Welcome!

Identity Management Tips, Thoughts and Opinions

Matthew Pollicove

Subscribe to Matthew Pollicove : eMailAlertsEmail Alerts
Get Matthew Pollicove via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories by Matthew Pollicove

It's been a while since I posted here, but it's not because I'm not working on NetWeaver IDM or writing. I've been doing a lot of the former and a bit of the latter.  In order to help promote the growth of a NW IDM technical knowledge base, I've been posting most of my IDM specific things on the SAP Community Network Blog. I'll still be posting here from time to time, but it will more likely be architectural or opinion related pieces about IDM. To that point I'd like to talk about the seldom discussed Virtual Directory Server. I've always loved VDS and it's MaXware predecessor, MVD. There's just so much this product can do. While most of the SAP world is familiar with the Virtual Directory as a Web Services proxy for GRC or use with HCM, it is so powerful and flexible that it can do everything from provisioning to authorization and authentication management, to repre... (more)

The Stages of Identity

Recently I've been thinking about what happens to an identity through its life cycle and how the identity data is treated during this process.  I think you will also see that the Enterprise itself has differing methods of dealing with it as well. I am considering this to be the beginning of a framework and nomenclature that one can use for expressing how people relate to their Identity data on a number of different levels. I think we can pretty much consider this to be a "work in progress," and I would greatly appreciate feedback. So why do we need this, anyway? I have observed ... (more)

SECUDE’s Secure SignOn Version 7.2 Supports Windows 7 Platform

Darmstadt, December 11, 2009 - Multiple login procedures with different user name/password combinations are often productivity-sapping inconvenience for employees. Corporate regulations on password complexity do not provide sufficient security. Users just write down complex passwords instead of memorizing them. Such practices are a great security risk making vital data easily accessible to unauthorized personal. Secure SignOn for Enterprise Single Sign-On (E-SSO) ensures high user acceptance, high user productivity, and efficiency by significantly reducing helpdesk calls and by ... (more)

Too Much in the JAR

Recently had a problem where Import/Export was not working.  I kept getting an interesting Error Message: What was really interesting about this was the user that was referenced, mxmc_admin.  Now this is interesting, because during the Identity Store creation process, you are prompted to use mxmc_rt as the user and there is no time during the install that you are asked to create a JAVA based connection string using mxmc_admin. This started a great deal of troubleshooting and conversations with people who have a great deal of knowledge with IDM's moving parts. Ultimately we wound... (more)

The Importance of the OSS Note

One of the things I've been hearing (and experiencing) lately is that there are a lot of questions about how SAP IDM works.  Sometimes it's a functionality question, sometimes it's an enhancement request, other times it's a bug report. Taking a look on the SAP IDM SDN forum, one can see several instances of all of these issues. However, some feel that the actual issues are never recognized by SAP. This leads to feelings of frustration and that IDM is too complicated. There's actually a pretty simple resolution to this.  When you have a problem, log an OSS note, that's what the... (more)