What's new in this release

The documentation updates are current for IBM® Security Identity Manager Version 6.0.2.5.

Note: For the most current information on late-breaking release and product documentation updates, go to https://www.ibm.com/support/pages/node/1107633.

IBM Security Identity Manager Version 6.0.2.5

The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.5.

Middleware, platform and open-source component updates
IBM Security Identity Manager Version 6.0.2.5 uses the upgraded versions of the key middleware, platform and open-source components. For detailed system requirements, see Hardware and software requirements.
Defect fixes and documentation updates
This product version delivers various defect fixes and documentation updates. For more information, see the readme file available on IBM Fix Central.

IBM Security Identity Manager Version 6.0.2.4

The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.4.

Uninstallation of Security Identity Manager

Use the uninstallation program to remove Security Identity Manager.

Note: You must use IBM Java to uninstall the product. You can specify Java using LAX_VM option.
The Security Identity Manager uninstallation program performs the following tasks:
  • Removes all the files in the ISIM_HOME directory that the Security Identity Manager installation program created. It removes the certificates in the ISIM_HOME\cert directory and the itimKeystore.jceks keystore file in the ISIM_HOME\config\keystore directory.
  • Clears all the configuration settings that were created for the Security Identity Manager Server on the WebSphere® Application Server.
  • Removes the Security Identity Manager Server from these computers:
    • Single-Server configuration: The computer that has the WebSphere Application Server.
    • Cluster configuration: The computer that has the deployment manager. Uninstallation from the deployment manager removes the availability of the Security Identity Manager Server to the cluster. The deployed Security Identity Manager application files are automatically removed from Security Identity Manager cluster members.
Reboot the Windows operating system after uninstallation to clean up any residual Security Identity Manager files that were not removed during the uninstallation process.

New property added to enroll.properties

A new property enrole.search.limit is added to enrole.properties to specify the maximum number of items to return by a SOAP search API.

Documentation updates

The documentation includes the following updates, changes or fixes:

IBM Security Identity Manager Version 6.0.2.3

The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.3.

Identity Server

The Identity Server includes the following new features, enhancements or changes:

Updated notes and considerations for removing the deprecated self-service user interface
  • IBM Security Identity Manager continues to include the deprecated self-service user interface. IBM suggests that you consider removing the self-service user interface.
    Note: IBM suggests that you uninstall the earlier version of the deprecated self-service user interface.

    To remove the deprecated self-service user interface, take one of the following actions:

    • Install IBM Security Identity Manager Version 6.0.2 Fix Pack 3 and select the Uninstall option when prompted.
    • Uninstall the existing self-service user interface manually. See the following technote.

Documentation

The documentation includes the following updates, changes or fixes:

  • Added note with considerations on removing the deprecated self-service user interface in the Identity Service Center documentation. See Service Center for Employees.
  • Updated reference information for a known JavaScript extension and properties that should have been documented.
    • For information about the updated JavaScript extension, see ProcessLogExtension and ProcessLog.
    • For information about the updated properties challenge.response.random.question.<number> and show.random.challenge.missing.user, see ui.properties.

IBM Security Identity Manager Version 6.0.2.2

The following functions are new or changed for IBM Security Identity Manager Version 6.0.2.2.

Identity Server

The Identity Server includes the following new features, enhancements or changes:

Middleware, platforms, and open source component support
  • Added support for IBM Db2® Standard Edition 11.5

See Hardware and software requirements.

REST API enhancements
You can now add, modify, search and delete life cycle rules by using REST API. See the REST API documentation in $ISIM_HOME/extensions/6.0/doc/REST_API_Doc.
Identity Service Center enhancements
  • The administrator can now customize the title that is displayed when the activity is listed on the Manage Activities and Decisions page in Identity Service Center by providing a custom title template while designing workflow nodes like RFI, Work Orders, Approvals and Recertification Approval.
  • Added option in Identity Service Center to show or hide the prompt to change the password for all other accounts when you log on for the first, after you reset the password by using the Forgot password option in Identity Service Center. Configure this behavior from ui.properties. This property takes effect only when password sync is disabled.

    See ui.isc.forgotPassword.promptPasswordChangeOnFirstLogin in ui.properties.

  • The Identity Service Centre now informs the user that synced accounts are changed when password sync is enabled while resetting the password.

Documentation

The documentation includes the following updates, changes or fixes:

Note: For the most current information on late-breaking release and product documentation updates, go to https://www.ibm.com/support/pages/node/1107633.

IBM Security Identity Manager Version 6.0.2

Identity Server

The Identity Server includes the following new features, enhancements or changes:
Manage access for multiple roles, services, and groups
You can now manage access for multiple roles, services, groups. See the following pages:
Support for persona switching

In the Identity Service Center, you can now switch between the Manage Self or Manage Others personas. Switch personas so that you can choose to manage your own identity transactions or choose to enable support to manage transactions for other users. See Switching personas in the Identity Service Center.

REST API enhancements
  • Enhanced the REST API so that you can create, search, modify, delete, and look up an Identity Policy.
  • Enhanced the REST API so that you can self-register a person.
Middleware, platforms and open source component support
  • Added support for IBM WebSphere® Application Server 9.0.5.
  • Added support for IBM Security Directory Integrator 7.2, Fix Pack 5 or later.
  • Added support for IBM Cognos® Analytics Server, Version 11.0.13.

For more information, see Hardware and software requirements.

Identity Service Center enhancements
  • Display only those accesses that are tagged with the Common Access flag in the top-level access list page. For example, when you first see the Select Access page.

    To see the new properties for configuring how accesses are displayed, see UIConfig.properties.

  • Introduced an option to switch personas between Manage Self and Manage Others. In the Manage Self view or persona, the logged in user can see only tasks meant for them. In the Manage Others view you can only see tasks that are meant for others (subordinates).
  • Added user recertification. See User Recertification Details
  • Added the ability to cancel pending requests.
  • The Self-Service User Interface console, which was available in earlier versions, is now deprecated. Instead , you will now switch to the Manage Self persona in Identity Service Center.
Java™ API enhancements

Enhanced the Java APIs so that you can create and delete an Identity policy.

Other enhancements

Addressed performance issues with Gather License metrics lifecycle rule.