2.2 Configuring the Identity Manager User Application

The following steps explain how to configure the Identity Manager Roles Based Provisioning Module so that users who attempt to access to a protected resource can be redirected to a workflow that allows them to initiate a request for access to a protected resource.

  1. Log in to the Identity Manager Roles Based Provisioning Module as a UserApp administrative user.

  2. Click Administration, then click the Page Admin tab.

  3. Under Page Actions (lower left corner), click New to create a new page.

  4. Fill in the following page properties:

    Page Link Name (URI): Specify a name for page link (for example, Workflow_Request).

    Page Name: Specify a name for the page. By default, the page name is populated with the same name you entered for the page link name.

    Navigation Priority: Specify one of the following:

    • None: Select this option if you don’t need to assign a priority to this page.

    • Set value: Select this option, then specify a value between 0 and 9999, where 0 is the lowest priority and 9999 is the highest.

      Setting priority values is useful if you want to ensure a particular order when pages are listed by priority, or if you want to ensure a particular selection when multiple default pages exist (for a user who belongs to multiple groups).

    Assign Categories: Select the General option.

    Description: Specify a description of the page.

  5. Click Save Page.

    The resulting page looks similar to the following example:

    New page

  6. Under Page Tasks, click Select Content to display the Content Selector window.

  7. In the Available Content list, select Resource Request, then click Add to move it to the Selected Content list.

    Adding Resource Request

  8. Select Content Preferences, then click OK when prompted to save your changes.

    The Content Preferences window is displayed.

    Content Preferences window

  9. In the Content Preferences window, click View/Edit Custom Preferences.

    The Resource Request Content Preferences box is displayed.

    Resource Request Content Preferences box

  10. Click Continue to edit the Default locale, or, if necessary, select a different locale, then click Continue.

  11. In the Resource Request Complex Preference list, select the workflow that you previously defined, then click Submit.

    For more information about creating a workflow, see Creating the Workflow for a Provisioning Request Definition in the User Application: Design Guide.

    Selecting a workflow

    As shown in the following screen shot, you are prompted to return to the List View and save your preferences.

    Return to the List View

  12. Click Return to List View.

  13. Click Save Preferences to save the preferences and return to the Content Selector window.

    Content Preferences View

  14. Click Save Contents to save the page contents and return to the Page Admin window.

    Saving contents

  15. Under Page Tasks, click Assign Permissions to display the Page Permissions window.

    The Page Permissions window lets you give users permissions to view the newly created page.

    Page Permissions

  16. In the Search for list (located on the View tab), select User, Group, or Container as appropriate.

  17. Specify search criteria in the Starts with field to narrow the search, then click Go.

    or

    To list all results, leave the Starts with field blank, then click Go.

  18. After the results are displayed in the Results list, select the appropriate entity (or entities) to assign permissions to, then click the > button to add them to the Current Assignments list.

    Assigning a group permissions

  19. Verify that the View Permission Set to Admin Only option is not checked.

  20. Click Save.

  21. Click Close.

You have successfully set up the workflow page that you can redirect users to if they select the option to initiate the request process to gain approval to access this resource. You can access the workflow request directly at the following URL:

http://ipaddress:port/IDM/portal/cn/DefaultContainerPage/Workflow_Request

Replace ipaddress:port with the appropriate information for your environment. Replace Workflow_Request with the page link name you used in Step 4.

Continue with Section 2.3, Configuring Access Manager for information on how to redirect a user to the workflow page you just created.