CA Identity Governance Configuration Guide › Connecting to Endpoint Systems › CA IAM Connector Server Connectivity Use Cases › Unmanaged Endpoints

Unmanaged Endpoints

Goal

You do not have an existing CA Identity Manager12.5 SP8 (or later) deployment. You want to implement CA Identity Governance to perform certification on the privileges across the organization.

Environment Description

You have an Active Directory server, two UNIX servers, three Oracle databases, and a RACF managed Mainframe. You do not have CA Identity Manager installed.

Process

1. Install CA Identity Governance.
2. In the CA Identity Governance Portal, go to Administration, Connector Server Management.
3. Create all seven endpoints in the CA IAM Connector Server.

   Note: When defining the RACF connector, you are using the CA Identity Governance-specific RACF connector and not the one included with CA Identity Manager.

4. In the universe, go to the Connectivity tab and define multiple endpoint connectors.

   These connectors are run simultaneously in a multi-import job.

   Define all connectors by selecting the CA IAM Connector Server and, in each connector, select the correct endpoint. During this process, select the Active Directory server as the primary (As Users) connector.

5. Run an import.

   All data is imported through the CA IAM Connector Server. The selected endpoint permissions are modeled as resources, and business roles on the endpoint are modeled as roles.

Note the following:

• Export is not supported in this scenario.
• CA Identity Governance correlation is invoked on accounts of all endpoints except Active Directory. The Active Directory users appear as CA Identity Governance users, whereas the users of other endpoints appear as CA Identity Governance accounts.