Configuring a SailPoint IdentityNow JDBC Source with multivalue fields – ‘mergeColumns’

2nd of July, 2019 / / No Comments

Recently I was configuring a SailPoint IdentityNow JDBC Source with data a little different than a simple series of single valued columns. The Source was an Oracle SQL View with around 19 columns of which one key column was multi-valued. It contained a list of the Roles a user is a member of.

Just like doing anything for the first time there was some trial and error before I got the JDBC Source all configured and the Import, Correlation and Aggregation working.… [Keep reading] “Configuring a SailPoint IdentityNow JDBC Source with multivalue fields – ‘mergeColumns’”

AWS Data Lifecycle Manager Update

28th of June, 2019 / / No Comments

This one slipped a bit under the radar, but the other week there was a big change for people running Date Lifecycle Manager (DLM). In my colleague Matt’s weekly AWS update on May 31st, he mentioned the “snapshot across multiple EBS volumes” update. On first glance this didn’t seem to be a big deal. Yep, you can now take multi-volume snapshots in a consistent manner. As a backup person, this is good news, but not much more than a footnote.… [Keep reading] “AWS Data Lifecycle Manager Update”

Microsoft Teams – Direct Routing – Part 2

27th of June, 2019 / / No Comments

Continuation from the previous blog discussing the configuration and setup of Sonus SBC as well as O365 tenant to support Microsoft Teams direct routing.

Certificate Requirement

All deployed SBC(s) must have a public certificate from a supported Public CA. When generating the CSR, the private key size should be at least 2048.
Note: onmicrosoft.com domain for certificate is not supported.

Thomas Poett has a great article around certificates. His article can be found here:

Direct Routing Certificate Requirement

Wildcard certificate is also supported on Sonus SBC for Direct Routing.… [Keep reading] “Microsoft Teams – Direct Routing – Part 2”

A Rudimentary RACF Management Agent for Microsoft Identity Manager

26th of June, 2019 / / No Comments

A RACF Management Agent for Microsoft Identity Manager ? Isn’t there one in the box? No. Host Integration Management Agents were deprecated when Microsoft released Forefront Identity Manager as the successor to Identity Lifecycle Manager (ILM). I understand it was partly due to lack of demand for the integration, and the reliance on Host Integration Server (HIS) along with the move in operating system support 32-bit (in ILM) to 64-bit (in FIM). With ILM integration with Host Systems via HIS you were required to map out the key sequences anyway.… [Keep reading] “A Rudimentary RACF Management Agent for Microsoft Identity Manager”

Automating RACF Administration with PowerShell

25th of June, 2019 / / No Comments

Automating RACF Administration with PowerShell? Yes, I’m writing this post from the past as it is 2019 and certain technologies are not in my job description anymore like Faxing Solutions and Mainframe Administration. I guess its been one of those months. Recently I needed to automate some RACF Administration tasks. Naturally I wanted to perform this with my favourite scripting tool, PowerShell.

After much searching, I couldn’t find any references to anyone doing such a thing.… [Keep reading] “Automating RACF Administration with PowerShell”

Microsoft Teams – Direct Routing Deloyment – Part 1

25th of June, 2019 / / No Comments

Background

The deployment configuration below has been done in Australia and will cover all the requirements and configuration to be able to get Direct Routing up and running without any issues.

Voice gateway used for Enterprise Voice – Sonus Session Border Controller (SBC) 2000.

Note: The same configuration holds good for Sonus SBC 1000.

Pre-requisites

If media bypass is required for the deployment, the gateway will require a public IP address. Also note that in order for media bypass to successfully work, the Teams users in the corporate network will need to route to the public interface of the SBC, as such firewall rules need to be amended to allow this.… [Keep reading] “Microsoft Teams – Direct Routing Deloyment – Part 1”

Microsoft Identity Manager PowerShell Management Agent for Oracle Internet Directory

18th of June, 2019 / / No Comments

Why a FIM/MIM PowerShell Management Agent for Oracle Internet Directory? Why not just use the Generic LDAP Connector for Microsoft Identity Manager? I needed an integration solution that was able to update an Oracle Database behind Oracle Internet Directory. That meant I required a solution that was able to use LDAP to get visibility as to who/what was in OID, but then make updates into an Oracle DB. That functionality I wanted to be contained on a single Management Agent, not an MA for the Database and another for LDAP.… [Keep reading] “Microsoft Identity Manager PowerShell Management Agent for Oracle Internet Directory”

Azure NSG security rule management like a boss with PowerShell and CSVs

14th of June, 2019 / / 2 Comments

Originally this blog post was posted on Lucian’s blog. Check it out, or check him out on @LucianFrango on Twitter.

* * *

Network Security Groups (NSG) are pretty good. I don’t mind them that much as for what they are, they do a good job. Designing them can be a little tricky, having to know all the nuances of working with them. When it comes to implementing them, changing them at scale… well that’s where things can be a little tiresome.… [Keep reading] “Azure NSG security rule management like a boss with PowerShell and CSVs”

Querying Oracle Internet Directory (LDAP) with PowerShell

13th of June, 2019 / / No Comments

If you are an IT Professional it is highly likely you are very familiar with Microsoft Active Directory and in turn PowerShell and LDAP. At some point though you may need to integrate with another LDAP directory such as Oracle Internet Directory and you find it isn’t as straight forward as Active Directory and the rich tooling it comes with. I’ve had to create interfaces with numerous LDAP directories over the years but its been quite a long time since I had to integrate with Oracle Internet Directory.… [Keep reading] “Querying Oracle Internet Directory (LDAP) with PowerShell”

SailPoint IdentityNow to ServiceNow Ticketing Integration

12th of June, 2019 / / 1 Comment

SailPoint IdentityNow comes with many connectors to allow provisioning and lifecycle management of entities in connected systems. However there will always be those systems that require some manual tasks/input. In those instances SailPoint IdentityNow to ServiceNow Ticketing Integration can create a ticket in ServiceNow that can then be tracked whilst those manual steps are fulfilled.

Integration of IdentityNow with ServiceNow doesn’t use a connector in the same sense as the other Sources do in IdentityNow. It uses an Integration Module.… [Keep reading] “SailPoint IdentityNow to ServiceNow Ticketing Integration”