To meet varying customer requirements, Novell has introduced the Identity Manager 4.0.1 Standard Edition. The Standard Edition includes a subset of the features available in the Identity Manager Advanced Edition.
The Standard Edition continues to provide all the features that were present in the previous versions of Identity Manager:
Identity synchronization
Rule-based automated provisioning
Password management and password self-service
Identity self-service with existing white pages and organization charting functionality
NOTE:Integration modules continue to remain the same for both Identity Manager Advanced and Standard Editions.
In addition to the preceding list, the Standard Edition also includes the following features that are provided in the Advanced Edition:
User interface look and feel
Reporting module
Content packaging framework
Support for REST APIs and single sign-on (SSO)
Analyzer tool for reconciliation
Identity Manager 4.0.1 Standard Edition is available in a separate downloadable ISO. To upgrade from the Standard Edition to the Advanced Edition, use the Identity Manager Advanced Edition ISO. You need to apply the correct activation to be able to upgrade to the Advanced Edition. For more information on upgrading from the Standard Edition to the Advanced Edition, see the Identity Manager 4.0.1 Upgrade and Migration Guide.
You cannot use an Identity Manager Standard Edition ISO to switch from an existing Identity Manager Advanced Edition. To switch from the Identity Manager Advanced Edition to the Standard Edition, uninstall the Advanced Edition from your server and then install the Standard Edition ISO from the Identity Manager media.
The following functionality is not available in the Identity Manager Standard Edition:
The Role Mapping Administrator (RMA) is not available.
The following limitations apply to the User Application:
Identity Self-Service tab is the only tab available to business users: In the Standard Edition, if you log in to the User Application as a business user, the
tab is the only tab you see. If you log in as a User Application Administrator, you also see the tab.Roles and resources are not supported: The use of roles and resources requires the Advanced Edition. The
tab is not available in Standard Edition.Compliance tab is not supported:
tab requires the Identity Manager 4.0.1 Advanced Edition. The tab is not available in Standard Edition.Work Dashboard is not available: The
tab is not available in the Standard Edition.Custom roles are not supported: The ability to define custom roles is not available. The Standard Edition supports only system roles.
Workflows are not supported: The ability to initiate approval workflows is not supported.
REST APIs: The REST APIs related to roles, resources, and workflows are not licensed for use with Identity Manager Standard Edition. The Password Self-Service REST APIs are licensed to be used with the Standard Edition.
Security model is simplified: The Standard Edition offers the security model at a granular level to avoid the unintentional usage of the features provided in the Advanced Edition. You need to assign only the following administrator roles:
User Application Administrator: A User Application Administrator is authorized to perform all management functions related to the Identity Manager User Application. This includes accessing the
tab of the Identity Manager user interface to perform any administration actions that it supports.Report Administrator: This user has full range of capabilities within the Reporting domain. The Reporting Administrator can perform all actions for all objects within the Reporting domain.
Security Administrator: This role provides members the full range of capabilities within the security domain. The Security Administrator can perform all possible actions for all objects within the security domain. This role can delegate and grant user access to all Identity Manager Advanced Edition features; therefore, it is separated from User Application administration and report administration roles.
NOTE:For testing purpose, Novell does not lock down the security model in the Standard Edition. Therefore, the Security Administrator can assign all Domain Administrators, delegated administrators, and also other Security Administrators. However, using these advanced features is not supported in production, as indicated in the End User License Agreement. In production environments, all administrator assignments are restricted by licensing. Novell can collect monitoring data in the audit database to ensure that production environments comply. Also, Novell recommends that only one user be given the permission as the Security Administrator.
For more information on User Application features, see the User Application: Administration Guide.
The following limitations apply to the Identity Reporting Module:
Managed System Gateway Driver is disabled: The Managed System Gateway Driver can pull information from any managed system that has been enabled for data collection in Identity Manager 4.0.1, as long as it supports entitlements.
The Managed System Gateway Driver is disabled in Identity Manager Standard Edition.
Reports show Identity Vault data only: The reports generated with the Identity Manager Standard Edition show Identity Vault data only, and do not show data about managed (connected) systems.
Reports do not show historical data: The Standard Edition does not provide the ability to collect historical state data for reporting. With the Standard Edition, you can only see current state data.
Some reports are not available: Several new reports have been added in Identity Manager 4.0 and 4.0.1. The Standard Edition does not include reports that are applicable to connected system and historical data.
Some reports contain no data: Some of the reports are meaningful only if you have purchased the Identity Manager Advanced Edition because these reports use data that is not available in the Standard Edition, such as roles, resources, and workflow processes.