Export of CA Role and Compliance Manager (RCM) data to CA IdM

Accomplishing synchronization or provisioning of users, resources and/or roles from CA RCM into CA IdM involves a complicated configuration setup for RCM and IdM and understanding what requirements and limitations exist.

Accomplishing synchronization or provisioning of users, resources and/or roles from CA RCM into CA IdM involves a complicated configuration setup for RCM and IdM and understanding what requirements and limitations exist.

Here is a short list of  items that should be considered:

  1. CA RCM to IdM integration is predicated on the fact that users, resources and or roles are imported first.
  2. Configuration of the CA IdM resource connector is a requirement for managing users, resources and roles at the managed IdM endpoints.
  3. Not all IdM endpoints have a resource connector that can be configured.  The following chart shows what is supported for release 12.5 and as RCM and IdM versions are released this list will grow:
Endpoint Version Additional comments
Active Directory (ADS) Active Directory 2003 Customizable Connector method and Legacy method available
UNIX (ETC) Red Hat 5.1 Customizable Connector method and Legacy method available
MS SQL Server (SQL) MS SQL 2005 SP3 Customizable Connector method and Legacy method available
Generic LDAP (LDA) CA eTrust Directory 8.1 Customizable Connector method and Legacy method available
Windows NT (N16) Windows 2003 SP2 Customizable Connector method and Legacy method available
Oracle Database (ORA) Oracle 11g Customizable Connector method
OS400 (AS4) OS400 V5 R2 Customizable Connector method only available
SAP (SAP) ECC 6.0 Legacy method only available
DB2 Database (DB2) DB2 9.1 (UDB) Legacy method only available
  1.  The defaultMapping.xml file provides the mapping of RCM attributes to IdM attributes.  It has been my experience that the list of attributes on the IdM side is fixed and substitutes likely will not work.
  2. At least one endpoint must be configured in the endpointTypeMapping.xml file.

There are plenty of other considerations, configurations and methods to make the import/export successful (look for future blogs on the subject).  The grapevine has indicated that major changes involving more integration between the products will occur with the release of RCM 12.5 SP4 coupled with IdM 12.5 SP7.

As usual, Questions, comments or concerns?  Feel free to reach out to us at IDMWorks.