The next step is to modify the default provisioning policy
for IBM Verify Identity Governance.
Before you begin
Depending on how your system administrator customized your system, you might not
have access to this task. To obtain access to this task or to have someone complete it for you,
contact your system administrator.
You must first be logged on to the IBM Verify Identity Governance administrative console as itim manager.
About this task
A provisioning policy grants access to one or more managed
resources. You can use provisioning policies to define or set required
attributes. In this task, the IBM Verify Identity Governance administrator sets up a provisioning policy. This action
automates the provisioning of users into the system when the DSML
feed is reconciled. It provides users with a standard password so
that they can log on later to do tasks related to their user type.
This process is a simplified example of how Identity Manager fits into an HR on-boarding process.
To modify the
default provisioning policy for the Identity Manager service, complete these steps:
Procedure
- Log on to the administrative console as an administrator.
- From the navigation tree, click .
- On the Manage Provisioning Policy page,
click Search. A list of all provisioning policies
is shown.
- In the Provisioning Policies table,
click Default provisioning policy for ITIM.
- On the General notebook page, ensure
that the policy status is set to Enable. Click
the Entitlements tab.
- On the Entitlements notebook page,
complete these steps:
- Ensure that there is an entitlement named ITIM Service with a target type of Specific
Service and a provision option of Automatic. If the provisioning option is set to Manual, a user account cannot be created when the DSML feed is reconciled
and people are populated into the system.
- Check the box next to ITIM Service and click Parameters.
- On the Entitlement Parameter page,
click Create.
- On the Add New Parameter page, go
to the attribute table page, check the box next to Password and click Continue.
- On the Define Constant page, type secret as the password and click Continue. This procedure sets the default password of secret for all
users provisioned to ITIM Service.
In a production environment, do not create a standard password for
all users in a provisioning policy. It creates security vulnerabilities.
- On the Entitlement Parameter page,
click Continue.
- On the Entitlements notebook page,
click Submit.
- On the Schedule page, click Submit.
- On the Success page, click Close.