Personas and use cases - IBM Security Identity Manager
Different personas are involved with the setup and usage of IBM Security Identity Manager. Each persona is responsible for a set of tasks or workflows.
Virtual Appliance Admin
Tasks Subtasks Deploy ISIM .
Back up and restore the virtual appliance using snapshots Manage the snapshots Applying Fix Pack Use the fixpack command in the ISIM virtual appliance cli commands for ISIM. Upgrade Firmware Use the firmware_update command in the ISIM virtual appliance cli commands. Reconfigure the virtual appliance
ISIM Admin
Tasks Subtasks Configure system-wide organizational structure and roles, and policies for password.
- Create a node in an organization tree.
- Define password policies for the Identity account. For example, Set password expiry.
Create roles. Skip this task if the role exists. On-board Administrators. On-board Users On-board service types, service instances, and accounts. If the service type is not yet pre-configured. By default, these pre-configured service type profiles are imported in ISIM.
- POSIX AIX
- POSIX HP-UX
- POSIX Linux
- POSIX Solaris
- Windows Local
- Windows Active Directory
- IBM Security Privileged Identity Manager
On-board service types, service instances, and accounts.
- Create a specific Identity admin Role.
- Create a Service instance.
- Reconcile the accounts for the Service by using filters like erposixsecondgroup (for Linux) and erntlocalgroups (for Windows) where appropriate.
Assign users to role. (Optional) Update user roles (Optional) Update user group
Identity Admin
Tasks Subtasks Assign users to role. (Optional) Update user roles (Optional) Update user group Modifying groups.
Identity User
The Identity user uses ISIM self-service UI for the following tasks.
Tasks Subtasks Change password Change user passwords. Reset password
Identity User Manager
The User Manager uses ISIM self-service UI for the following task.
Tasks Subtasks Approve role requests Parent topic: Get started