HP delivers an important new capability to support our ‘Identity as a Service’ strategy in addition to enabling out-of-the box integration with Service Center providing the only identity-enabled Service Catalog in the industry.
Highlights include:
SOA-based Identity Services (web services)
- WSDL for all exposed identity web services
- SPML 2.0
- SPML 2.0 core capabilities including dynamic generation of schema for service operations
- SPML 2.0 optional capabilities: Suspend, Set Password, and Reset Password
- Workflow reactivation using web services
Identity Services delivered through Service Catalog/Service Center
By enabling links to HP Service Center these features provide end-to-end handling and tracking of user requests from the helpdesk to the provisioning engine. This first phase of integration provides the following functions:
- Forward provisioning of operators into Service Center
- Service Center workflow for Select Identity allows for interaction between Select Identity and Service Center such as the creation, update and closure of helpdesk tickets
- Service Catalog integration makes three Select Identity activities available to be ‘ordered’ through the service catalog: add user, add service, and reset password
Ease of on-going IdM operations and maintenance
- Automatic provisioning database management provides the capability to manage the growing sizes of provisioning databases needed in large scale enterprises; for instance reduce database storage requirements by deleting email and request records according to configurable policies.
- UI-based multi-user (bulk) operations makes the functionality previously available through APIs and configurations now available through UI. Examples include the functionality to add or delete attribute values and entitlements to groups of users.
- Reconciliation termination & recovery allows an administrator to terminate, retry, or resubmit a reconciliation job.
Security enhancements
- Mutual authentication support provides an option for more secure communication between provisioning agents or web service clients and Select Identity, thereby providing better controls on changes the in the IAM environment.
- Key rollover (rotation) allows for update of keys used by Select Identity, and optionally re-encrypt data encrypted by old key.
Unified connector architecture
A new framework for agent based connectors has been architected that simplifies the deployment and configuration of different connectors by providing a unified framework for services common across different target systems; examples of such common services include security, mutual authentication of connectors and provisioning server, configuration and so on.
Information disclosed in this community becomes public.
Exercise caution when deciding to disclose your personal information.
HP reserves the right, but is not obligated to, edit or remove your comment if it contains personally identifiable information or other content HP deems unacceptable.
Opinions expressed are your personal opinions or those of the original authors, and not of HP.
Please see HP's web Terms of Use for more details.
