To ensure proper integration, you must update your version of Identity Manager identity applications to recognize Identity Governance. The process includes copying files from the Identity Governance installation to the Identity Manager identity applications installation.
NOTE:Ensure that you have configured single sign-on for the Identity Manager identity applications. For more information, see
Linux:
Configuring Single Sign-on Access in Identity Manager
in the NetIQ Identity Manager Setup Guide for Linux.
Windows:
Configuring Single Sign-on Access in Identity Manager
in the NetIQ Identity Manager Setup Guide for Windows.
On the server where you installed Identity Governance, log in as an administrator.
Navigate to the /osp folder in the installation directory for Identity Governance. For example:
Linux: Default location of /opt/netiq/idm/apps/idgov/osp
Windows: Default location of C:\netiq\idm\apps\osp
Copy the uaconfig-ig-defs.xml file to a location or thumb drive that you can access from the server running Identity Manager identity applications.
Sign out of the server.
On the server where you installed the identity applications, log in as an administrator.
Stop the application server. For examples, see Stopping, Starting, and Restarting Tomcat.
Navigate to the conf directory of the application server.
Linux: Default location of /opt/netiq/idm/apps/tomcat/conf
Windows: Default location of c:\netiq\idm\apps\tomcat\conf
Place the uaconfig-ig-defs.xml file from the Identity Governance installation in the /conf directory.
In a text editor, open the configupdate.sh or configupdate.bat file.
Linux: Default location of /opt/netiq/idm/apps/UserApplication/configupdate.sh
Windows: Default location of c:\netiq\idm\apps\UserApplication\configudate.bat
In the file, add the following line before the -Duser.language entry:
-Dcom.netiq.uaconfig.impl.custom.clients=path_to_conf_dir/uaconfig-ig-defs.xml
For example:
-Dcom.netiq.uaconfig.impl.custom.clients=/opt/netiq/idm/apps/tomcat/server/IDMProv/conf/uaconfig-ig-defs.xml
Save and close the file.
Launch the configuration update utility. by running from the command prompt.
Linux: Enter:
./configupdate.sh
Windows: From a command line enter:
configupdate.bat
In the utility, select Identity Governance SSO Client.
NOTE:If the utility does not display the Identity Governance SSO Client tab, ensure that you copied the correct files from the Identity Governance installation to the identity applications installation.
Specify the values based on the OAuth SSO Client and Security Settings > General Service settings that you observed in Step 6 through Step 7 in Using the Same Authentication Server as Identity Manager.
Observe the following considerations for these settings:
By default, the OAuth client ID is iac. You specified the client ID and its password when you specified the client secret during the Identity Governance installation.
OAuth redirect URL must be an absolute URL and include the specified value for OAuth client ID. For example, http://myserver.host:8080/oauth.html. By default, the configuration utility provides some of this URL. However, you must ensure that you add the server and port information.
Save your changes and close the utility.
In the directory of the application server, clear out the /temp and /work directories.
Start the application server. For examples, see Stopping, Starting, and Restarting Tomcat.
Add a link to Identity Governance on the Identity Manager Home page.
For more information, see Identity Manager Dashboard
in the NetIQ Identity Manager - Administrator’s Guide to the Identity Applications.
On the Identity Governance server, start Identity Governance (and Tomcat). For examples, see Stopping, Starting, and Restarting Tomcat.