IBM expert Ori Pomerantz has been securing computer networks (and showing others how to do it too) since 1995. Pomerantz joined IBM in 2003 and since then, he has written classes on several IBM security products, including IBM Security zSecure™. He is also a co-author of the IBM Press publication Mainframe Basics for Security Professionals: Getting Started with RACF, 2007. In this white paper, "IBM Tivoli Identity Manager 5.1: Delegating Approval," Pomerantz explains how to write a customizable workflow that lets approvers delegate approvals and ask for justifications to use in IBM Security Identity Manager.
See Downloads for the full white paper. The following sections outline what you will learn from the white paper.
The steps you'll learn
In the white paper, Pomerantz covers the following instructions:
- As part of the design phase, how to delegate a decision that requires approval or rejection (for example, whether a service owner should clear or reject provisioning requests). This includes the requirements for the workflow and the approach for creating the workflow (adding a request for information node (RFI) to the limited boolean decision node (accept or reject).
- Exploring the data structure of an RFI node. How to repurpose existing attributes of the other entity types to define RFI node fields (Decision, Approver, Justification).
- Writing the actual workflow by adding relevant data variables, constructing or importing an RFI node, testing the RFI node, adding an approval node for a select delegate, adding manager approval, and asking for and displaying account justification.
Pomerantz also takes you on a short tour of how to move from prototype to production.
Explore the topics and technologies in this article:
- IBM Security Identity Manager helps organizations comply with regulations, manage risks and implement identity governance. It automates the creation, modification, recertification and termination of user privileges throughout the user lifecycle.
- Explore the IBM Security Framework for cutting-edge knowledge on IT security issues.
- Start your journey to implement IT security through pragmatic, intelligent, and risk-based practices at Security on developerWorks.
- Follow developerWorks on Twitter.
- Watch developerWorks on-demand demos ranging from product installation and setup demos for beginners, to advanced functionality for experienced developers.
Get products and technologies
- Evaluate IBM products in the way that suits you best: Download a product trial or try a product online.
- Get involved in the developerWorks Community. Connect with other developerWorks users while exploring the developer-driven blogs, forums, groups, and wikis.