SecurID^® Governance & Lifecycle Knowledge Base

Yes

Article Number

000035051

Applies To

RSA Product Set: RSA Identity Governance and Lifecycle, RSA SecurID Access
RSA Version/Condition:
RSA Identity Governance and Lifecycle: all
RSA SecurID Access: RSA Authentication Manager 8.x

Issue

Identities for end users who authenticate with RSA SecurID tokens may only be stored in the RSA Authentication Manager local database.

In order to monitor, review and manage such identities with RSA Identity Governance and Lifecycle, a suitable collector is required to collect those identities and optionally, an Access Fulfillment Request (AFX) connector is required to manage those identities.

Task

There is currently no out-of-the-box RSA Identity Governance and Lifecycle collector or AFX connector available for the RSA Authentication Manager 8.x local database.

However, there are a few options available to develop your own collector or connector using Authentication Manager's existing administration interfaces. For example:

A collector could utilize the read-only access to the RSA Authentication Manager PostgreSQL database. See "SQL Access to the RSA Authentication Manager Database" in the RSA Authentication Manager 8.1 Developer's Guide (an RSA Link login is required to download this manual. The Developer's Guide is in the RSA Authentication Manager Extras.zip file, under ..\am-extras-8.x.0.0.0\Developer Guide. Follow the instructions on how to download RSA Authentication Manager 8.x full kits and service packs from RSA Link for steps to download the file.
RSA Identity Governance and Lifecycle 7.0.2 supports collection for a PostgreSQL database.
An AFX connector could be created for the Web Services (SOAP) Administration API (part of the Authentication Manager 8.x SDK). See Advanced Usage > SOAP Connections in the Developer's Guide. You would use this with the AFX SoapWebService Connector Template.
It may be practical to make use of Authentication Manager Bulk Administration tool for provisioning. Bulk queries and updates are written to a CSV file which are then run in batch mode by AMBA against Authentication Manager. You can create a RSA Identity Governance and Lifecycle - JAVA Code Based Connector Datasheet. Also download the JAVA Code Based Connector - JCBC_SDK.zip.

Resolution

RSA Support can assist if you have any questions about RSA G&L collector or connector development.
Advanced API Support is recommended for the Authentication Manager 8.x SDK.
RSA Professional Services can be engaged to assist with collector and/or connector development. Contact RSA Sales to learn more and discuss your requirements.
An RSA Partner may also be able to assist.

Notes

The available collectors and connectors are listed on the Connector & Collector Application Guides page on RSA Link. Within the RSA G&L Administration Console, where collectors and connectors are configured (see the Collectors and AFX menus, respectively) you may also see all available options listed.
AM allows you to store identities either in its local database alone or it can retrieve them from an external Microsoft Active Directory (AD) or LDAP identity sources. If you are using an external store, you can use the standard AD Connector and Collector and the LDAP Connector and LDAP Collector.
Login to RSA Link and follow RSA Identity Governance and Lifecycle Product Advisories, to learn about new product features as they are announced.

SecurID^® Governance & Lifecycle Knowledge Base

Is there an RSA Authentication Manager local database Connector and Collector for RSA Identity Governance and Lifecycle?

Article Number

Applies To

Issue

Task

Resolution

Notes

In this article

SecurID® Governance & Lifecycle Knowledge Base

Is there an RSA Authentication Manager local database Connector and Collector for RSA Identity Governance and Lifecycle?

Article Number

Applies To

Issue

Task

Resolution

Notes

In this article

Related Content

SecurID^® Governance & Lifecycle Knowledge Base