Technical Solutions

Most NAM setups involve a Load Balancer (LB) fronting either the Access Gateway or Identity Server nodes. When these Load Balancers are set up in SNAT / Proxy mode, the IP address of the incoming request will be that or the LB and not the users IP address. Any NAM decisions that perform an action…

By: ncashell
Aug 28, 2015
4:40 pm
Reads:
85
Score:
5
This entry is part 2 of 2 in the series What’s new in Validator for Identity Manager 1.4

Validator for Identity Manager version 1.4 was recently released and it adds a bunch of interesting new features. I like writing about new features in products to share the news, but also makes me think about them in…

geoffc
By: geoffc
Aug 28, 2015
4:29 pm
Reads:
71
Score:
5

Tracing IDM drivers can be difficult, especially if you have a lot of policies. Designer has a colored trace view, but mixes all drivers. The log files are missing the nice colors. This IDM designer plugin tries to make tracing IDM drivers simpler. It provides the following features…

By: scauwe
Aug 28, 2015
9:10 am
Reads:
105
Score:
5
This entry is part 1 of 2 in the series What’s new in Validator for Identity Manager 1.4

What’s new in Validator for Identity Manager 1.4The Validator team have recently released version 1.4 and I thought I would go through and explain what is new in this version. I have done this for IDM releases, Designer releases, and some driver updates…

geoffc
By: geoffc
Aug 21, 2015
3:28 pm
Reads:
131
Score:
4.5

NetIQ technical services gets a lot of requests from customers reporting poor ratings when evaluated by SSLLABs tool. The following document outlines some changes that will hopefully help move you towards an A+ rating. Changes Needed on Access Manager Appliance or Access Gateway Appliance You must have a certificate using SHA 256 to obtain…

By: ncashell
Aug 20, 2015
12:46 pm
Reads:
181
Score:
5

There is a bug in the installation script which can cause some gateways to not install the NetIQ software on the SLES Access Gateway Appliance. After the SLES installation the script calls on: ma-config which is…

EricVeysey
Aug 20, 2015
11:49 am
Reads:
131
Score:
5

I had a requirement to give some people the possibility to change passwords for lower grade students and it was ok to give this right out per school and they had ~15 schools. The first thing I did was to create one group for each school and the groups have the right to see the…

+ read more

Aug 19, 2015
11:20 am
Reads:
123
Score:
Unrated
This entry is part 2 of 2 in the series Active Directory Password Troubleshooter Tool

In part 1 of this article series I talked about the new Password Troubleshooter tool that comes with IDM 4.5. Over the years we have mocked Novell, then NetIQ for what is known as stealth marketing. This is one of those examples.

geoffc
By: geoffc
Aug 14, 2015
4:12 pm
Reads:
190
Score:
5

While Identity Tracking is a powerful add-on that allows you to view an identity’s activity from a holistic approach, there are some limitations due to restrictions by the event source. For Identity Tracking to function, the event must contain 3 vital pieces of information…

ScorpionSting
Aug 14, 2015
3:39 pm
Reads:
282
Score:
5

Recently there has been a lot of hoopla over security vulnerabilities such as POODLE and logjam and others. To help mitigate and/or resolve some of these issues, more strict implementations of SSL/TLS protocols and various ciphers may have to be used.

By: khurni
Aug 6, 2015
10:29 am
Reads:
249
Score:
5