Identity Broker for HPE Content Manager Use Cases

Overview

Identity Broker for HP TRIM enables a number of operations for managing person and hierarchical data. In addition to facilitating create, read, update and delete operations against locations, and reading/writing to child objects and associations, the following can be achieved:

  • Hierarchical control of user document access;
  • Flatten HP TRIM data model for use in directory based systems;
  • Write directory-populated data back to HP TRIM, such as email addresses;
  • Enforce user terminations from respective HR applications.

Control of the organisational hierarchy

With a pre-existing access-control hierarchy in place, accounts can be provisioned into the organisational hierarchy (through associations in HP TRIM).

Flatten HP TRIM data model for use in directory based systems

Data corresponding to a single location (Person, Organisation, Group etc.) is stored in a number of locations throughout HP TRIM. The data modelling properties of Identity Broker in conjunction with the suite of HP TRIM connectors can allow for information from many forms to be relationally joined into a single object class, presenting information in a format more suitable for directory based systems such as Microsoft Active Directory™.

Write directory-populated data back to HP TRIM, such as email addresses

An operator is typically required to manually enter information that has been created or updated by an external system, such as Microsoft Exchange™. Instead, the connector provides this functionality by allowing such data to be managed by the identity management solution, without the need for manual intervention.

Enforce user terminations from respective HR applications

With the correct configuration, inbound terminations from foreign HR applications are able to be managed quickly and efficiently by managing the hierarchy of the location, as well as the active periods of the location.

Is this article helpful for you?