Is there something that you always wished an open IDM soluiton would do or perhaps do differently. This page is intended as a initial open idea pages for new features and changes. Popular and useful changes will be promoted as an RFE.
Full auto install
Have one big .war which can be deployed with no need for anything else.
|support custom user object in UI||Enable UI and other built-in components to work with authenticated user objects other than managed/user. Either check what object class the authenticated user is in before forming REST calls or use global setting for valid user objects|
|Add here...||Add here...|
Add pass through authentication
Have a possibility to check user authentication against external resources
|Need for SAP Connector|
Provisionning / Synchronisation of users, roles and profiles and password synchronisation
|Need for TSS Connector||Provisionning / Synchronisation of users, roles and profiles and password synchronisation|
|Need for DOMINO Connector||Provisionning / Synchronisation of users, roles and profiles and password synchronisation|
|Message Queuing||Support some kind of message queuing for creation, modification or deletion of managed objects.|
Module for a Business Roles Lifecycle: Role Mining, Roles Approval, Segregation of Duties Policies, Graphical representation of business roles and role structure with drill down capabilities
|Risk Management||Module for a Access Risks Governance: Access risks metrics and policies settings (e.g. based on user risk and resource risk calculation), Real-Time Risk Control based on access policies violations|
|Attestation||Module for access rights/roles attestation (recertification)|