Configuration Guide › Connecting to Endpoint Systems › CA IAM Connector Server Connectivity Use Cases › Unmanaged Endpoints

Unmanaged Endpoints

Goal

You do not have an existing CA IdentityMinder12.5 SP8 (or later) deployment. You want to implement CA GovernanceMinder to perform certification on the privileges across the organization.

Environment Description

You have an Active Directory server, two UNIX servers, three Oracle databases, and a RACF managed Mainframe. You do not have CA IdentityMinder installed.

Process

1. Install CA GovernanceMinder.
2. In the CA GovernanceMinder Portal, go to Administration, Connector Server Management.
3. Create all seven endpoints in the CA IAM Connector Server.

   Note: When defining the RACF connector, you are using the CA GovernanceMinder-specific RACF connector and not the one included with CA IdentityMinder.

4. In the universe, go to the Connectivity tab and define multiple endpoint connectors.

   These connectors are run simultaneously in a multi-import job.

   Define all connectors by selecting the CA IAM Connector Server and, in each connector, select the correct endpoint. During this process, select the Active Directory server as the primary (As Users) connector.

5. Run an import.

   All data is imported through the CA IAM Connector Server. The selected endpoint permissions are modeled as resources, and business roles on the endpoint are modeled as roles.

Note the following:

• Export is not supported in this scenario.
• CA GovernanceMinder correlation is invoked on accounts of all endpoints except Active Directory. The Active Directory users appear as CA GovernanceMinder users, whereas the users of other endpoints appear as CA GovernanceMinder accounts.