When an user submits a request for self-registration, the home organization of the user gets determined by the home organization policy. The organization name, as determined by the home organization policy, is filled in the request submitted. The approver can override the home organization of the user while approving the request. If a pre-process custom handler is defined to determine the home organization during self-registration, then home organization policy is not evaluated. If workflow policy is defined, then it takes precedence over the home organization policy.
Features of Home Organization Policy
During Oracle Identity Manager deployment, a default home organization policy called Home Organization Determination Policy and a default rule called Default All Users To Single Organization is seeded, if not already present. Oracle Identity Manager does not allow you to define new home organization policies. However, new rules can be created under the default home organization policy.
- Self Registration Use Case Using Default Rule
- Default rule is named as Default All Users To Single Organization Rule. This rule can be modified but cannot be deleted.
- The condition defined is:
- IF user.User Login Equals $(user.User Login) THEN organization equals "Xellerate Users"
- Self Registration Use Case Using Simple Rule
- A simple rule is a rule created with a single IF condition and with out using any operator like AND/OR.
- For example, if a rule called ExampleSimpleRule is defined with the following condition:
- IF user.Nickname Starts with "Test" THEN organization equals "testOrg2"
- Self Registration Use Case Using Complex Rule
- A complex rule is a rule created with more than one IF condition and uses AND/OR operators to form the rule.
- For example, if a rule called ExampleComplexRule is defined with the following condition:
- IF user.Nickname Starts with "Test" AND user.Display Name Ends with "User" THEN organization equals "testOrg3"
- Rule Evaluation Order
- When a user self registers, the first rule that is evaluated is the top rule on the list that appears on the home organization page, followed by the next rule up to the last rule. Evaluation stops as soon as a match is found.
- Self Registration Use Case When SOA is OFF
- When SOA is off, and a self registration request is submitted, then the request gets auto-approved and status of request is shown as completed.
Creating a Rule in Home Organization Policy
- System Administration -> System Configuration -> Home Organization Policy
Modifying a Rule in Home Organization Policy
- System Administration -> System Configuration -> Home Organization Policy
Deleting a Rule in Home Organization Policy
- System Administration -> System Configuration -> Home Organization Policy -> Delete
