A.1 Product Requirements

The Approvals app has the following prerequisites:

  • On the Identity Applications server:

    • Identity Manager 4.5 Advanced Edition or later

    • Identity Manager Roles Based Provisioning Module 4.5 or later

    • Designer for Identity Manager 4.5 or later with User Application driver and latest User Application Base package installed

    • Enable SSL using valid Certificate Authority (CA) issued certificate. For detailed information on configuring and enabling SSL in your Identity Manager environment, see Using SSL for Secure Communication.

  • On the device: Apple iPhone or iPad with Apple iOS 5, iOS 6, or iOS 7 operating system.

Enabling Non-Administrators to Use the Approvals App

If you want users who are not provisioning administrators on Identity Applications server to use the Approvals app, you must open the SOAP endpoints used by the server and the Approvals app to non-provisioning administrator users.

NOTE:Opening SOAP endpoints to non-provisioning administrator users does not compromise security. Identity Manager continues to enforce all other existing security checks.

Complete the following steps to open the SOAP endpoints on the Identity Applications server:

  1. Stop the server.

  2. Back up the existing ism-configuration.properties file.

    NOTE:By default, the ism-configuration.properties file is located at /opt/netiq/idm/apps/tomcat/conf.

  3. Open the ism-configuration.properties file and change the following configuration file properties to the specified values:

    Property

    Value

    WorkflowService/SOAP-End-Points-Accessible-By-ProvisioningAdminOnly

    false

    WorkflowService/soap/addComment

    false

    WorkflowService/soap/getComments

    false

    VirtualDataService/soap

    false

  4. Save and close the file.

  5. Start the server.