Novell IDENTITY MANAGER 3.6.1 Overview
Hide thumbs
Also See for IDENTITY MANAGER 3.6.1:
- Installation manual (104 pages) ,
- Reporting manual (54 pages) ,
- Manual (20 pages)
Related Manuals for Novell IDENTITY MANAGER 3.6.1
Summary of Contents for Novell IDENTITY MANAGER 3.6.1
- Page 1 AUTHORIZED DOCUMENTATION Overview Novell ® Identity Manager 3.6.1 June 05, 2009 www.novell.com Identity Manager 3.6.1 Overview...
- Page 2 Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
- Page 3 Novell Trademarks For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/ trademarks/tmlist.html). Third-Party Materials All third-party trademarks are the property of their respective owners.
- Page 4 Identity Manager 3.6.1 Overview...
-
Page 5: Table Of Contents
Contents About This Guide 1 Identity Manager and Business Process Automation Data Synchronization ............10 Workflow . - Page 6 Identity Manager 3.6.1 Overview...
-
Page 7: About This Guide
For documentation on other Identity Manager drivers, see the Identity Manager Drivers Web site (http://www.novell.com/documentation/idm36drivers/index.html). Documentation Conventions In Novell documentation, a greater-than symbol (>) is used to separate actions within a step and items in a cross-reference path. ® A trademark symbol ( , etc.) denotes a Novell trademark. - Page 8 Identity Manager 3.6.1 Overview...
-
Page 9: Identity Manager And Business Process Automation
The following information identifies some of the business processes you can automate through the ® implementation of a Novell Identity Manager system. If you are already aware of the business automation solutions provided by Identity Manager, you might want to skip to the technical introduction provided in Chapter 2, “Identity Manager Architecture,”... -
Page 10: Data Synchronization
Identity Manager lets you synchronize, transform, and distribute information across a wide range of applications, databases, operating systems, and directories such as SAP*, PeopleSoft*, Lotus Notes*, Microsoft* Exchange, Microsoft Active Directory*, Novell eDirectory , Linux and UNIX, and LDAP directories. - Page 11 Identity Manager Connecting Multiple Systems Figure 1-2 Novell PeopleSoft eDirectory Identity Microsoft Lotus Notes Manager Exchange Microsoft LDAP Linux Active Directory Directory You control the flow of data among the connected systems. Among other things, you determine what data is shared, which system is the authoritative source for a piece of data, and how the data is interpreted and transformed to meet the requirements of other systems.
- Page 12 User Account Creation in Connected Systems Figure 1-4 User A Identity Manager Active Linux Lotus Notes Directory User A User A User A As part of its data synchronization capability, Identity Manager can also help you synchronize passwords between systems. For example, if a user changes his or her password in Active Directory, Identity Manager can synchronize that password to Lotus Notes and Linux.
-
Page 13: Workflow
Password Synchronization among Connected Systems Figure 1-5 User A Password: Novell Active Directory Identity Manager Linux Lotus Notes Password: Novell Password: Novell User A User A 1.2 Workflow More than likely, user access to many of the resources in your organization doesn’t require anyone’s approval. -
Page 14: Roles And Attestation
Approval Workflow for User Provisioning Figure 1-6 Request Granted Active Directory Request Request Request Issued Approved Approved John John’s Manager Workflows can be initiated automatically whenever a certain event occurs (for example, a new user is added to your HR system) or initiated manually through a user request. To ensure that approvals take place in a timely manner, you can set up proxy approvers and approval teams. -
Page 15: Self-Service
You can have users automatically added to roles as a result of events that occur in your organization (for example, a new user being added to your SAP HR database with the job title of Attorney). If approval is required for a user to be added to a role, you can establish workflows to route role requests to the appropriate approvers. -
Page 16: Auditing And Reporting
Change their passwords, set up a hint for forgotten passwords, and set up challenge questions and responses for forgotten passwords. Rather than asking you to reset a password because they’ve forgotten it, they can do it themselves after receiving a hint or responding to a challenge question. - Page 17 All resource provisioning for a user over a specific period of time. All resource provisioning for all users over a specific period of time. Novell Sentinel is sold separately from Identity Manager. Identity Manager and Business Process Automation...
- Page 18 Identity Manager 3.6.1 Overview...
-
Page 19: Identity Manager Architecture
Identity Manager Architecture ® The following diagram shows the high-level architecture components that provide the Novell Identity Manager capabilities introduced in Chapter 1, “Identity Manager and Business Process Automation,” on page 9: data synchronization, workflow, roles, attestation, self-service, and auditing/reporting. -
Page 20: Data Synchronization
Identity Manager Architecture Components Figure 2-2 User Workflow Application Roles & Attestation User Role Application Service Driver Driver Driver Driver Self-Service Data Synchronization Application Identity Vault Driver Application Remote Loader Driver Metadirectory Engine Platform Agent Auditing Reporting Novell Sentinel Identity Manager 3.6.1 Overview... -
Page 21: Components
Identity Vault and then sent to the Lotus Notes system. In addition, the Identity Vault stores information specific to Identity Manager, such as driver configurations, parameters, and policies. Novell eDirectory is used for the Identity Vault. - Page 22 document, the Metadirectory engine uses the document to initiate the appropriate changes to the Identity Vault (Publisher channel), or the driver uses the document to initiate the appropriate changes in the connected system (Subscriber channel). Data Manipulation: As XML documents flow through a driver channel, the document data is affected by the policies associated with the channel.
-
Page 23: Workflow, Roles, Attestation, And Self-Service
Approval workflows: For example, the creation of an employee in the finance department can trigger an automatic e-mail to the finance department head requesting approval for a new employee account in the finance system. The finance department head is directed by the e-mail to a Web page where the department head approves or rejects the request. - Page 24 Engine Platform Agent Auditing Reporting Novell Sentinel The following sections provide descriptions of each of these components and explain the concepts you should understand to effectively implement and manage the components: Section 2.2.1, “Components,” on page 25 Section 2.2.2, “Key Concepts,” on page 25...
-
Page 25: Components
2.2.1 Components User Application: The User Application is a browser-based Web application that gives users and business administrators the ability to perform a variety of identity self-service and roles provisioning tasks, including managing passwords and identity data, initiating and monitoring provisioning and role assignment requests, managing the approval process for provisioning requests, and verifying attestation reports. -
Page 26: Auditing And Reporting
Platform Agent: The Platform Agent captures events from the Metadirectory engine and sends the events to the Novell Sentinel system. Novell Sentinel: Novell Sentinel is a security information and event management (SIEM) solution that automates the collection, analysis, and reporting of system network, application, and security logs. - Page 27 For a more complete introduction to Novell Sentinel, including how to purchase the product, see the Novell Sentinel site (http://www.novell.com/products/sentinel/). Identity Manager Architecture...
- Page 28 Identity Manager 3.6.1 Overview...
-
Page 29: Identity Manager Tools
Identity Manager Tools Identity Manager provides three primary tools to help you set up and maintain your Identity Manager system: Designer, iManager, and the User Application administration console. You use Designer to create and configure your Identity Manager system in an off-line environment and then deploy your changes to your live system. -
Page 30: Imanager
Novell products, including Identity Manager. By using the Identity Manager plug-ins for iManager, you can manage Identity Manager and receive real-time health and status information about your Identity Manager system. -
Page 31: User Application Administration Console
Novell iManager Figure 3-2 Development, Compliance and Administration IDM plug-ins for iManager Test/Production Environment Identity Manager Driver ID Vault Status Configure (running) Administration Driver Health & Health/Status Statistics IDM Engine 3.3 User Application Administration Console The User Application provides a Web-based administration console that allows you to configure, manage, and customize password self-service, roles, and provisioning. - Page 32 User Application Administration Pages Figure 3-3 The User Application Administration page provides the following tabs: Application Configuration: Lets you configure caching, LDAP parameters, logging, themes, and password module setup. Page Administration: Lets you create new pages or customize existing Identity Self-Service pages Portlet Administration: Lets you create new portlets or customize the existing portlets used on the Identity Self-Service pages.
Need help?
Do you have a question about the IDENTITY MANAGER 3.6.1 and is the answer not in the manual?
Questions and answers