I AM HERE
MidPoint 4.0.1 was released. It is a first update in a long-term support (LTS) release family code-named Gutenberg. There are many bugfixes and a handful of minor improvements. MidPoint 4.0.1 is a start of a long journey.
MidPoint 4.0 “Gutenberg” is really a revolutionary midPoint release. It is a long-term support (LTS) release. But it also brings groundbreaking features. The support for archetypes is certainly one of those features that can be a real game-changer in the future. First part of this post told the story how the idea of archetypes evolved during the course of midPoint development. This part will describe how archetypes work and how they can be used. […]
MidPoint is developed in evolutionary fashion. When we have started midPoint, many things were considered during the design. But we were not able to implement everything during early years of midPoint development. Therefore some ideas matured in the heads of midPoint developers until their time came. That is also the case of archetypes. The archetype functionality is one of the highlights of midPoint 4.0 “Gutenberg”. And this is the story how the idea of archetypes evolved during the course of midPoint development. […]
In my previous post, I wrote how to override full name if you don’t have actual data from HR in all cases. We can have a similar problem with a special property like Administrative status (user is enabled/disabled/archived). In most cases you already have done the mapping from HR. If the employee is active (or Read more about How to override administrative status[…]
You know, at the beginning every IDM project is clear and ideal. Everything seems to work well in the test environment, but as time goes by, the deadline is close and your customer finds more and more special cases. These cases have to be part of the solution “somehow” and “quickly” and of course they are found Read more about How to override full name[…]
When our interconnection of various services by using midPoint, SCIMv1 protocol and Connid framework was ready, we proceeded to testing. While looking around for services supporting the SCIM protocol we stumbled upon two quite popular ones. Salesforce and Slack which both support the SCIM 1.1 specification but both on their own way with a couple of Read more about Real life story of SCIMv1 and ConnId, Part 2[…]
When implementing a connector for the Midpoint identity management solution, there is a potential to interconnect a broad spectrum of services. Using the System for Cross-domain Identity Management (SCIM) protocol seems as a road to take. We are also working with the connId framework. It provides a means for building identity connectors in a more Read more about Real life story of SCIMv1 and ConnId, Part 1[…]
Unix/Linux servers can be configured to authenticate and authorize against LDAP server, by using LDAP accounts and groups. With some Identity Management solutions you can put users to these groups, but you need to manage the groups by the native LDAP tools. This is not the case with midPoint! MidPoint allows you to create not only LDAP accounts, but also the groups so it can become the ultimate tool for IT administrators or even for users with limited IT skills, really simplifying the LDAP group management. […]
Sun Identity Manager a.k.a. Oracle Waveset is a software product at the end of its lifecycle. Yet many organizations still operate Sun IDM solution because they haven’t found any reasonable migration path. But now there is a migration path that leads to the most comprehensive open source IDM solution: Evolveum midPoint. In the previous two posts I have described the obstacles and motivation of Sun IDM migration. It is quite clear that major migration obstacles are the cost and the risk. However, we have successfully addressed both of these obstacles. The cost is addressed by the unprecedented deployment efficiency of Evolveum midPoint. Yet it is the risk that is usually the worst issue for any migration of any software system. But due to the flexibility of Evolveum midPoint we have managed to keep migration risk at a very acceptable level. And this post describes the details of our solution. […]
Many applications connected to LDAP use LDAP groups for authorization. With some Identity Management solutions you can put users to these groups, but you need to manage the groups by the native LDAP tools. This is not the case with midPoint! MidPoint allows you to create not only LDAP accounts, but also the groups so it can become the ultimate tool for IT administrators or even for users with limited IT skills, really simplifying the LDAP group management. […]