Skip to main content

Preparation

Before you can target TAM ESSO from Bravura Security Fabric you must:

  • Create a target administrator account on the TAM ESSO server

  • Configure the reset operation

Creating a target administrator

Use the TAM ISM Configuration utility to create an IMS Bridge that will be used as target system administrator credentials by the Bravura Security Fabric server. When configuring the bridge:

  1. The name of the bridge will be the administrator ID in the ESSO Target system configuration in Bravura Security Fabric .

  2. The IMS Bridge password will be the administrator password in the ESSO target system configuration in Bravura Security Fabric .

  3. Ensure that the IMS Bridge IP Addresses includes the IP address of all Bravura Security Fabric nodes that will contact TAM ESSO.

  4. Set the IMS Bridge Type to "Provisioning".

Once the bridge is created, you must restart your IMS Server application from within web-sphere in order for the changes to be picked up.

Configuring the reset operation

To enable Bravura Security Fabric to reset TAM ESSO accounts or authentication services, you must set the TAM ESSO accounts’ secret.

If resets fail because secrets are not set on the account, configure the following in TAM ESSO:

  1. Click AccessAdmin > System policies > Sign Up Policies > Option for specifying secret.

  2. Set to "Secret not required".

    Note

    If this is not configured, TAM ESSO returns an error when trying to reset these accounts:

    The pid_secret_option is not set to zero.

Updating authentication service passwords only updates the passwords stored in the wallet. In order to update both the wallet password and the account for the service, you must create a target system for the respective services.

After a successful reset, users must log out and log back into AccessAgent to retrieve a new wallet. If the wallet is not successfully retrieved, the old wallet with old passwords is still used.

In this section: