Supported Features
RACF source supports the following features:
-
Create and update RACF User Profiles
-
Manage RACF Group Profiles related to RACF User Profiles
-
Change the passwords or passphrases for RACF User Profiles
-
Enable or disable RACF Users
-
Revoke connections instead of removing them
-
Aggregate and provision RACF custom fields
-
Differentiate between suspended users and locked users if provided an incorrect password or passphrase
-
Support for resource aggregation and provisioning as additional group schema, and requesting permissions for accounts and groups.
-
Management of Multi-Factor Authentication (MFA) attributes
For more information, refer to Support for Multi-Factor Authentication Attribute Management.
-
Connection Attribute management
For more information, refer to Connection Attribute Management.
-
TLS Support
For more information on implementing support for TLS 1.2, refer to Enabling TLS Communication.
-
Configure a filter for account aggregation
For more information, refer to Support for Account Aggregation Filter.
-
Group hierarchy for the SUBGROUP attribute of a GROUP object on the RACF managed system
-
Support for the prefix value to be passed in the plan. For more information, refer to Support for Prefix Value.
The details of supported features are:
|
Features |
Users |
|---|---|
|
Create |
✔ |
|
Aggregate |
✔ |
|
Password Management |
✔ |
|
Group Entitlements (Read, Request, Revoke) |
✔ Groups |
Group Entitlements
Group Entitlements are entitlement types for which SailPoint provides the ability to aggregate additional details from the managed system. These objects have a separate schema-defining list of attributes. The the aggregation task fetches the attributes as additional details when aggregation is run for that Group Entitlement type.
|
Features |
Groups |
|---|---|
|
Aggregation |
✔ |
|
Read Group hierarchy |
✔ |