Integration with Web Portals
Hitachi ID Password Manager can be embedded into the user interface of a number of
- The user interface is totally customizable and can be:
- Stripped down, making it suitable for embedding in a portal
that proxies and/or embeds (e.g., via IFRAMEs) other web applications.
- Decorated to match the portal page, including logos and
navigation, so that it appears just like a normal part of
the portal, despite being one of several peer servers that share
a user interface and navigation structure.
An API is exposed by Password Manager, supporting features such as user
authentication, random password generation, password policy enforcement,
security question validation, password and PIN resets, etc. This can
be used by third party UIs and telephony systems, for example.
The API is available in SOAP, Windows and Unix shared object
A web services API is exposed by Password Manager, allowing other
applications to access the workflow request queue and data about users
The API is accessed using SOAP over HTTPS with a WSDL
specification. It is accessible from a wide range of
platforms, including Windows and Unix,
.NET and J2EE, Perl, Python and PHP, etc.
The Password Manager API supports a wide range of operations, including:
- Submitting new workflow requests. This includes requests to:
- Create new user profiles.
- Add login accounts to new or existing profiles.
- Add users to or remove users from managed groups.
- Assign roles to users or remove roles from users.
- Get or set user identity attributes.
- Initiating certification rounds.
- Searching for users, groups or roles matching specified criteria.
- Creating, updating or deleting roles and SoD policies.
- Getting or changing the set of authorizers attached to a request.
- Approving or denying requests.
- Enumerating users per entitlement or entitlements per user.
- Running any report and consuming its output in a streamed format
(e.g., orphan/dormant accounts, stale workflow requests,
SoD violations, etc.).
- Performing a variety of Password Manager configuration tasks.
- Password Manager can be set up to "trust" portal authentication of
users, rather than asking users to re-authenticate.
- New passwords, reset or synchronized by Password Manager, can
be automatically updated in a portal's internal database
or directory, in the event that the portal will use them to
provide single sign-on to other applications.
- Open Architecture for Authentication:
Password Manager can integrate with any authentication system and mechanism.
Use of E-mail to prompt users to register and notify users of events relating to their Password Manager profiles.
- Help Desk:
Password Manager can automatically create, update and close tickets in a help desk application in response to over 100 events and alarms.
- Web Portal:
Password Manager can integrate with both support-centric and general-purpose web portals, to offer a seamless user experience.
Password Manager allows users to reset their own passwords and PINs and to recover encryption keys using a telephone, through interactive voice response (IVR) integration.