The Control Panel is a web-based interface that administrators use to configure and manage the RadiantOne Identity Data Management product. RadiantOne also offers a configuration API that can be called programmatically with an Access Token.

The Control Panels utilize a web server that is installed with RadiantOne. The endpoint to access the Control Panel is defined when you create an environment in the Environment Operations Center. For details on creating environments and locating the Control Panel endpoint, see Create Environments.

Classic Control Panel

To switch to Classic Control Panel, use the menu options for the logged in user in the upper right.

The currently logged in user must have permissions to access the Classic Control Panel.

For more details, see Configuration Changes that Require Classic Control Panel

Username and Password

Log in using the directory administrator (cn=directory manager) as the user with the password you set during the install of RadiantOne. Once logged in, the Directory Administrator should navigate in the Control Panel to the ADMIN section and define other users needed to administer RadiantOne. A user can either use their full DN (if known), or their user ID. However, to login with just a user ID, you must configure a user ID to DN Mapping.

The Control Panel displays a message when authentication fails. The table below lists the possible error messages.

Last Login Time

The time the user last logged into the Classic Control Panel is displayed above the "Logged in as..." information shown in the top right.

MFA

Support for MFA logins, you must integrate with an OIDC provider that offers MFA. The MFA checking is handled by the OIDC provider. See the OIDC token configuraton below.

OIDC Token

The RadiantOne Control Panel supports SSO with your corporate Identity Provider using OpenID Connect (OIDC) token-based authentication. This option provides the security of sending user login credentials to the authentication server (the Identity Provider), not the application (Control Panel, the Relying Party). OpenID Connect token authentication allows you to send your username and password just once, to the Identity Provider (IDP), have MFA validated (if enabled and supported by the Identity Provider), and then pass the token in the request to the Control Panel. When OIDC is configured in RadiantOne, the Control Panel login screen displays a list of configured OIDC providers for the admin to select from. The example shown below has two defined, one for Okta and one for Google:

The administrator must click the applicable identity provider to login with an OpenID Connect token.

The high-level flow is shown below.

Detailed steps:

1. The RadiantOne Admin navigates his browser to the RadiantOne Control Panel and clicks “Login with Corporate SSO”.

2. The browser redirects the user to the OIDC Provider’s authorization endpoint with the necessary parameters (ClientID, redirect URI, scope).

3. The RadiantOne Admin authenticates to the OIDC server (if not already authenticated) and the OIDC server prompts the user for authorization: Control Panel wants to access info (scopes) about you. Do you Authorize this?

4. Admin user gives consent.

5. OIDC server gives Control Panel an Authorization code.

6. The Control Panel sends the OIDC server the authorization code and requests an ID token.

7. OIDC Server sends the ID token to Control Panel.

8. Control Panel uses the information in the token along with the Claims to User DN Mapping rules to locate the user in the RadiantOne namespace to enforce permissions based on what delegated admin role the user is a member of – which dictates what the admin is allowed to do within the Control Panel.

Redirect URI

To use OIDC authentication, you need a Redirect URI (also called a callback URL). This is where your Identity Provider sends users after they log in. Identity Data Management automatically provides this Redirect URI, and it’s always based on your deployment’s base URL.

Format: <base-url>/callback

For example, if your Control Panel is at https://rlqa-svc.dev01.radiantlogic.io, your Redirect URI will be https://rlqa-svc.dev01.radiantlogic.io/callback. You must register this Redirect URI in your external Identity Provider (such as Okta, Microsoft Entra ID, Auth0, or Keycloak). If it isn’t registered, OIDC login won’t work.

To enable support for OIDC authentication, follow these steps:

1. Have your client ID and secret (optional unless you are using Authorization Code Flow) associated with the Control Panel application configured in your OIDC server ready. Ensure that the Redirect URL configured with the external Identity Provider follows the format described in the section above.

2. Log into the Control Panel.

3. Navigate to Admin > Control Panel Configuration tab.

4. Select an OIDC Provider from the drop-down list. If you are using your own provider, select the Custom option.

5. Click "Discover Endpoint URLs". The Authorization Endpoint URL and Token Endpoint URL should auto-populate. If you configure a custom provider, you can enter the needed Authorization Endpoint URL and Token Endpoint URL. In OpenID Connect the authorization endpoint handles authentication and authorization of a user. In the OpenID Connect Authorization Code Flow, the token endpoint is used by a client to obtain an ID token, access token, and refresh token.

6. Enter the Client ID associated with the Control Panel application configured in the OIDC provider.

7. (Optional unless using Authorization Code Flow) enter the Client Secret associated with the Control Panel configured in the OIDC provider.

8. Select the Client Authentication Method corresponding to how the Control Panel client has been configured in the OIDC Server. There are two options available: CLIENT_SECRET_POST and CLIENT_SECRET_BASIC.

9. Select a value for Requested Scopes to display a list of possible choices: openid, email, profile..etc. Openid is required. You can add more if needed as long as they match the configuration of the client in the OIDC server. Click ADD SCOPE to add the selected scope to the configuration.

10. Click ADD MAPPING next to DN Mapping Expression. This configuration determines the logic to link the user that logs into the Control Panel with an Open ID Connect token with an identity in the RadiantOne namespace. This process determines which identity is used to enforce authorization within the Control Panel. The user mappings must result in a single user. If no user is found or if more than one user is found, the login fails. The RadiantOne user that is linked to the authentication token must be a member of a RadiantOne default or custom Delegated Administrative group.

11. In the OIDC to FID User Mappings window, click Add.

12. There are two options for identifying the RadiantOne admin user. If the RadiantOne user can be identified by using values/claims from the token to comprise the DN, use the Simple DN Mapping. If the RadiantOne user can be identified by performing a lookup in RadiantOne based on values from the token, use the Advanced DN Mapping.

13. Click SAVE.

Examples of configuring the Simple DN Mapping and an Advanced DN Mapping are shown below.

In the Simple DN Mapping example shown below, the RadiantOne user is identified by using the given_name and family_name claims from the token to compute the DN.

In the Advanced DN Mapping example shown below, the values of the family_name, given_name, and email claims from the token are used to condition a sub-tree search in RadiantOne, starting at the dc=mydomain naming context to locate the identity.

To disable support for OIDC authentication:

1. Log into the Control Panel.

2. Navigate to Admin > Control Panel Configuration tab.

3. Click the Enabled toggle from on to off for the OpenID Connect Provider.

   

4. Click SAVE.

Roles-based access controls are used to enforce privileges for Control Panel. Any user that can authenticate to RadiantOne can administrator the service if they belong to the proper group that is associated with one of the delegated administrator roles. RadiantOne includes default delegated admin roles that users can be assigned to. Custom delegated admin roles can also be defined. Roles & permissions are managed from Control Panel > Admin > Roles & Permissions.

Assigning roles to users is done from Control Panel > Admin > User Management tab.

Default Delegated Admin Roles

The default delegated admin roles can be viewed from Control Panel > Admin > Roles & Permissions. The default roles cannot be edited. However, you can use the default role definition as a basis for defining a new custom role by choosing the default role from the list when prompted to Clone Permissions during new role creation.

Directory Administrator: Members assigned this role can perform all operations (all operations that the other default roles can perform) in addition to being able to update username and password properties for data sources via an LDAP modify command.

Namespace Administrator: Members assigned this role are responsible for managing the RadiantOne namespace. The namespace is managed from Control Panel > Setup > Directory Namespace > Namespace Design. The responsibilities include:

• Creating new naming contexts and mounting backends
• Configuring and managing identity views
• Configuring and managing persistent cache
• Creating and managing RadiantOne directory stores
• Creating and managing synchronization pipelines

Schema Administrator: Members assigned this role are responsible for managing the RadiantOne LDAP schema. The schema is managed from Control Panel > Setup > Directory Namespace > Directory Schema. The responsibilities include:

• Creating new LDAP object classes and attributes
• Extending the RadiantOne LDAP schema with objects and attributes from data source (backend) schemas.
• Importing new LDIF formatted files to extend the RadiantOne LDAP schema.

Security Administrator: Members assigned this role are responsible for managing access controls, password policies, and attribute encryption. Access controls are managed from Control Panel > Manage > Security > Access Controls. The responsibilities include:

• Creating and managing access controls
• Creating and managing password policies
• Managing attribute and LDIF file encryption
• Manage access tokens

Read Only: Members assigned this role can only view configurations. They are not allowed to edit anything.

Creating Roles

Custom roles can be created from Control Panel > Admin > Roles & Permissions tab.

1. Click ADD ROLE.
2. Enter the role name.
3. (Optional) select an existing role to quickly clone/assign similar permissions to the new role.
4. Click OK.
5. Go through each set of permissions and assign the proper privilege: None, View Only, or View & Edit.
6. Click SAVE.

Permissions

The permissions available for creating custom roles in the new Control Panel are not applicable to the Classic Control Panel. However, custom roles can be associated with a Classic Control Panel role to allow administrators the needed access to both the new and Classic Control Panels.

Classic Control Panel

Classic Control Panel has the following admins and groups by default:

The roles and corresponding required permissions are described in the table below.

New Control Panel

For the new Control Panel, each class of permissions matches a section in the left navigation menu.

• DASHBOARD: Assign permissions to view or manage the dashboard page so you can control who can access and modify dashboard content.
• DATA CATALOG: Assign permissions to configure and manage data sources with the ability to set specific permission overrides for specific data sources. For example, you can assign a set of users permissions to manage and use a specific set of data sources. The data sources must be defined prior to assigning permisssions.
• DIRECTORY NAMESPACE: Assign permissions to namespace design (where identity views are created from) and directory schema (where the LDAP directory schema is managed).
• DIRECTORY BROWSER: Assign permissions to the Directory Brower where entries in the RadiantOne namespace can be managed.
• SECURITY: Assign permissions to configure attribute encryption and access controls.
• CONFIGURATION PROMOTION: Assign permissions to export and import configuration so admins can safely promote settings between environments (for example, from staging to production) while controlling who can initiate these operations.
• TASKS: Various actions (e.g. initializing a RadiantOne directory) are launched as tasks. Use this to assign permissions for admins that can manage tasks (e.g. change JVM settings, modify task schedules, delete tasks...etc.).
• GLOBAL SETTINGS: Assign permissions to configuration for LDAP access (supported directory controls and user to DN mapping), and the client certificate truststore (to manage client protocols, client certificates for SSL/TLS communications), tuning defaults, and token validation behavior.
• TUNING: Assign permissions to configure and manage system tuning settings, including backend limits, access regulation limits, global and custom limits, attribute handling, and log settings, to control how workloads are constrained and monitored across the platform.
• ADMINISTRATION: Assign access to user management, roles & permissions, directory manager settings, control panel configuration, access tokens, audit logging settings and entry statistics.
• CLASSIC CONTROL PANEL: enable or disable access to the Classic Control Panel and indicate what role (identified by group membership) should be enforced in the Classic Control Panel. This is to allow administrators the needed access to both the new and Classic Control Panels.

Assigning Users to Roles

Admin users can be assigned to roles from Control Panel > Admin > User Management tab. Either search for a user to manage their roles, or click CREATE USER to create a new user and assign their roles during the creation.

Creating Users

1. From Control Panel > Admin > User Management tab, click CREATE USER.
2. Enter a username.
3. Enter a passwod.
4. Confirm the password.
5. Enter a first name.
6. Enter a last name.
7. Enter an email address.
8. Toggle the status to either active or inactive. Inactive users are not allowed to log into Control Panel.
9. To assign roles, select a role from the drop-down list and click +ASSIGN ROLE. Repeat this step until all roles are selected.
10. Click CREATE.

Assigning Roles to Existing Users

1. From Control Panel > Admin > User Management tab, search for a user and click on the username to select it.

2. Locate the Assign Roles section.

3. Select a role from the drop-down list and click +ASSIGN ROLE. Repeat this step until all roles are selected.

4. Click SAVE

The following settings are currently only applicable to the Classic Control Panel.

To switch to Classic Control Panel, use the menu options for the logged in user in the upper right.

Color theme

The Classic Control Panel can have a custom color theme.

Message of the Day

The Classic Control Panel login page contains a basic username and password text box. To add a custom message on the login page, follow the steps below.

1. Switch to the Classic Control Panel as a member of the Directory Administrators role.
2. Go to the Settings tab > Server Front End > Administration.
3. In the Message of the Day Configuration, enter the message contents.
4. Enter a message title (will display if a popup window is used).
5. (Optional) check the box to enable a "Warning" icon if you want the message to be prefixed with a "Warning".
6. (Optional) check the box to enable a "Popup" message that displays the message title and contents that the user must explicitly acknowledge and close.
7. Click Save.
8. Log out of the Classic Control Panel to be returned to the login screen to view the custom message.

An example of a custom message on the login page is shown below.

An example of a custom message using the "Warning" icon on the login page is shown below.

An example of a custom message using the "Popup" on the login page is shown below.

Banner

A custom message can be added to the banner of the RadiantOne Control Panel pages. This also includes the login and the logout landing pages.

To add a custom message:

1. Log into the Classic Control Panel as a member of the Directory Administrators role.

2. Navigate to Settings > Administration > Internal Banner Configuration section.

3. Enter the message to appear in the banner in the Banner Text field.

4. Specify a color in the Banner Background Color field. You can indicate the color by name or by hex color code.

   Note

   If you enter a hex color code, include the "#" character here. If the color specified is not recognized, it defaults to gray.

5. Specify the banner's text color. You can indicate the color by name or by hex color code.

   Note

   If you enter a hex color code, include the "#" character here. If the color specified is not recognized, it defaults to gray.

   

6. Click Save. The next time the Classic Control Panel is opened (or the browser tab is refreshed), the custom banner message is displayed.

Dashboard

The Dashboard displays some quick links (editable), links to valuable Radiant Logic Marketing content like blogs, white papers and webinars, and a summary chart breakdown of how RadiantOne has been configured: number of data sources, caches, and naming contexts.

You can also view and copy the version of RadiantOne in the upper-right.

Setup

The setup section contains the Data Catalog where connections to identity sources are configured and Directory Namespace where identity views are defined.

Data Catalog

Data Sources - Data Sources repesent connections to identity sources. For details see: Managing Data Sources

Schemas - Schemas contain the metadata extracted from data sources. This metadata is used to create identity views. For details see: Managing Schemas

Drivers and Templates - Drivers and templates are used to establish connections to identity sources. For details see: Managing Drivers and Templates

Directory Namespace

The RadiantOne namespace can be comprised of many different root naming contexts. Each one can represent a different type of backend configuration. This might be a RadiantOne Directory store, or an identity view created from a data source (LDAP, database, or custom). The configuration of the namespace is managed in the Namespace Design section. The LDAP schema for RadiantOne is configured in the Directory Schema section.

Namespace Design - The RadiantOne namespace is managed from here. Create and manage RadiantOne Directory stores, identity views, and persistent cache from here. For details, see: Managing Directory Stores and Managing Identity Views.

Directory Schema - The RadiantOne LDAP directory schema is managed from here. For details, see: Managing Directory Schema.

Global Identity Builder - The Global Identity Builder is only access in the Classic Control Panel.

To switch to Classic Control Panel, use the menu options for the logged in user in the upper right.

The currently logged in user must have permissions to access the Classic Control Panel.

Manage

The Manage section contains the Directory Browser where the runtime directory tree can be accessed, a Tasks section where tasks can be managed, and a Security section where security (e.g. access controls, attribute encryption...etc.) can be configured from.

Directory Browser

Entries can be managed from the Directory Browser.

Tasks

Manage Tasks from here.

Security

Attribute Encryption - Manage Attribute Encryption from here.

Password Policies - Manage Password Policies from Classic Control Panel.

Access Controls - Manage Access Controls from here.

Global settings

The Global Settings section is where client access protocols (LDAP, SCIM, REST) are managed from. Client certificates for TLS communication are also managed here. Token Validators, tuning limits and global attribute handling are also managed in this section.

Client Protocols - Manage supported LDAP controls and user-to-DN mapping from the Control Panel > Global Settings > Client Protocols > LDAP.

Manage the SCIM interface from Classic Control Panel.

Manage the REST interface from Control Panel > Global Settings > Client Protocols > REST.

Client Certificates - Manage client certificates from the Control Panel > Global Settings > Client Certificates.

Token Validators - External token validators allow applications to use an access token to call an API on behalf of itself. The API then responds with the requested data. For details on configuring external token validators, see: External Token Validators.

Tuning - Tuning topics include Limits, General Attributes Handling, Changelog Settings, and Log Settings.

Changelog - The changelog is one of the recommended approaches for other processes to detect changes that have happened to RadiantOne entries. For details, please see: Changelog

Log Settings - RadiantOne supports logging at different levels for different components. Logs for the different components are configured in the Control Panel > Global Settings > Tuning > Log Settings section. For details, please see: Log Settings

Admin

The Admin section is used for managing admin users, delegated roles and permissions, directory manager settings, control panel configurations, access tokens and view entry statistics reports.

Access Tokens

Manage Access Tokens from here.

Audit Logging

Audit logging tracks and records all changes made to your directory configuration. Enabling this helps maintain a detailed history of modifications for security and compliance purposes.

User Management

Manage delegated admin users from here.

Roles & Permissions

Manage default and custom roles from here.

Directory Admin Settings

Directory Manager Account The directory manager (cn=directory manager by default) is the super user for the directory and this account is defined during the RadiantOne install. For details on defining this account, see the Environment Operations Center Guide.

The super user is the only user that can log into the Control Panel while RadiantOne is not running. When you log into the Control Panel with this user, you can perform any of the operations described in Delegated Administration. Also, access permissions and password policies do not apply for this user. This safety measure prevents someone from accidentally denying the rights needed to access and manage the server. Access to this super user account should be limited. If you require many directory managers, add these as members to the Directory Administrator Role instead of having them all use the single super user account.

The RadiantOne super user account is associated with an LDAP entry in the RadiantOne namespace located at: cn=Directory Manager,ou=RootUsers,cn=config. Cn=Directory Manager,ou=RootUsers,cn=config is authorized the same as cn=Directory Manager.

To configure the Directory Manager username:

1. From Control Panel > Admin > Directory Manager Settings tab, locate the Directory Manager Account settings.

2. Enter the value in the USERNAME property.

   Warning

   The new value of the parameter should be in the same syntax: cn=<new user value>.

3. Click SAVE.

4. Restart the RadiantOne service.

5. Re-open the Control Panel.

6. Log in as the new username.

If you update the Directory Manager username, the LDAP entry in the RadiantOne namespace is located at: cn=Directory Manager,ou=RootUsers,cn=config is updated with a seeAlso attribute that contains the value of the new username. This allows the new username to be used to log into the Control Panel.

Directory Manager Password

The directory administrator (e.g. cn=directory manager) password is set during the install of RadiantOne and can be updated in Control Panel. You must know the current password to update the password. To change this password, from the Control Panel > Admin > Directory Manager Settings tab, locate the Directory Manager Account settings. Click an enter the old (current) password and the new value. Confirm the new value and click SAVE PASSWORD.

You can also change the directory administrator’s password via LDAP. The DN representing the directory administrator is: cn=Directory Manager,ou=RootUsers,cn=config. The example below is using an LDIF file and the ldapmodify command to modify the password:

dn: cn=Directory Manager,ou=RootUsers,cn=config
changetype: modify
replace: userPassword
userPassword: newpassword

An example of the syntax used in the command is shown below, assuming the LDIF file described above is named ChangePassword.ldif. You must bind as the cn=directory manager with the current password in order to update the password with this LDAP command.

ldapmodify.exe -D "cn=Directory Manager,ou=RootUsers,cn=config" -w currentpassword -h localhost -p 2389 -f c:\radiantone\ChangePassword.ldif

You can also change the directory administrator's password via REST (ADAP API). The following commands can be issued from a Linux client that is able to connect to the RadiantOne service's REST endpoint. Set the following on the Linux client:

REST_ENDPOINT="https://localhost:9101"
BIND_DN="cn=Directory Manager"
BIND_USER_DN="cn=Directory Manager,ou=rootusers,cn=config"
CURRENT_PASSWORD="MySuperSecretPassw0rd2"
NEW_PASSWORD="MySuperSecretPassw0rd3"
BASE64_USERNAME_PASSWORD=$(echo -n $BIND_DN:$CURRENT_PASSWORD | base64)

Run the following curl command on the Linux client:

curl -k --location --request PATCH "$REST_ENDPOINT/adap/$BIND_USER_DN" \
--header "Content-Type: application/json" \
--header "Authorization: Basic $BASE64_USERNAME_PASSWORD" \
--data '{
   "params": {
      "mods": [
       {
         "attribute": "userPassword",
         "type": "REPLACE",
          "values": [
           "'$NEW_PASSWORD'"
           ]            
          }
       ]
   }
}'

An example of using Postman as a REST client to update the cn=directory manager password is shown below.

1. Add an Authorization header that contains Basic with the base 64 encoded value for cn=directory manager:currentpassword. Use cn=directory manager in the authorization header value, not cn=Directory Manager,ou=RootUsers,cn=config. E.g.
   Basic Y249RGlyZWN0b3J5IE1hbmFnZXI6bmV3cGFzc3dvcmQxMjM=

2. Issue a PATCH operation with http://RESTENDPOINT:8089/adap/cn=Directory Manager,ou=RootUsers,cn=config with the following body:

{
    "params": {
        "mods": [
            {
                "attribute": "userPassword",
                "type": "REPLACE",
                "values": ["newpassword"]
            }
        ]
    }
}

Administrators Group DN

This parameter can be set to the DN of the Administrators group defined in the virtual namespace. The administrators group is checked for authorization purposes as members of this group do not have limits or password policy enforced for them. To manage this value, from the Control Panel > Admin > Directory Manager Settings Tab > Special Group section. Enter the value of a valid group DN located in the RadiantOne namespace.

Control Panel Configuration

Manage the OIDC Provider Configuration to support SSO into Control Panel from here.

Entry Statistics

Run Entry Statistics Reports from here.

File Manager

File Manager is available in the RadiantOne Control Panel under Manage > External Files.

RadiantOne does not expose its files through the operating system's user interface. Instead, File Manager provides a way to view, search, upload, download, and delete files stored under the RLI_HOME directory; create and rename folders inside the custom project; and build jar files. To open it, click External Files in the left navigation under Manage.

Admin(s) using File Manager must be assigned appropriate role(for example, Directory Administrators or FileManagerAdmin) with the required vdPrivileges:

• file-manager-read — view files
• file-manager-write — view and manage files

By default, only the Directory Administrators and FileManagerAdmin roles have these privileges.

When File Manager opens, it displays RLI_HOME as the default location. The current path is shown as a breadcrumb above the file list, and the total number of items appears at the bottom of the table.

To move through File Manager, click a folder in the main pane, or click any segment of the breadcrumb path at the top of the window. To go up one level, click the up-arrow button.

The file list is presented as a table with the following columns:

• Name — file or folder name, including extension
• Date — upload date and timestamp
• Size — file size

Click any column header to sort by that column. The sort direction toggles between ascending and descending on each click.

Use the Search in Current Folder bar at the top of the window to filter the list by file name.

Some file types are hidden from view by default. To show them, open the More options (…) menu and select Show Hidden Files. The same menu offers a Show Folders First option to group folders above files in the table. Pagination controls appear at the bottom of the table. Use the "Show …" per page selector and the page navigator to move through large folders.

Uploading Files

Files can be uploaded anywhere inside <RLI_HOME>, except at the <RLI_HOME> root itself. Certificate files (such as .cer) are now supported alongside all other file types.

To upload a file, click Upload File. In the Upload File dialog, drag and drop the file into the drop zone, or click choose a file to browse. Click Upload to submit. A confirmation toast appears when the upload completes, and an error toast is shown if the upload fails.

Selecting Files

Use the checkbox at the start of each row to select one or more files. Select the checkbox in the column header to select every file on the current page. Multi-select supports bulk download and bulk delete; an action bar appears at the bottom of the table showing the number of selected items and an Options button.

Downloading Files

To download files, navigate to the location and select one or more rows. Click the Download icon shown next to the selection (or in the row hover state for a single file). The browser downloads each selected file to the location indicated by your browser settings.

Deleting Files

To delete files, navigate to the location and select one or more rows. Click the Delete icon next to the selection. A confirmation toast appears when the deletion succeeds, and an error toast is shown if any file fails to delete.

Open Selection

Some file types — such as text, LDIF, XML, and jar files — can be viewed directly in File Manager. To view a file, navigate to its location, select a single row, and choose Open Selection from the row actions.

Creating and Renaming Folders

File Manager supports creating and renaming folders under RLI_HOME/vds_server/custom/src and any of its subfolders. This is useful when developing custom objects, where new folders correspond to Java packages.

To create a folder:

1. Navigate to RLI_HOME/vds_server/custom/src (or any subfolder beneath it).

2. Click the Create New Folder icon in the toolbar.

3. In the Create New Folder dialog, enter a folder name and click CREATE. The new folder appears in the file list immediately.

To rename a folder, navigate to its parent location, hover over the folder row, and click the rename (pencil) icon. Enter the new name and confirm the updated name is reflected in the UI without requiring a page refresh.

You can nest folders to any depth needed (for example, custom/src/com/rli/scripts/customobjects) to mirror your Java package structure.

Building Jar Files

File Manager can build jar files when you are inside the custom folder or any of its subfolders.

To build jar files:

1. In the left navigation, click Manage > External Files.

2. Browse to RLI_HOME/vds_server/custom or any folder within it. The Build button appears in the toolbar above the table.

3. Click Build and select an option from the drop-down:

   • Build All Jars
   • Build Sync Jars
   • Build Intercept Jars
   • Build Custom Jars
   • Build Change Event Jars

   

A Build Results panel displays the build output, including compile messages, the jar files produced, and any warnings.

Switch to Classic Control Panel

Some settings must be managed using the RadiantOne Classic Control Panel. To switch to Classic Control Panel, use the menu options for the logged in user in the upper right.

To reach the Server Control Panel from within the Classic Control Panel, click the Server Control Panel link at the top right. The Server Control Panel can be used for some service monitoring dashboards and accessing log files.

The following settings must be managed from the RadiantOne Classic Control Panel:

• Synchronization: Classic Control Panel > Synchronization tab
  See Synchronization for details.
• SCIM config (frontend): ​Classic Control Panel > Settings > Server Front End > SCIM
  See SCIM for details.
• Duplicates Handling​: Classic Control Panel > Settings > Server Front End > Duplicates Handling See Duplicates Handling for details.
• Control Panel customizations (lock, color theme, session timeout, max users, banner, custom message on login screen)​: ​Classic Control Panel > Settings > Server Front End > Administration
  See Customizing the Classic Control Panel for details.
• PCache Refresh Monitoring: Classic Control Panel > PCache Monitoring tab
  See Persistent Cache Refresh Monitoring for details.
• Intercluster Replication Monitoring: Classic Control Panel > Replication Monitoring tab
  See Replication Monitoring for details.
• Identity Data Analysis Wizard: Classic Control Panel > Wizards > Identity Data Analysis. See Identity Data Analysis for details.
• Global Identity Builder: Classic Control Panel > Wizards > Global Identity Builder. See Global Identity Builder for details.