Manualshelf

Installation guide

ManualsBrandsQ-See ManualsComputer equipmentRemote Client Software V 4.0.1
11121314151617181920
14 Identity Manager 4.0.1 Framework Installation Guide
Section 2.1.4, “Interviewing All Stakeholders,” on page 16
Section 2.1.5, “Creating a High-level Strategy and an Agreed Execution Path,” on page 16
2.1.1 Defining Current Business Processes
Identity Manager automates business processes to easily manage identities in your environment. If
you do not know what the current business processes are, you cannot design an Identity Manager
solution that automates those processes. You can use the Architecture mode of Designer to capture
your current business processes and display them graphically. For more information, see “Architect
Mode” in the Designer 4.0.1 for Identity Manager 4.0.1 Administration Guide.
For example, you company might identify the following business processes:
When an employee is terminated, the user account in the e-mail system is deleted, but the user’s
account in all other systems is disabled, not deleted.
The format for a user’s e-mail address.
The systems or resources that sales employees can access.
The systems or resources that managers can access.
What systems generate new accounts? Is it the human resource system or is it through a
workflow request?
A password policy for the company that defines how often a password changes, how complex
the password is, and which systems are synchronizing the password.
As you define your business processes, use the following list of items to help you understand all of
the processes:
Define or clarify the current business issues.
Determine what initiatives are required to address these issues.
Determine which services and systems are affected by these initiatives.
This step allows you to create a high-level overview of what your business is currently doing and
what processes need to be improved. For example, Figure 2-1 uses Designer to show how new user
accounts are generated from the PeopleSoft system. They are synchronized into the Identity Vault
and then synchronized into Lotus Notes and Active Directory. Passwords are being synchronized
between Active Directory and the Identity Vault. Accounts are synchronizing into the Notes system,
but no accounts are synchronizing back to the Identity Vault.