3.29 NetIQ Identity Manager

NetIQ Identity Manager centralizes the administration of user access and ensures that every user has one identity from your physical and virtual networks to the cloud. For more information about Identity Manager, see the Identity Manager Documentation page.

The NetIQ Identity Manager adapter allows you to view events from the Identity Manager User Application database and Web Service in Operations Center.

To integrate NetIQ Identity Manager:

  1. Ensure that the following files are present in the OperationsCenter_install_path/integrations/ext/IDM/4.5 directory:

    • SOAPClient.jar

    • SOAPAPI.jar

  2. Create an Identity Manager adapter.

    For more information about creating an adapter, see Section 2.1, Creating an Adapter.

  3. Modify the adapter properties.

    If you only want to see events for one of the components (the database or the Web Service) in Operations Center, only modify the properties for that component.

    For more information about modifying the properties, see Section A.38, NetIQ Identity Manager.

3.29.1 Supported IDM Servers

Currently, Identity Manager version 4.5 is the only supported version.

3.29.2 Default Hierarchies

By default, events brought into Operations Center are grouped by activity type or attestations.

NOTE:In Identity Manager, only users who are assigned to the Compliance Administrator role for the Compliance tab can view attestion requests. However, because of limitations of the SOAP API that Operations Center uses to integrate with Identity Manager, Operations Center cannot validate the role assignments for Identity Manager users and allows any Identity Manager user to view attestation requests in Operations Center.

3.29.3 Hierarchy File

The integration ships with a default hierarchy file, IDMhierarchy.xml, located by default in the OperationsCenter_install_path/database directory. The file contains a list of all of the available attestation elements and activity elements that the Operations Center XML generator can evaluate. Use the file to select the activity and attestation element classes to display in Operations Center. For more information, see Section 9.0, Using the HierarchyFile.

3.29.4 Configuring the Dashboard Integration

To configure the Operations Center Dashboard:

  1. Start the Operations Center Dashboard.

    For detailed steps and descriptions, see Starting and Stopping the Dashboard in the Operations Center Dashboard Guide.

  2. On the installation server, using your Web browser, access the URL of the Dashboard server (http://server:dashboard_port).

  3. Use the Sign In portlet to log in using the Operations Center admin account.

  4. Click Welcome and select Control Panel.

  5. Do the following to create the Identity Manager site:

    1. Click Add.

    2. In the Name field, type Identity Manager.

    3. (Optional) In the Description field, type a description.

    4. Click Save.

  6. Do the following to import Identity Manager configurations:

    1. In the Control Panel, click Sites.

    2. Click Identity Manager, and then click Import.

    3. On the New Import Process tab, drop the .lar file that you want to import or click Select File, navigate to /OperationsCenter_Dashboard_installation_path/IDMAdapter/IDMAdapter.lar, and then click Open.

    4. Click Continue and then select all of the sub-options under Permissions.

    5. When presented with the Update Data options, select Mirror.

      Mirror should be selected by default. The import will fail with any other option.

    6. Click Import.

      When successful, the IDM Activity and IDM Compliance tabs display in the dashboard.