Integrating with File Access Manager for Classifications
For integration with File Access Manager's classification feature, the initial installation and configuration involves two steps:
-
Import the
init-fam.xmlfile into IdentityIQ, using the iiq console or the gear menu > Global Settings > Import From File feature. -
Click gear menu > Global Settings > File Access Manager Configuration.
| Field Name | Description |
|---|---|
| File Access Manager Hostname | The hostname of the File Access Manager website. For example, https://webclient.mydomain.com |
| Basic/OAuth | Choose your method of authenticating with the File Access Manager website. Basic uses a username and password. OAuth uses a client ID and client secret. Basic authentication can be used for identities that are configured in the File Access Manager Administrative Client as having the API User privilege. OAuth credentials can be retrieved from the File Manager website, through the Settings > General > API Authorization menu. |
| Username | For Basic authentication: the username for logging in to the File Access Manager web client. This identity must have the API User privilege in File Access Manager. |
| Password | For Basic authentication: the password for logging in to the File Access Manager web client. |
| Client ID | For OAuth authentication: the Client ID for logging in to the File Access Manager website. This value is stored in the File Access Manager website in Settings > General > API Authorization. |
| Client Secret | For OAuth authentication: the Client Secret for logging in to the File Access Manager website. This value can be copied from the File Access Manager website in Settings > General > API Authorization. |
| SCIM Correlation Rule | If the correlation logic in your configured applications does not meet your needs for correlating File Access Manager groups and accounts against IdentityIQ groups, you can use a custom rule to manage correlation. The rule must have a rule type of Correlation in order to appear in this dropdown. |
| SCIM Correlation Applications | Select the applications to correlate File Access Manager groups and accounts against. Typically these will be Active Directory applications. |
If you are implementing classifications that come from a source other than File Access Manager, you do not need to take any special steps to configure the feature. You can import your classification objects directly into IdentityIQ and manage classifications as described in the sections above.