Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

User Access Manager for IBM Connections (UAM)

10,633 views

Published on

The User Access Manager (UAM) features management of
- External (Guest) Users for IBM Connections
- Internal Users “Terms of Use” Acceptance
and much more

Published in: Software

User Access Manager for IBM Connections (UAM)

  1. 1. TIMETOACT GROUP, Cologne, Germany (Release 3.0, September 2015)
  2. 2. Whats new in UAM 3.0 More flexible Password-Rules Instant access with usercreation via Rest-API without TDI Writing user in Groupdocument (names.nsf = LDAP) for instant access to Connections-Communities
  3. 3. Whats new in UAM 3.0 Inviter can use an additional personal text for invitations Deletion of user from the Internet Lockout Database (after set a new password) Better overview of the registration forms and registrations views (Notes Client) Protocoll of all send mails to a registration (Notes Client)
  4. 4. Instant Access UAM – User Access Manager for IBM Connections Release 3.0, Sept. 2015 Invite new users to your IBM Connections based Extranet and grant them access instantly Have users register themselves and grant them access instantly Approve internal invitations or external registrations and grant access instantly UAM 3.0 eliminates the waiting time for Tivoli Directory Integrator / IBM Connections Profile Synchronization
  5. 5. Managing Users is Surprisingly Complex…
  6. 6. IBM ConnectionsBrowser Domino External Community ProfilesUAM Create/Sync User External User Internal User Internal Content Internal Approver 7. Create LDAP User 9. Create/Sync User 14. Access External Community 1. Invite External User 2. Request Approval 6. Accept Invitation, Set PW, Accept Terms of Use 4. Send Invitation / Confirmation 3. (Auto) Approve / Reject 11. Invite / Add User to External Community 12. Send Information Mail 10. Notify Invitation Acceptance 5. Optional: Invitation Expiration Updated Terms of Use Require Reacceptance Password Recovery / Unlock User / Password Change Dis- & Enable User Update PW Delete User Sync User Setup • Access Rights • Layout • Mail Texts, Messages • Terms of Use • PW Quality • Remember Password • Invitation Expiration Disable User 13. Authenticate User with Password Remembrance UAM - User Access Management at a Glance.. Optional: Self Register as an External User Reports & Logs • List, sort and search External Users by Username, Mail etc. • Log everything… 8. Add to LDAP Group
  7. 7. UAM manages… External (Guest) Users for IBM Connections Internal Users “Terms of Use” Acceptance Password Recovery Password Quality and much more…
  8. 8. User Access Manager (UAM) Features Workflow Features: Internal Users CNX Access Invitations to External Users Access Requests from External Users User Features: Password Change Password Reset
  9. 9. Manage Internal Users “Social Media Guidelines” / “Terms of Use” must be accepted before access to IBM Connections is granted documentation of acceptance require a new acceptance for new versions of Guidelines / Terms of Use Change Password Password Reset
  10. 10. Invite External Users Request external Users internally Request form can be customized, configurable fields Approve Invitation Request internally (optional) Send invitation mail to external Users with secure activation link activation link can be used only once activation link expires after X hours Require external Users to set custom Password Minimum Password Strength Require external Users to accept Guidelines/Terms of Use
  11. 11. External Users Request Access External Users Request Access Request form can be customized, configurable fields Form is Captcha protected Approve External Access Request Send invitation mail to external Users with secure activation link activation link can be used only once activation link expires after X hours Require external Users to set custom Password Minimum Password Strength Require external Users to accept Guidelines/Terms of Use
  12. 12. Approval Workflow Notify Approver of external and internal User Access Requests by Mail and in Request Overview User Access Manager can approve or deny Access Request If Access Request is approved a notification mail with activation Link will be send to external Users If Access Request is denied a notification mail will be send to requesting User (external User or internal Inviter)
  13. 13. Password Management Password Reset / Change Security Measures Captcha protected forms Password Expiration Intervals with E-Mail Reminder Double Opt-In Mail processes Minimum Password Strength Features for all Users (internal and external)
  14. 14. Administration / Configuration User Roles for Inviter/Approver Multi Lingual Web UI Configurable Fieldnames for LDAP Synchronization Guideline Version Management Specify Minimum Password Strength
  15. 15. Architecture / System Requirements Domino Application Administration & Configuration with Notes Client Works with any (existing or new) Domino Directory All CNX supported browsers (IE8+, etc.) Customizable Web UI
  16. 16. Browser Domino IBM Connections UAM Architecture External Community ProfilesUAM LDAP Create, Retrieve, Update, Delete User Create or Sync User (via REST or TDI)External User Internal User • Invitation*, Approval* of ext. Users • Terms of Use Acceptance** • Password Change**, Recovery** • Registration** • Terms of Use Acceptance** • Password Change**, Recovery** * Optional, depending on assigned access rights ** Optional, depending on configuration Internal Content External Community Access IBM Connections Access
  17. 17. External User Access Management E1. Invitation Workflow (no Approval) E2. Invitation & Approval Workflow E3. Self Registration Workflow (no Approval) E4. Self Registration & Approval Workflow E5. Password Change E6. Password Recovery E7. Delete User
  18. 18. Browser Domino IBM Connections E1. Invitation Workflow (no Approval) External Community ProfilesUAM LDAP 4. Create LDAP User 7. Create/Sync User External User Internal User Internal Content 10. Access External Community 1. Invite External User 3. Accept Invitation, Set PW, (Optional: Accept Terms of Use) 2. Send Invitation (Optional: Invitation Expiration) 8. Invite/Add User to External Community 9. Send Information Mail 6. Notify Invitation Acceptance 5. Add to LDAP Group (optional)
  19. 19. Browser Domino IBM Connections E2. Invitation & Approval Workflow External Community ProfilesUAM LDAPExternal User Internal User Internal Content Internal Approver 6. Create LDAP User 9. Create/Sync User 12. Access External Community 1. Invite External User 2. Request Invitation Approval 5. Accept Invitation, Set PW, (Optional: Accept Terms of Use) 4. Send Invitation (Optional: Invitation Expiration) 3. Approve / Reject Invitation 10. Invite/Add User to External Community 11. Send Information Mail 8. Notify Invitation Acceptance 7. Add to LDAP Group (optional)
  20. 20. Browser Domino IBM Connections E3. Self Registration Workflow (no Approval) External Community ProfilesUAM LDAPExternal User Internal User Internal Content 1. Register / Request External User Access 2. Send Invitation (Optional: Invitation Expiration) 4. Create LDAP User 7. Create/Sync User 10. Access External Community 3. Accept Invitation, Set PW, (Optional: Accept Terms of Use) 8. Invite/Add User to External Community 9. Send Information Mail 6. Notify Invitation Acceptance 5. Add to LDAP Group (optional)
  21. 21. Browser Domino IBM Connections E4. Self Registration & Approval Workflow External Community ProfilesUAM LDAPExternal User Internal User Internal Content Approver 1. Register / Request External User Access 2. Request Approval 4. Send Invitation (Optional: Invitation Expiration) 3. Approve/Reject Invitation 6. Create LDAP User 9. Create/Sync User 12. Access External Community 5. Accept Invitation, Set PW, (Optional: Accept Terms of Use 10. Invite/Add User to External Community 11. Send Information Mail 8. Notify Invitation Acceptance 7. Add to LDAP Group (optional)
  22. 22. Browser Domino IBM Connections E5. Password Change External Community ProfilesUAM LDAPExternal User Internal Content 1. Change Password 2. Update LDAP User 3. Access External Community with New Password
  23. 23. Browser Domino IBM Connections E6. Password Recovery External Community ProfilesUAM LDAPExternal User Internal Content 1. Request New Password Link 2. Send New Password Link 6. Access External Community with New Password 3. Set New Password 4. Update LDAP User 5. Unlock User in InetLockoutDB (optional)
  24. 24. Browser Domino IBM Connections E7. Delete User External Community ProfilesUAM LDAPInternal User (Admin-Role) Internal Content 1. Delete User 2. Delete User 4. TDI: Sync User and set to inactive 5. Delete in LDAP Group (optional)
  25. 25. Internal User Access Management I1. Accept Guidelines/Terms of Use I2. Password Change I3. Password Recovery
  26. 26. Browser Domino IBM Connections I1. Guidelines / Terms of Use Acceptance External Community ProfilesUAM LDAPInternal User Internal Content 1. Accept Guidelines/Terms of Use 2. Update LDAP User 4. Access Connections 3. TDI: Sync User
  27. 27. Browser Domino IBM Connections I2. Password Change External Community ProfilesUAM LDAPInternal User Internal Content 1. Change Password 2. Update LDAP User 3. Access Connections with New Password
  28. 28. Browser Domino IBM Connections I3. Password Recovery External Community ProfilesUAM LDAPInternal User Internal Content 1. Request New Password Link 2. Send New Password Link 6. Access Connections with New Password 3. Set New Password 4. Update LDAP User 5. Unlock User in InetLockoutDB (optional)
  29. 29. UAM Pricing Please call us for pricing. Price 1: UAM for Internal Usage Price 2: UAM for External Usage
  30. 30. Thank you for your interest http://timetoact.de/ sales@timetoact.de +49 221 97343 0

×