NetIQ Identity Manager 4.5 Integration Module for Mainframes

1.0 Overview

The NetIQ® Identity Manager 4.5 Integration Module for Mainframes comes with two provisioning options: Bidirectional and Fan-Out. With these options, you have the full range of capabilities to satisfy your authentication and data provisioning needs.

2.0 Version Support

Connected Platform

Versions Supported by Bidirectional Driver

z/OS*

1.13. 2.1, 2.2

Core Driver Platform

Versions Supported by Core Driver

Windows*

Any supported by the Identity Manager version in use

Linux

Any supported by the Identity Manager version in use

Solaris

Any supported by the Identity Manager version in use

2.1 Security System Version Support

Connected Platform

Versions Supported by Bidirectional Driver

Versions Supported by Fan-Out Platform Services

RACF*

(supported z/OS version)

(supported OS version)

Top Secret*

r12, r14, r15

N/A

ACF/2*

r15

r12, r14, r15

3.0 Feature Overview

Feature

Bidirectional

Data Publishing from Platform to Identity Manager

Yes

Data Subscribing from Identity Manager to Platform

Yes

Provisioning to Hundreds of Platforms with a Single Driver

No

Bidirectional Password Synchronization

Yes

Administrative Password Resets from Platform

Yes

Administrative Password Resets to Platform

Yes

End User Password Replication to and from Platform

Yes

Authentication Redirection

No

Enforcement of Universal Password Rules on Platform Login

No

Universal Password Replication Support

Yes

Event-Triggered REXX Scripts for Provisioning

Yes

Event- and Poll-Based Publishing

Yes

Role-Based Entitlements and Approval Workflow

Yes

Audit Enabled

Yes

Password Self-Service Support

Yes

iManager Plug-In

Yes

Password Failure Email Notification Support

Yes

APIs to Simplify Programmatic Directory Access

No

4.0 Bidirectional Overview

The Bidirectional driver provides complete integration with Identity Manager for full data and password synchronization. This driver provides data customization with Identity Manager policies, using standard security system commands. Each subscribed eDirectory™ data change event is converted into a security system command. Security system commands are captured and published to Identity Manager for appropriate eDirectory updates.

5.0 Fan-Out Overview

The Fan-Out driver provides for delegated logic and control to your system administrators. You can process any Identity Manager data change event with a script on the platform. The Fan-Out driver provides for fan-out to hundreds of systems from a single driver. Authentication redirection provides login support for Universal Password, accessing a central repository for login and password rules. Full bidirectional password synchronization is also supported.

The Fan-Out driver has two components: the Core Driver and Platform Services. The Core Driver provides event fan-out to target platforms running Platform Services. A single core driver can support many platforms running Platform Services, regardless of platform operating system.

6.0 Legal Notice

THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT ARE FURNISHED UNDER AND ARE SUBJECT TO THE TERMS OF A LICENSE AGREEMENT OR A NON-DISCLOSURE AGREEMENT. EXCEPT AS EXPRESSLY SET FORTH IN SUCH LICENSE AGREEMENT OR NON-DISCLOSURE AGREEMENT, NETIQ CORPORATION AND OMNIBOND SYSTEMS, LLC. PROVIDE THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SOME STATES DO NOT ALLOW DISCLAIMERS OF EXPRESS OR IMPLIED WARRANTIES IN CERTAIN TRANSACTIONS; THEREFORE, THIS STATEMENT MAY NOT APPLY TO YOU.

For purposes of clarity, any module, adapter or other similar material ("Module") is licensed under the terms and conditions of the End User License Agreement for the applicable version of the NetIQ product or software to which it relates or interoperates with, and by accessing, copying or using a Module you agree to be bound by such terms. If you do not agree to the terms of the End User License Agreement you are not authorized to use, access or copy a Module and you must destroy all copies of the Module and contact NetIQ for further instructions.

This document and the software described in this document may not be lent, sold, or given away without the prior written permission of NetIQ Corporation and Omnibond Systems, LLC., except as otherwise permitted by law. Except as expressly set forth in such license agreement or non-disclosure agreement, no part of this document or the software described in this document may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, electronic, mechanical, or otherwise, without the prior written consent of NetIQ Corporation and Omnibond Systems, LLC.. Some companies, names, and data in this document are used for illustration purposes and may not represent real companies, individuals, or data.

This document could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein. These changes may be incorporated in new editions of this document. NetIQ Corporation and Omnibond Systems, LLC. may make improvements in or changes to the software described in this document at any time.

U.S. Government Restricted Rights: If the software and documentation are being acquired by or on behalf of the U.S. Government or by a U.S. Government prime contractor or subcontractor (at any tier), in accordance with 48 C.F.R. 227.7202-4 (for Department of Defense (DOD) acquisitions) and 48 C.F.R. 2.101 and 12.212 (for non-DOD acquisitions), the government’s rights in the software and documentation, including its rights to use, modify, reproduce, release, perform, display or disclose the software or documentation, will be subject in all respects to the commercial license rights and restrictions provided in the license agreement.

© 2018 Omnibond Systems, LLC. All Rights Reserved. Licensed to NetIQ Corporation. Portions copyright © 2018 NetIQ Corporation. All Rights Reserved.

For information about NetIQ trademarks, see https://www.netiq.com/company/legal/.