Novell IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010 Manual
Staging best practices guide
Hide thumbs
Also See for IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010:
- Reference manual (546 pages) ,
- Installation manual (104 pages) ,
- Manual (78 pages)
Related Manuals for Novell IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
Summary of Contents for Novell IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- Page 1 AUTHORIZED DOCUMENTATION Identity Manager 3.6.1 Staging Best Practices Guide Novell ® Identity Manager 3.6.1 June 24, 2010 www.novell.com Identity Manager 3.6.1 Staging Best Practices Guide...
- Page 2 Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
- Page 3 Novell Trademarks For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/ trademarks/tmlist.html). Third-Party Materials All third-party trademarks are the property of their respective owners.
- Page 4 Identity Manager 3.6.1 Staging Best Practices Guide...
-
Page 5: Table Of Contents
Contents About This Guide 1 Overview What is Staging ............. 9 Staging Use Cases . - Page 6 Identity Manager 3.6.1 Staging Best Practices Guide...
-
Page 7: About This Guide
Please use the User Comments feature at the bottom of each page of the online documentation, or go to www.novell.com/documentation/feedback.html and enter your comments there. Documentation Updates For the most recent version of the Novell Identity Manager 3.6.1 Staging Best Practices Guide, visit Identity Manager Web site (http://www.novell.com/identity/access/identity_integration). Additional Documentation Understanding Designer for Identity Manager (http://www.novell.com/documentation/... - Page 8 Identity Manager 3.6.1 Staging Best Practices Guide...
-
Page 9: Overview
Identity Manager projects, certain other configurations must also be taken care of. Novell Identity Manager Best Practices Staging Guide provides step-by-step procedures to move your Identity Management solutions from one stage to the subsequent stages. The guide helps you to reduce complexity in your Identity Manager deployment process, by helping you to test your Identity Manager project at multiple stages before it is live. -
Page 10: Staging Use Cases
configuration on another Identity Manager deployment. You must make certain other changes that are discussed in this guide. Designer can also export Identity Manager environments into a single configuration file and use the file later in a different environment. You can also use any version control system to distribute projects. -
Page 11: Preparing For Staging
Make sure that you are familiar with the basic principles of directory design. A uniform directory design simplifies administrative tasks for staging. For more information on directory design, refer to Directory Design for Identity Management Solutions (http://www.novell.com/coolsolutions/ appnote/14533.html). 2.2 Drivers You must create a common data model to allow drivers to work together. -
Page 12: Simulation And Staging
For more information on using GCVs, see When and How to Use GCVs (http://www.novell.com/documentation/ncmp10/rk12_architecture/data/bg9dfeg.html) in the Identity Manager Resource Kit 1.2 Architecture Reference Guide. 2.2.3 Simulation and Staging The Policy Simulator allows you to test and debug a single policy or a group of policies contained in a policy set or all the policies in a driver or a driver set without implementing the policy in the Identity Vault. -
Page 13: Objects That Designer Does Not Model
2.4 Objects That Designer Does Not Model Feature Description O (Organization) Ensure that O or OU objects are created before deploying them. and OU Import the containers that contain O or OU objects. The following objects must be (Organizational Unit) included in O or OU objects: All O or OU objects that are Security Equivalences objects for any drivers. -
Page 14: Rights
NOTE: These objects are not modeled as drivers or driver sets in Designer. They can be modified by modifying the LDIF file that contains these objects in Designer. For more information, refer to Enabling Staging of Projects (http://www.novell.com/documentation/designer35/admin_guide/data/ staging_projects.html) in the Designer 3.5 Administration Guide (http://www.novell.com/... -
Page 15: Jobs
There are several reasons why you might want to make the policy a trustee of an object: One of the policy’s entitlements requires the policy’s members to have rights to an object. You want to use the policy to assign users as trustees of an object even though rights to the object are not required for an entitlement. - Page 16 Identity Manager 3.6.1 Staging Best Practices Guide...
-
Page 17: Staging A Project
Staging a Project This section contains the following information: Section 3.1, “Prerequisites,” on page 17 Section 3.2, “Staging,” on page 19 Section 3.3, “Post-staging,” on page 22 3.1 Prerequisites Ensure that the following general prerequisites are met before attempting the staging: All the stages have the same version of eDirectory, Identity Manager, and Identity Manager drivers. -
Page 18: Importing Objects
3.1.1 Importing Objects 1 In Designer, right-click Identity Vault and select Live > Import Additional Objects. 2 Browse to and select the objects you want to add to the LDIF file. Identity Manager 3.6.1 Staging Best Practices Guide... -
Page 19: Staging
If you want to select all the objects in a container, select Import sub-containers also in the Browse Identity Vault dialog box. 3 Click Continue on the Import Dialog to import all the objects into Designer. 4 Repeat Step 1 through Step 3 for all the Identity Vaults in your projects. - Page 20 2 To use the first stage project in the subsequent stages, you should rename it. 2a In the project view, right-click the first stage project and select Rename. 2b In Designer, click File >Import to import the project exported in Step 2c In the Import window, select Designer for Identity Manager >...
- Page 21 9 To deploy the Identity Vault, right-click ID Vault > Live > Deploy. 10 Deploy the appropriate Security Equivalences and Exclude Admin Roles objects for each driver. See Section 2.5, “Rights,” on page 14 for more information. Staging a Project...
-
Page 22: Post-Staging
11 Repeat Step 4 through Step 10 for each Identity Vault in your project. 3.3 Post-staging Designer does not move all the configurations to the next stage. Users are expected to manually perform a few tasks to ensure that the configurations work properly. Security Equivalences and Exclude Admin Roles: Check whether all the drivers have appropriate Security Equivalences and Exclude Admin Roles objects as defined in the previous stage. - Page 23 You can visit each Identity Vault server and collect the customized index information by doing the following: ® 1. In Novell iManager, click the Roles and Tasks tab. 2. Click eDirectory Maintenance > Index Management. 3. Select a server from the list of available servers.
- Page 24 Identity Manager 3.6.1 Staging Best Practices Guide...
-
Page 25: Best Practices In Moving Objects Across Stages
Best Practices in Moving Objects Across Stages If you delete drivers and driver sets from Stage 2 in order to deploy the drivers from Stage 1, you can lose the associations. Don't deploy the Stage 1 objects directly into the Stage 2 environment. Always use the configuration file, the exported project archive files, and the LDIF files of the Stage 1 setup. - Page 26 Identity Manager 3.6.1 Staging Best Practices Guide...