Previous Topic: CA IdentityMinder Managed EndpointsNext Topic: Mixed Universe with Custom Endpoints - Example 1

CA IdentityMinder Integration GuideIntegration ConceptsConnectivity Use CasesMixed Universe

Mixed Universe

Goal

You have a newly installed CA IdentityMinder 12.5 SP8 (or later) deployment with only a limited number of endpoints managed through CA IdentityMinder. You want to implement CA GovernanceMinder to perform certification on the privileges across the organization and use your new CA IAM Connector Server connectors.

Environment Description

You have an Active Directory server, two UNIX servers, three Oracle databases, and a RACF managed Mainframe. You have a newly installed CA IdentityMinder system, in which only one UNIX server and two Oracle databases are defined and managed. Now, you want to perform certifications on the privileges across the organization.

Process

  1. Install CA GovernanceMinder.
  2. Go to Administration, Connector Server Management and create the Active Directory endpoint, the RACF endpoint, and the unmanaged UNIX and Oracle endpoints.

    Note: When defining the RACF connector, you are using the CA GovernanceMinder-specific RACF connector and not the one included with CA IdentityMinder.

  3. In the universe, under the Connectivity tab, define a connector to CA IdentityMinder. Within it, select the managed UNIX and Oracle endpoints. Select the CA IdentityMinder Connector as the primary (As Users) connector.
  4. Define connectors for the unmanaged endpoints (the ones you created in Step 2) by selecting the CA IAM Connector Server and, in each connector, select the correct endpoint.
  5. Run a multi-import job by selecting all the connectors.

    All unmanaged endpoint data is imported through the CA IAM Connector Server. All managed endpoint data is imported using the CA IdentityMinder connectors. The selected endpoint permissions are modeled as resources and the provisioning roles and account templates are mapped to roles.

Note the following: