The Azure AD platform is integrated with IDMWORKS IdentityForge (IDF) Gateway for user life cycle management for Mainframe systems (RACF, Top Secret, ACF2), Midrange system (AS400), Healthcare applications (EPIC/Cerner), Linux/Unix servers, Databases, and dozens of on-prem and cloud applications. IdentityForge provides a central, standardized integration engine and modern identity store that serves as a trusted source for all life-cycle management.
The IDF Gateway for Azure AD provides lifecycle management for import sources and provisioning target systems that are not covered by the Azure AD connector portfolio like Mainframe systems (RACF, Top Secret, ACF2) or Healthcare applications (EPIC/Cerner). The IDF Gateway powers Azure AD identity lifecycle management (LCM) to continuously synchronize user account information from Mainframe/Healthcare sources and to automate the account provisioning lifecycle use cases like create, read (import), update, deactivate, delete user accounts and perform group management.
Setup and Integration
The IDF Gateway is a lightweight JAVA application that can be installed on a Linux/Windows server and can manage hundreds of thousands (even millions) of identities. It has an inbuilt replication setup for high availability. The IDF Gateway can be installed on-premises along with the Azure AD connect provisioning bridge. The IDF Gateway side setup is easy and includes SCIM/LDAP configuration along with configuring a connector (few lines on property configs) for the target system. The Azure AD side will include mapping the attributes exposed by the IDF Gateway to the Azure AD profile.
Lifecycle management for Azure AD Outbound Provisioning
The IDF Gateway provides the use cases mentioned below.
• Create users and groups
• Update users and groups
• Delete users and groups
• Activate/De-Active (Suspend/Resume) users
• Edit group membership
A summary of the various features supported by the IDF Gateway for Azure AD are:
• One stop solution for performing Identify lifecycle management on dozens of applications including Mainframe/Healthcare applications
• Ability to manage users, groups, and memberships
• Capable to manage millions of identities
• Deep provisioning for mainframe objects such as datasets, resources, aliases, catalog etc
• Quick configuration of connectors in IDF Gateway, and then follow the native Azure AD setup
• Proven interoperability between Azure AD & IDF Gateway
• Easy deployment of on-premises connectivity via outbound Azure AD connect provisioning bridge provided by Microsoft