Creating an Entitlements Service Driver Object and Configuring Connected System Drivers

In this section:


Creating a Driver Object for the Entitlements Driver

Before you can create Entitlement Policies, you need an Entitlements Service Driver object. You must create one for each driver set.

If you don't have one, you are prompted to create one when you click the Role-Based Entitlements role and task.

  1. Find out whether you already have an Entitlements Service driver.

    In iManager, click Role-Based Entitlements > Role-Based Entitlements, then select the driver set.

    • If the No Entitlements Service Driver page appears, continue with Step 2 to create an Entitlements Service Driver object.
    • If a Role-Based Entitlements page appears with a list of Entitlement Policies, you already have an Entitlements Service Driver object. You don't need to complete this procedure.

  2. In the No Entitlements Service Driver page, click Yes.

    The Create Driver Wizard opens.

    You can also click DirXML Utilities > Import Drivers.

  3. Select In an Existing Driver Set, then click Next.

  4. In the Import a Driver Configuration from the Server (.XML file) drop-down list, select Entitlement.xml.


    The drop-down option to select Entitlement.XML

  5. Name the Entitlements Service Driver object (or accept the default name), then click Next.


    The edit box to name the Entitlements Service driver

    The correct driver configuration file is chosen automatically. Just specify a name for the Driver object.

  6. Define security equivalences and exclude administrative roles, then click Next.

  7. Review the summary, then click Finish.

    The driver shim for the Entitlements Driver is installed by default when DirXML is installed. The Entitlements Driver configuration file is installed by default when you install the DirXML plug-ins on your iManager server.

After completing the Wizard, you can access the plug-ins for Role-Based Entitlements and begin creating Entitlement Policies for this driver set.


Configuring Drivers to Use Entitlement Policies

To use Role-Based Entitlements with a connected system, you must have an Identity Manager driver shim installed.

The driver must be configured to support Role-Based Entitlements. The configuration must have the correct entries in the driver manifest.

You can either import an Identity Manager sample driver configuration for the driver and choose the option to use Role-Based Entitlements, or customize a driver configuration yourself by following the examples in the sample driver configuration.

The following sample driver configurations include support for Role-Based Entitlements as an option:

These driver configurations demonstrate a sample of what you can do with Role-Based Entitlements. You can configure other connected system drivers and other kinds of entitlements and interpretive variables.