Configure Password Interception and Online Interception

Enable and configure Password Interception and Online Interceptor in IdentityIQ.

In the following command lines, the value of hostName in the ServiceDefinitions of SMListener and ResourceEvent must be the hostname or IP address of the host where the IdentityIQ server is running. If there are multiple instances of IdentityIQ servers running, you must still only define one IdentityIQ host. This starts the SMListener service on one server where the interceptors sent from the Mainframe Connector are processed.

When IdentityIQ starts, it starts a thread for each application in which Password Interception is enabled. This thread is responsible for receiving the changes from that application. If any change is made to the attributes, or if you enable or disable encryption for the application configured to receive password changes, the IdentityIQ server must be restarted for the changes to take effect.

To enable Password Interceptor or Online Interceptor on RACF, refer to the SailPoint IdentityIQ Connector for RACF Administration Guide.

To enable Password Interception and Online Interceptor on IdentityIQ:

  1. Go to IdentityIQ debug page > ServiceDefinition > SMListener.

  2. Add the following attributes to SMListener:

    Copy
    <Attributes>
        <Map>
            <entry key="applications" value="Application name"/>
            <entry key="retryInterval" value="5" />
        </Map>
    </Attributes>

    Note

    To configure multiple applications for Online or Password Interceptor, add additional application names and separate them with a comma.

    For example:

    <entry key="applications" value="App1,App2"/>

  3. Add the hostname as follows:

    <ServiceDefinition created="1347280738108" hosts="hostName" id="2c9095d439b02f0b0139b030973c00e9" modified="1347285339111" name="SMListener">

  4. Go to IdentityIQ Debug Page > ServiceDefinition > ResourceEvent and add the hostname as follows:

    <ServiceDefinition created="1347280738124" hosts="hostName" id="2c9095d439b02f0b0139b030974c00ea" modified="1347285354945" name="ResourceEvent">