What's new in this release
The documentation updates are current for IBM® Security Identity Manager Version 6.0.2.5.
IBM Security Identity Manager Version 6.0.2.5
The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.5.
- Middleware, platform and open-source component updates
- IBM Security Identity Manager Version 6.0.2.5 uses the upgraded versions of the key middleware, platform and open-source components. For detailed system requirements, see Hardware and software requirements.
- Defect fixes and documentation updates
- This product version delivers various defect fixes and documentation updates. For more information, see the readme file available on IBM Fix Central.
IBM Security Identity Manager Version 6.0.2.4
The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.4.
Uninstallation of Security Identity Manager
Use the uninstallation program to remove Security Identity Manager.
- Removes all the files in the ISIM_HOME directory that the Security Identity Manager installation program created. It removes the certificates in the ISIM_HOME\cert directory and the itimKeystore.jceks keystore file in the ISIM_HOME\config\keystore directory.
- Clears all the configuration settings that were created for the Security Identity Manager Server on the WebSphere® Application Server.
- Removes the Security Identity Manager Server from these computers:
- Single-Server configuration: The computer that has the WebSphere Application Server.
- Cluster configuration: The computer that has the deployment manager. Uninstallation from the deployment manager removes the availability of the Security Identity Manager Server to the cluster. The deployed Security Identity Manager application files are automatically removed from Security Identity Manager cluster members.
New property added to enroll.properties
A new property enrole.search.limit is added to enrole.properties to specify the maximum number of items to return by a SOAP search API.
Documentation updates
The documentation includes the following updates, changes or fixes:
- Updated the Password strength rules.
IBM Security Identity Manager Version 6.0.2.3
The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.3.
Identity Server
The Identity Server includes the following new features, enhancements or changes:
- Updated notes and considerations for removing the deprecated self-service user interface
-
- IBM Security Identity Manager continues to include the deprecated
self-service user interface. IBM suggests that you consider removing the self-service user interface.Note: IBM suggests that you uninstall the earlier version of the deprecated self-service user interface.
To remove the deprecated self-service user interface, take one of the following actions:
- Install IBM Security Identity Manager Version 6.0.2 Fix Pack 3 and select the Uninstall option when prompted.
- Uninstall the existing self-service user interface manually. See the following technote.
- IBM Security Identity Manager continues to include the deprecated
self-service user interface. IBM suggests that you consider removing the self-service user interface.
Documentation
The documentation includes the following updates, changes or fixes:
- Added note with considerations on removing the deprecated self-service user interface in the Identity Service Center documentation. See Service Center for Employees.
- Updated reference information for a known JavaScript extension and properties that should have
been documented.
- For information about the updated JavaScript extension, see ProcessLogExtension and ProcessLog.
- For information about the updated properties
challenge.response.random.question.<number>
andshow.random.challenge.missing.user
, see ui.properties.
IBM Security Identity Manager Version 6.0.2.2
The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.2.
Identity Server
The Identity Server includes the following new features, enhancements or changes:
- Middleware, platforms, and open source component support
-
- Added support for IBM Db2® Standard Edition 11.5
- REST API enhancements
- You can now add, modify, search and delete life cycle rules by using REST API. See the REST API documentation in $ISIM_HOME/extensions/6.0/doc/REST_API_Doc.
- Identity Service Center enhancements
-
- The administrator can now customize the title that is displayed when the activity is listed on the Manage Activities and Decisions page in Identity Service Center by providing a custom title template while designing workflow nodes like RFI, Work Orders, Approvals and Recertification Approval.
- Added option in Identity Service Center to show or hide the prompt to change the password for
all other accounts when you log on for the first, after you reset the password by using the Forgot
password option in Identity Service Center. Configure this behavior from
ui.properties. This property takes effect only when password sync is
disabled.
See
ui.isc.forgotPassword.promptPasswordChangeOnFirstLogin
in ui.properties. - The Identity Service Centre now informs the user that synced accounts are changed when password sync is enabled while resetting the password.
Documentation
The documentation includes the following updates, changes or fixes:
- Updated topics about how to apply fix packs. See Fix pack installation.
- Moved IBM Security Identity Manager server migration topics to a technote. See https://www.ibm.com/support/pages/node/6220428.
- Updated notes on escape characters in comma-separated value files. See Example comma-separated value (CSV) file.
- Updated schema documentation with a previously missing attribute,
erAccountCategory
and a new attribute,erLastAction
. See erAccountItem.
IBM Security Identity Manager Version 6.0.2
Identity Server
- Manage access for multiple roles, services, and groups
-
You can now manage access for multiple roles, services, groups. See the following pages:
- Support for persona switching
-
In the Identity Service Center, you can now switch between the Manage Self or Manage Others personas. Switch personas so that you can choose to manage your own identity transactions or choose to enable support to manage transactions for other users. See Switching personas in the Identity Service Center.
- REST API enhancements
-
- Enhanced the REST API so that you can create, search, modify, delete, and look up an Identity Policy.
- Enhanced the REST API so that you can self-register a person.
- Middleware, platforms and open source component support
-
- Added support for IBM WebSphere® Application Server 9.0.5.
- Added support for IBM Security Directory Integrator 7.2, Fix Pack 5 or later.
- Added support for IBM Cognos® Analytics Server, Version 11.0.13.
For more information, see Hardware and software requirements.
- Identity Service Center enhancements
-
- Display only those accesses that are tagged with the Common Access flag
in the top-level access list page. For example, when you first see the Select
Access page.
To see the new properties for configuring how accesses are displayed, see UIConfig.properties.
- Introduced an option to switch personas between Manage Self and Manage Others. In the Manage Self view or persona, the logged in user can see only tasks meant for them. In the Manage Others view you can only see tasks that are meant for others (subordinates).
- Added user recertification. See User Recertification Details
- Added the ability to cancel pending requests.
- The Self-Service User Interface console, which was available in earlier versions, is now
deprecated. Instead , you will now switch to the Manage Self persona in
Identity Service Center.
- Switching personas in the Identity Service Center
- Service Center for Employees
- To configure the visibility of the persona switching option in Identity Service Center, see the ui.enablePersona property in UIConfig.properties.
- Display only those accesses that are tagged with the Common Access flag
in the top-level access list page. For example, when you first see the Select
Access page.
- Java™ API enhancements
-
Enhanced the Java APIs so that you can create and delete an Identity policy.
- Other enhancements
-
Addressed performance issues with Gather License metrics lifecycle rule.