- This line was added.
- This line was removed.
- Formatting was changed.
Identity Manager has an easy-to-use web interface where the operator can manage identities, cards and credentials; and run predefined queries, reports, filters and statistics. The available tasks depend on the configuration that has been set up in Identity Manager Admin.
The Identity Manager Operator user interface is available as an HTML5 application.
Depending on the user’s role and permissions, different navigation options and user actions are possible, such as, types of data objects visible or tasks that can be performed. See here for more information regarding roles in Identity Manager. There is multi-language support, and the default language is based on the language of the client’s operating system. For more information regarding language setup, see Translate interface texts in Identity Manager.
These are the available login options that can be configured:
Depending on how the tenants are configured you see all of the login methods or just a subset.
You can also select language.
There is a logout button for SAML in Identity Manager, if you use that button you are not asked again for your credentials when you log in again with SAML, the SAML ticket stays valid. This is referred to as user session logout.
Configure authentication methods for login
On the Start page, you search for existing objects or create a new object (a request, a person data record etc.)
Here you can select in a drop-down list different search configurations. You can also type text in the text field. If something is found, a drop-down opens below the text field and when you select an element, you will be directed to the detailed page for this element. To be seen in the drop-down list, the search configuration must be configured in Identity Manager Admin. The purpose must be set to "Simple search". Read more about this in Set up search configuration in Identity Manager, section "Set search purpose". The user must also have the "Execute" permission in SearchConfig to see the search configuration, see section "Set permissions" in Set up search configuration in Identity Manager.To change the order of the list, see Set up search configuration in Identity Manager, section "Change the sort order in Quick search on the Start page and on the Search page".
What do you want to do?
You can also select from the tasks under "What do you want to do?", if you have the permission to start a specific process (task). The permission is set in Identity Manager Admin. Which tasks that are shown in the list, and the sort order of the list, is configured inIdentity Manager Admin. Read more here: Configure tasks (processes) in Identity Manager Operator.
If you, for example, select Create Employee from the Start page you will see this form, as it was configured in Identity Manager Admin for the identity "Employee":
On the Search page, you search for various objects with more complex search criteria and view and navigate in the search result list. Both the search parameters and the displayed fields of the search result list are configurable in Identity Manager Admin (see Set up search configuration in Identity Manager) and their visibility depends on your role (see Standard roles and bootstrap users in Identity Manager).
On the Open tasks page, you find the tasks to perform as part of a process. To see only the tasks assigned to you, check Show tasks assigned to me. You can also see the tasks you have permission to continue (based on your role).
Manage open tasks
On the In progress page, you view or edit details of the objects selected in one of the Search procedures. You can, for example, request or produce a card for a person.
Core object history permissions
The core object history permissions control what is displayed for the core object history in Identity Manager Operator. The permissions can be added for a role or a user. When one or several of the object history permissions are enabled, the History button will be displayed on the core object detail page. If no object history permissions are enabled for a user or a role, the History button will not be displayed.
See Set permissions from Identity Manager users or roles for more information about the different core object history permissions.
On the Batch orders page, you search for and compile objects into a list (a batch order) and apply immediately or later an applicable task to all objects on the list.
A typical order is to start a mass production at any time. Depending of the result of the batch order, the order is completed automatically after the last object is produced (or whatever the particularly batch order was designed for in Identity Manager Admin), or can be completed manually.
You can only see the Admin page if you have the right privileges. On the Admin page you can, for example:
Nexus Card SDK
For the following functions in Identity Manager, Nexus Card SDK must be installed on the user's PC:
- Capture photo, signature, fingerprint or documents
- Print cards/credentials on suitable printers
- Encode cards/credentials with suitable devices
PKI functions with smartcards (be aware that Card SDK will download and execute the Identity Manager PKI Encoder component for this functionality)
This article includes updates for Smart ID 22.10.