Previous Topic: Explore and Correlate FunctionalityNext Topic: Determine Audit Requirements

Implementation GuidePlanning Your ImplementationDecide What to ManageProvisioning Accounts from Other ApplicationsHow to Configure Support for Provisioning

How to Configure Support for Provisioning

After deciding to implement provisioning, you complete the following high-level steps.

  1. Use the CA IdentityMinder Server installer to install the CA IdentityMinder Server, the Provisioning Server, the Provisioning Directory Initialization, and the Administrative Tools.

    Note: For more information about installing CA IdentityMinder components, see the Installation Guide.

  2. Configure the Provisioning Manager to connect to the CA IdentityMinder Server.

  3. Configure Provisioning in the CA IdentityMinder Management Console:
    1. Enable Provisioning.
    2. Configure an environment for Provisioning by completing the following:
      • Importing custom role definitions
      • Configuring an inbound administrator
      • Connecting the environment to the Provisioning Server.

    Note: For more information, see the Configuration Guide.

  4. Create endpoints in the User Console.

    This allows CA IdentityMinder to manage the endpoint.

    Note: For more information about endpoint management, see the Administration Guide.

  5. Explore and correlate the endpoint.

    When you explore an endpoint, CA IdentityMinder finds the objects in the endpoint and stores instances of them in the provisioning directory. This action populates the provisioning directory with accounts and other objects found in the endpoint.

    When you correlate accounts on an endpoint, CA IdentityMinder associates them with a global user in the provisioning directory. You may choose whether the correlate function creates any global users that are not present or whether it associates accounts with no matching global user to the [default user] global user.

  6. Create and maintain endpoint accounts by using account templates, which contain the attributes that are used to create accounts.
  7. Associate the account templates with provisioning roles.

    When you assign provisioning roles to users, CA IdentityMinder creates accounts in the associated endpoints for those users.

    Note: For information about account templates and provisioning roles, see the Administration Guide.