Here comes a new stable version of CzechIdM called Garnet. Big milestone feature is new automatic roles by attribute.
Automatic role by attribute
The role can be linked with value in attribute (value can be stored in Identity, Identity extended attribute, Contract and Contract extended attribute). That role is assigned to and removed from a user based on the value in the specific attribute. Recalculating of this automatic roles is done after saving identity, identity extended attribute attributes, contract and contract extended attribute attributes. All necessary attributes that defined automatic role by attribute are defined by agenda “Automatic role by attribute”.
More about automatic roles you can find here.
How to set automatic role by attribute tutorial is here.
Synchronization – Attribute cache
The attribute in system mapping can be cached. New mapping attribute is marked as ‘cached’ by default.
- The cache key is a mapped attribute and attributes from the end system.
- The value is the transformed value from the system.
More about system scheme and mapping you can find here.
More details about the topics can be found in product Documentation. If you have any questions or comment, feel free to comment on redmine, github or email me on firstname.lastname@example.org. Also join our google group to keep in touch with CzechIdM news.
Garnets are a group of silicate minerals that have been used since the Bronze Age as gemstones and abrasives.
All species of garnets possess similar physical properties and crystal forms, but differ in chemical composition. The garnets make up two solid solution series: pyrope-almandine-spessartine and uvarovite-grossular-andradite.
Virtual systems is one of main section in CzechIdM. In CzechIdM you can have many connected systems. But not for all systems is necessary to be connected directly. For example system with a few users can be connected as virtual system, because connection to system like that will not be used that many times like on other systems, so you can save time and connect these systems like virtual systems.
Virtual system is not directly connected to CzechIdM and all changes have to be made manually by administrator. CzechIdM sends to administrator notification with precise information about create, update or delete account on virtually connected system. Administrator can see which lines has been changed and what was there before change and what will be there after change. And all these tasks are stored in ‘Archive’.
Workflow is a magic word almost like MAC, both has several meanings. Which meaning is the right one in case of workflow? What does it represent in the identity management context, you will find out in the article.
CzechIdM 7 is the latest generation of the identity manager, which administers over 3 million user accounts in not only Czech companies. Our experience from managing identities of our existing customers has been used during its development. This version is the answer to requests of users, administrators, and developers.
Check out our online demo at http://demo.czechidm.com/ and see our precious.
Three weeks after the Diamond was released, here comes a new stable version of CzechIdM called Emerald. It provides many interesting new features as well as some bugfixes. Check out the post to see what brings the latest version of our identity manager.
If you have a system connected to CzechIdM, e.g. MS Active Directory, on which you want to control provisioning operations (create, update, delete) the provisioning brake is the right choice. With provisioning brake you have control over how many operations for a specified system is done over a defined period of time. It is also possible to set a warning or disable limit for each operation. After exceeding the each limit administrators are notified by email.
How can an identity management help in your company? Here are key benefits for different employee roles in the organization.
- Password reset
- New permissions and accounts requests
- Overview of current permissions and accounts
- Overview of contracted positions, contact information
Virtual systems are supported
A virtual system is a system, that can not be directly connected for online management. The reason may be for example the absence of a suitable system connector. The virtual system is basically only a registration mode, where for each system change is generated the implementation request (notification) that is assigned to the particular implementer. This implementer must ensure that the change is made to the target system.
Identity manager helps on the field of privileges management. It can solve tasks like roles evidence and distribution or role assignment to users. Another benefit of identity manager is that role assignment can usually be driven by workflow and user tasks. How does it work in CzechIdM, you will find out in the article.
Zveme Vás na workshop zabývající se problematikou Identity Managementu (IDM) vzhledem ke směrnici GDPR.
Téma: Identity Management a GDPR
Kdy: 14.11.2017 v 9:00 hodin
Kde: BCV solutions s. r. o., 7. května 1168/70, 106 00 Praha 4 – Chodov, 149 00
Workshop je bezplatný, počet míst je omezen. Občerstvení je zajištěno. Pdf pozvánka.