Hi There,

could you pls provide couple of uses-cases, why would we use this IBM security directory integrator(SDI)?
If this is not the right place to post the questions in regards to the SDI/TDI could you pls advice ,where i can?

Thanks

------------------------------
SHARATH YERAMALLA
------------------------------

Hi,
It is nice, handy tool when you need to read data out of one (or more) source(s), and write it to another. It can run in batches, scheduled, on demand, as you like. It can transform the data on the fly, it can compare (update) incoming data with these on target and so on.
One example of use is with other IBM Security Products, e.g. IBM Security Identity Manager. There, you use it for data feed - reading data about employees from some HR database, using e.g. JDBC driver to connect to database, do some transformation, and insert it into Identity Manager data store (LDAP) through API (JNDI). Other, with the same product, you may use it to communicate both ways with some applications, databases, directories, to manipulate with user accounts from Identity Manager application. There are already created adapters for well known apps and DBs, but you can create your own, from the scratch.

Beside IBM Security Identity products, you may use it with virtually anything where sync of data between two data stores is needed, it can talk with mostly everything.

Hope this helps,

Mita

When used for a feed of data from an HR system into an identity system, SDI provides flexibility by making it easy to combine data from 2 or more sources. This can be helpful when there is some additional data about users which comes from someplace outside of the core HR system. SDI deployments are simplified in that it does not require its own dedicated data store, so it can perform these integrations in point to point mode.

------------------------------
Carl Hovi
IBM
------------------------------

Original Message:
Sent: Wed May 06, 2020 04:03 AM
From: Mita Mitic
Subject: IBM security directory integrator(usecase)

Hi,
It is nice, handy tool when you need to read data out of one (or more) source(s), and write it to another. It can run in batches, scheduled, on demand, as you like. It can transform the data on the fly, it can compare (update) incoming data with these on target and so on.
One example of use is with other IBM Security Products, e.g. IBM Security Identity Manager. There, you use it for data feed - reading data about employees from some HR database, using e.g. JDBC driver to connect to database, do some transformation, and insert it into Identity Manager data store (LDAP) through API (JNDI). Other, with the same product, you may use it to communicate both ways with some applications, databases, directories, to manipulate with user accounts from Identity Manager application. There are already created adapters for well known apps and DBs, but you can create your own, from the scratch.

Beside IBM Security Identity products, you may use it with virtually anything where sync of data between two data stores is needed, it can talk with mostly everything.

Hope this helps,

Mita

------------------------------
Mita Mitic

Original Message:
Sent: Tue May 05, 2020 01:25 PM
From: SHARATH YERAMALLA
Subject: IBM security directory integrator(usecase)

Hi There,

could you pls provide couple of uses-cases, why would we use this IBM security directory integrator(SDI)?
If this is not the right place to post the questions in regards to the SDI/TDI could you pls advice ,where i can?

Thanks

------------------------------
SHARATH YERAMALLA
------------------------------

Hi Mita,
It appears  to me TDI/SDI alike an identity provisioning system(Identity manager/IAM/ISIM),because ISIM does same exercises like TDI/SDI such as aggregating the HR data ,correlation with other end points/application with HR Data and provision based on role. Could you psl clarify kindly the difference between TDI vs ISIM since,it was bit unclear what you were trying to explain? Thanks in advance

------------------------------
Popleys
------------------------------

Original Message:
Sent: Wed May 06, 2020 08:22 AM
From: Carl Hovi
Subject: IBM security directory integrator(usecase)

When used for a feed of data from an HR system into an identity system, SDI provides flexibility by making it easy to combine data from 2 or more sources. This can be helpful when there is some additional data about users which comes from someplace outside of the core HR system. SDI deployments are simplified in that it does not require its own dedicated data store, so it can perform these integrations in point to point mode.

------------------------------
Carl Hovi
IBM

Original Message:
Sent: Wed May 06, 2020 04:03 AM
From: Mita Mitic
Subject: IBM security directory integrator(usecase)

Hi,
It is nice, handy tool when you need to read data out of one (or more) source(s), and write it to another. It can run in batches, scheduled, on demand, as you like. It can transform the data on the fly, it can compare (update) incoming data with these on target and so on.
One example of use is with other IBM Security Products, e.g. IBM Security Identity Manager. There, you use it for data feed - reading data about employees from some HR database, using e.g. JDBC driver to connect to database, do some transformation, and insert it into Identity Manager data store (LDAP) through API (JNDI). Other, with the same product, you may use it to communicate both ways with some applications, databases, directories, to manipulate with user accounts from Identity Manager application. There are already created adapters for well known apps and DBs, but you can create your own, from the scratch.

Beside IBM Security Identity products, you may use it with virtually anything where sync of data between two data stores is needed, it can talk with mostly everything.

Hope this helps,

Mita

------------------------------
Mita Mitic

Original Message:
Sent: Tue May 05, 2020 01:25 PM
From: SHARATH YERAMALLA
Subject: IBM security directory integrator(usecase)

Hi There,

could you pls provide couple of uses-cases, why would we use this IBM security directory integrator(SDI)?
If this is not the right place to post the questions in regards to the SDI/TDI could you pls advice ,where i can?

Thanks

------------------------------
SHARATH YERAMALLA
------------------------------

Hi,

No it is not the same.
TDI/SDI is just a component in functionality of ISIM, it does what ISIM tells it to do.
It can't do it by itself.
You may think about TDI/SDI as a pipeline between ISIM and managed resources, or HR database and ISIM.
ISIM does not talk directly to database, or some app. It does it (in most cases) through TDI/SDI.
I've put ISIM in the picture to show some use case of TDI/SDI, as it was what you were originally looking for.
Again, beside ISIM, you may use TDI/SDI for other purposes, e.g. sync some data from LDAP to DB, or one App using its API to another APP, using some other API or Web Service. It is a bit abstract, so I choose to talk about TDI/SDI as a part of ISIM, as a real world scenario.

Hope this helps,


Mita

Unlike ISIM, SDI has no concept of roles, policies or workflows. Sometimes that is perfectly ok, such as when using SDI for an HR feed into ISIM, or when using SDI to sync some data from LDAP to DB.  SDI allows one to solve simple problems simply, but you have to tell it exactly what to do.

SDI also works great for providing the connectivity for many of the officially supported ISIM adapters.

------------------------------
Carl Hovi
IBM
------------------------------

Original Message:
Sent: Thu May 07, 2020 08:56 AM
From: Mita Mitic
Subject: IBM security directory integrator(usecase)

Hi,

No it is not the same.
TDI/SDI is just a component in functionality of ISIM, it does what ISIM tells it to do.
It can't do it by itself.
You may think about TDI/SDI as a pipeline between ISIM and managed resources, or HR database and ISIM.
ISIM does not talk directly to database, or some app. It does it (in most cases) through TDI/SDI.
I've put ISIM in the picture to show some use case of TDI/SDI, as it was what you were originally looking for.
Again, beside ISIM, you may use TDI/SDI for other purposes, e.g. sync some data from LDAP to DB, or one App using its API to another APP, using some other API or Web Service. It is a bit abstract, so I choose to talk about TDI/SDI as a part of ISIM, as a real world scenario.

Hope this helps,


Mita

------------------------------
Mita Mitic

Original Message:
Sent: Thu May 07, 2020 08:23 AM
From: SHARATH YERAMALLA
Subject: IBM security directory integrator(usecase)

Hi Mita,
It appears  to me TDI/SDI alike an identity provisioning system(Identity manager/IAM/ISIM),because ISIM does same exercises like TDI/SDI such as aggregating the HR data ,correlation with other end points/application with HR Data and provision based on role. Could you psl clarify kindly the difference between TDI vs ISIM since,it was bit unclear what you were trying to explain? Thanks in advance

------------------------------
Popleys

Original Message:
Sent: Wed May 06, 2020 08:22 AM
From: Carl Hovi
Subject: IBM security directory integrator(usecase)

When used for a feed of data from an HR system into an identity system, SDI provides flexibility by making it easy to combine data from 2 or more sources. This can be helpful when there is some additional data about users which comes from someplace outside of the core HR system. SDI deployments are simplified in that it does not require its own dedicated data store, so it can perform these integrations in point to point mode.

------------------------------
Carl Hovi
IBM

Original Message:
Sent: Wed May 06, 2020 04:03 AM
From: Mita Mitic
Subject: IBM security directory integrator(usecase)

Hi,
It is nice, handy tool when you need to read data out of one (or more) source(s), and write it to another. It can run in batches, scheduled, on demand, as you like. It can transform the data on the fly, it can compare (update) incoming data with these on target and so on.
One example of use is with other IBM Security Products, e.g. IBM Security Identity Manager. There, you use it for data feed - reading data about employees from some HR database, using e.g. JDBC driver to connect to database, do some transformation, and insert it into Identity Manager data store (LDAP) through API (JNDI). Other, with the same product, you may use it to communicate both ways with some applications, databases, directories, to manipulate with user accounts from Identity Manager application. There are already created adapters for well known apps and DBs, but you can create your own, from the scratch.

Beside IBM Security Identity products, you may use it with virtually anything where sync of data between two data stores is needed, it can talk with mostly everything.

Hope this helps,

Mita

------------------------------
Mita Mitic

Original Message:
Sent: Tue May 05, 2020 01:25 PM
From: SHARATH YERAMALLA
Subject: IBM security directory integrator(usecase)

Hi There,

could you pls provide couple of uses-cases, why would we use this IBM security directory integrator(SDI)?
If this is not the right place to post the questions in regards to the SDI/TDI could you pls advice ,where i can?

Thanks

------------------------------
SHARATH YERAMALLA
------------------------------