MidPoint Provisioning Plugin
The MidPoint Provisioning Plugin provisions users to Evolveum midPoint using the midPoint REST API.
This plugin is new with COmanage version 3.3.0 and is considered experimental. |
Background
See COmanage midPoint Integration Approaches for more information.
This plugin implements the "COmanange Primary, midPoint Downstream" approach.
Operations
Registry CO Person Transaction | midPoint Action |
---|
Add | Synchronize CO Person with midPoint user |
Edit | Synchronize CO Person with midPoint user |
Enter Grace Period | Synchronize CO Person with midPoint user |
Expiration / Becomes Inactive | Synchronize CO Person with midPoint user |
Unexpire / Becomes Active | Synchronize CO Person with midPoint user |
Delete | Delete midPoint user |
Manual Provision | Synchronize CO Person with midPoint user |
Petition Provision | Synchronize CO Person with midPoint user |
Pipeline Provision | Synchronize CO Person with midPoint user |
Configuration
TODO
- This is a non-core plugin, see Installing and Enabling Registry Plugins for more information.
- Set up a midPoint installation.
- Specifics are beyond the scope of this document.
- The plugin was developed with the Dockerized midPoint simple demo.
- Define a new Server in Registry.
- Servers > Add a New Server
- Type : HTTP
- Configure the Server as follows
- Server URL : midPoint REST API URL, for example https://midpoint.example.org/midpoint
- Username : username of appropriately privileged midPoint user (default is Administrator)
- Password : password of appropriately privileged midPoint user (default is 5ecr3t)
- Configure a new Provisioning Target in Registry.
- Configuration > Provisioning Targets > Add Provisioning Target
- Plugin: MidPointProvisioner
- On the next page, select the Server created in the previous step, as well as the identifier type that will be used as the person's midPoint username.
- ...
See Also
TODO