Configuration Guide › Connecting to Endpoint Systems › CA IAM Connector Server Connectivity Use Cases › Deep Analysis of an Endpoint - Example 1

Deep Analysis of an Endpoint - Example 1

Goals

You want to implement CA GovernanceMinder to perform privilege cleanup and role mining over your data.

Environment Description

You have a number of custom or third-party systems that support an LDAP or JDBC connection. It is assumed that the implementation team has developed dynamic connectors for the custom or third-party systems using Connector Xpress.

Note: When developing the dynamic connector using Connector Xpress, each attribute has a new flag named Interesting for Compliance. The attributes with this flag represent privileges that must be certified in CA GovernanceMinder. For more information, see the Extended Metadata Properties section of the Connector Xpress Guide.

Process

1. Install CA GovernanceMinder.
2. After the new dynamic connector is ready, use Connector Xpress to push its definition to the CA IAM Connector Server installed with CA GovernanceMinder.
3. In the CA GovernanceMinder Portal, go to Administration, Connector Server Management.
4. Define the SAP endpoint in the CA IAM Connector Server.
5. In the universe, go to the Connectivity tab.
6. Define a connector. Select the CA GovernanceMinder CA IAM Connector Server and specify the dynamic endpoint. Within it, map some endpoint objects (that you defined with the "Interesting for Compliance" flag) to CA GovernanceMinder roles and others to CA GovernanceMinder resources.
7. Run an import. All data is imported through the CA IAM Connector Server connector.

   The resources and roles appear as mapped.

Note the following:

• Export is supported in this scenario.
• Correlation is irrelevant in this scenario, as it only works with one system.