglobal zone in the URL For example, to address a URL running in the zone01 zone: http://zone01.example.com:port/ The host names for the different zones are listed in the /etc/hosts file Working with the Solaris Sandbox Copyright © 2010, Oracle and/or it affiliates All rights reserved Appendix A-9 [...]... command-line prompt, zone01# Installing Oracle Identity Analytics 11gR1 Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 1-3 Exercise 2: Install Oracle Identity Analytics 11gR1 Exercise 2: Install Oracle Identity Analytics 11gR1 In this exercise, you complete the following tasks: ● Copy and unzip the Oracle Identity Analytics 11.1.1.3.1 software ● Import the Oracle Identity Analytics. .. /glassfish/domains/domain1/applications/j2ee-\ modules/rbacx/WEB-INF Preface-xvi Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 1 Installing Oracle Identity Analytics 11gR1 Objectives After completing this practice, you should be able to: ● Examine your practice system ● Install Oracle Identity Analytics 11gR1 Copyright © 2010, Oracle and/or it affiliates... readme.txt) # cd /OIA _11gR1/ db/mysql # gedit migrate-rbacx-11.1.1.3.0To11.1.11.3.1-mysql.sql Lab 1-4 Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Exercise 2: Install Oracle Identity Analytics 11gR1 On line 17, add a space after the dashes so it reads, “ Indexes” Save and close the script 4 Import the Oracle Identity Analytics schema... to run Oracle Identity Analytics 1 Copy the jdbc.properties file to the /OIA _11gR1/ conf directory # cp /OIA _11gR1/ conf/mysql/jdbc.properties /OIA _11gR1/ conf 2 Edit the /OIA _11gR1/ conf/jdbc.properties file Modify the JDBC URL on line 9 to point the Oracle Identity Analytics application to the database server jdbc.url=jdbc:mysql://localhost:3306/rbacx Lab 1-6 Oracle Identity Analytics 11gR1: Administration. .. feature in Oracle Identity Analytics 11gR1 In this task, you will import business structures into the Oracle Identity Analytics Identity Warehouse The resulting business structures should appear as shown in the following screenshot 1 In a terminal window, change to the import directory # cd /OIA _11gR1/ sample/import Lab 2-1 0 Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or... ls /OIA _11gR1/ logs/rbacx.log Output in the terminal window should indicate that the rbacx.log file exists If the rbacx.log file does not exist, follow the steps in Task 4 to create the file Installing Oracle Identity Analytics 11gR1 Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 1-9 Exercise 2: Install Oracle Identity Analytics 11gR1 Task 6 – Deploy the Oracle Identity Analytics. .. 1-1 0 5 Under Common Tasks on the extreme left, select Application Server > JVM Settings > JVM Options 6 Increase the max Java heap size by changing the JVM option -Xmx512m to -Xmx1024m 7 Click Save 8 Restart GlassFish Oracle Identity Analytics 11gR1: Administration Copyright © 2010, Oracle and/or it affiliates All rights reserved Exercise 2: Install Oracle Identity Analytics 11gR1 # asadmin stop-domain... the Oracle Identity Analytics Web application later in this exercise c Save and close the file d Source the /.profile file # source /.profile Installing Oracle Identity Analytics 11gR1 Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 1-5 Exercise 2: Install Oracle Identity Analytics 11gR1 e Verify the export of the RBACX_HOME variable # echo $RBACX_HOME The output should be /OIA _11gR1. .. Installing Oracle Identity Analytics 11gR1 Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 1-7 Exercise 2: Install Oracle Identity Analytics 11gR1 3 Verify that the log4j.properties file was modified correctly # grep appender.file.file /OIA _11gR1/ staging/ \ WEB-INF/log4j.properties Output similar to the following should appear in the terminal window: log4j.appender.file.file=/OIA _11gR1/ logs/rbacx.log... importing data into Oracle Identity Analytics The type of Provisioning Server you will use is from a file 1 Log in to the Oracle Identity Analytics console as rbacxadmin 2 In the Oracle Identity Analytics console, navigate to Administration > Configuration (This takes a minute the first time.) Building the Identity Warehouse Copyright © 2010, Oracle and/or it affiliates All rights reserved Lab 2-3 Exercise