The Approvals app has the following prerequisites:
On the Identity Applications server:
Identity Manager 4.5 Advanced Edition or later
Identity Manager Roles Based Provisioning Module 4.5 or later
Designer for Identity Manager 4.5 or later with User Application driver and latest User Application Base package installed
Enable SSL using valid Certificate Authority (CA) issued certificate. For detailed information on configuring and enabling SSL in your Identity Manager environment, see Using SSL for Secure Communication.
On the device: Apple iPhone or iPad with Apple iOS 5, iOS 6, or iOS 7 operating system.
If you want users who are not provisioning administrators on Identity Applications server to use the Approvals app, you must open the SOAP endpoints used by the server and the Approvals app to non-provisioning administrator users.
NOTE:Opening SOAP endpoints to non-provisioning administrator users does not compromise security. Identity Manager continues to enforce all other existing security checks.
Complete the following steps to open the SOAP endpoints on the Identity Applications server:
Stop the server.
Back up the existing ism-configuration.properties file.
NOTE:By default, the ism-configuration.properties file is located at /opt/netiq/idm/apps/tomcat/conf.
Open the ism-configuration.properties file and change the following configuration file properties to the specified values:
Property |
Value |
---|---|
WorkflowService/SOAP-End-Points-Accessible-By-ProvisioningAdminOnly |
false |
WorkflowService/soap/addComment |
false |
WorkflowService/soap/getComments |
false |
VirtualDataService/soap |
false |
Save and close the file.
Start the server.