Tag Archive for: IBM Tivoli Identity Manager

Using Tivoli Federated Identity Manager to Get What You Want

/0 Comments/in , /by
  1. You want to enhance your company’s business-to-business and business-to-consumer collaborations with centralized user access management through application integration and secure authentication.
  2. You want to improve the experience of users at your company and lower costs through business-to-consumer user self-care and federated access control to on and off premises applications.
  3. You want to enable single sign-on (SSO) for external users to internal applications and for internal users to cloud-based applications.
  4. You want to provide web fraud detection and prevention capabilities through risk-based access control.

You want a lot!!!!!    Lucky for you there is …………

Tivoli Federated Identity Manager (TFIM)

IBM Tivoli Federated Identity Manager is an access-management solution that provides web and federated SSO to end users across multiple applications.  TFIM allows collaboration across an organization’s business ecosystem and plays a key role in businesses extending their application access to business partners, customers and consumers. TFIM provides the ability for internal users to access externally hosted applications, including cloud-based applications and business partner applications. Read more

ITIM Provisioning Policy Priority

/0 Comments/in , , /by

A provisioning policy in ITIM (IBM Tivoli Identity Manager) basically grants access and set entitlements to the ITIM managed services based on the provisioning policy membership.

Each provisioning policy consists of information and settings on the following tabs:

  • General
  • Members
  • Entitlements

Of course, there are factors to consider: Role Memberships, service selection policies and policy join behaviors to name a few but this blog is just looking at the value of the required priority attribute.

The priority setting is a required value on the General tab of the provisioning policy configuration.  This is a required numeric attribute and the lower the number the higher the priority of the Provisioning Policy. Read more

Using IBM Tivoli Identity Manager to recertify Active Directory Groups

/0 Comments/in , , , /by

Its audit time and you’re responsible for recertifying approximately 75 Active Directory Groups and each group has a membership of about 10 to 30 people.  An email needs to be sent to every manager for them to confirm the person still needs to be a member of the group.  You have to provide information to the Auditors to confirm that each person in each of these groups has been verified.  Before you can send out the verification requests to the managers you have to confirm each Active Directory Account has the correct person contact information and manager information.  All this has to be done in the next 30 days.

What are you going to do?  Book an early tee time!

How is this possible? Read more