We are in initial phase of integrating the customers HP SM tool with IDM (Identity Management) for fulfillment of service requests (Like create new user account in an applications, grant roles, unlock accounts etc).
The requirement is that user will submit request using HP SM and the HP SM sends the request to IDM and IDM will provision the request.
Since we do not have any idea on SM, appreciate if anyone can share what are the options that we can consider to integrate with the IDM.
Following are few options we are considering and not sure how easy/complex it is to be done in SM
1. SPML call to IDM
2. Create a LDAP record (in VDS/IDM)
3. Webservice call to IDM
Please let us know if SM is capable of doing SPML or LDAP request to IDM?
Is IDM the Oracle product "Identity and Access Manager"?
If so, please have in mind that we don’t have documentation that straight explains how to integrate IDM with Service Manager. And it is not mentioned in our support matrices as officially supported.
In general SM can do: - DB authentication - authenticate against an LDAP, or - use SSO based on Integrated Windows Authentication (using IIS), or - using HTTP Header authentication (like Webseal, Siteminder and maybe Oracle IDM does). HTTP Header authentication could be used if IDM puts the credentials in a header. Or you need to provide the details what can be used from your Oracle API so that we can map it to our solutions. This is a matter of configuration, and in case you need help, I recommend you to turn to HP Professional Services team.
Hope this helps!
----- If you find this or other posts helpful, please do not forget to click the Kudo Star or to mark it as a Solution if you are the owner of the thread. Thanks :)
If the SM does not support OOTB integration with any IDM, can the Solution manager be customized (Probably by HP Professional Team) to send the service request to IDM in one of the ways mentioned below
2. Call webservice methods which are published in IDM
3. Write the request as LDAP entry in a directory
4. Write the requests in a external database table.