Identity Cloud managed object schema

Managed objects and their properties are defined in the default Identity Cloud managed object schema.

The default schema includes these types of managed objects:

Each managed object type contains properties for storing information about objects of that type. For example, the user object type has properties for storing usernames, passwords, email addresses, and so forth.

You can extend the default Identity Cloud managed object schema to meet your needs:

Add new managed object types. For more information, refer to Create and modify object types.
Specify default values for object properties. For more information, refer to Default Values.
Derive object property values from other object property values, known as virtual properties. For more information, refer to Calculate properties based off other properties.

To store custom data for users, do not extend the default Identity Cloud managed object schema. Instead, use one of the generic extension attributes provided in the default user object schema. Use the generic extension attributes instead.

It is recommended to not delete the default managed objects in your tenant. In many cases it can break your tenant.

The IDM admin UI depends on the presence of the default managed object types and the default properties nested within them. If you remove any of these schema elements, and you use the IDM admin UI to configure Identity Cloud, you must modify the IDM admin UI code accordingly. For example, if you remove the assignment object type from the managed object configuration, the UI will throw exceptions wherever it queries this schema element.