IBM Tivoli Access Manager [EOL] Benefits

it_user228537 - PeerSpot reviewer
Solutions Architect with 1,001-5,000 employees

Our customer had SSO requirements, as well as web-firewall and federation requirements that we fulfilled through this product.

View full review »
it_user238938 - PeerSpot reviewer
Solution Architect Lead at a insurance company with 1,001-5,000 employees

The combination of TAM with IDM in IBM Tivoli Identity Manager helped us to realize robust and secure authentication infrastructure in accordance with industry regulations and laws.

  1. Providing centralized authentication authority and enforce consistent authorization policies to users.
  2. Realizing ease of user accesses using enterprise level single sign-on.
  3. Improving traceability of application uses.

On the other hand, Tivoli Identity Manager known as TIM provides centralized ID lifecycle management as an IDM solution.

By using TIM together with TAM, the following benefits are served:

Many actual accounts in several LDAPs including TAM LDAP are managed by TIM LDAP. (LDAP directory tree supports a nest structure known as “Person has many accounts” model). In addition, person can have many attributes like; department code, Job grade, hiring date, resignation date in the future, etc.

By using these attributes, all accounts which belong to the person automatically are able to be activate/or inactivate. Specifically, account creation/deletion/update can execute automatically by using HR information. If someone reaches his/her retirement date, the account is inactivated by automate workflow process, without raising the account deletion request.

In addition, a process called “Reconciliation” checks several LDAPs (e.g. Active Directory), and can harmonize account information and its attributes between TIM and the LDAP. For example, if an improper account is directly created into Active Directory, scheduled Reconciliation process detects the account, and revoke the account based on pre-setting rules.

This is the reason I recommend to use TAM together with TIM.

View full review »
it_user381273 - PeerSpot reviewer
Principal Consultant at a tech services company with 1,001-5,000 employees

Step-up authentication in WebSEAL is a hook. You write a function to a particular spec, register it, and it gets called. The hook is in C, which makes sense because WebSEAL is fast and could not be written in an interpreted or high-level language.

Note that this is a way to improve WebSEAL modules, not a way to defer authentication to another server. For more, compare the second and last entries on this page.

View full review »
Buyer's Guide
Single Sign-On (SSO)
March 2024
Find out what your peers are saying about IBM, Okta, Broadcom and others in Single Sign-On (SSO). Updated: March 2024.
765,234 professionals have used our research since 2012.
it_user594669 - PeerSpot reviewer
Tivoli Consultant at a government with 1,001-5,000 employees

It has improved the working of our organization by having:

  • Multiple endpoints integrated
  • One integration point with reverse proxy for multiple portals
View full review »
RV
Senior Consultant at a tech company with 10,001+ employees

Before solution implemented it took around 2-3 weeks to get all the necessary account information for a new employee in my organization. Since implementation, this now only takes a few minutes. As soon as HR submit all their data the user account is generated and the user gets their username and password.

Also, we have many applications and before SSO the users had to remember all the different passwords. We have many legacy applications and they had different password policies that were not always as strong as they should be. Now, however, we have one password for all the applications, and one password policy.

View full review »
it_user590454 - PeerSpot reviewer
Iam Security Architect & Consultant at a tech services company with 51-200 employees

It acts as a reverse proxy, a single point for authentication and authorization. Advanced access control introduces adaptive or risk-based authentication. Federation makes it possible to federate using SAML and OAuth.

View full review »
it_user432489 - PeerSpot reviewer
Senior IAM/ Security Consultan at a tech services company with 11-50 employees

It provides robust security.

View full review »
it_user182007 - PeerSpot reviewer
Technical Lead at a tech services company with 10,001+ employees

The automation of provisioning has reduced the time it takes for creating a user or an employee in our organization.

View full review »
RD
Systems Admin Analyst 3 at CPS Energy

Tracks and assists us with Roles associated to each user.

View full review »
it_user704022 - PeerSpot reviewer
Infrastructure Specialist at a financial services firm with 5,001-10,000 employees

Allows users to use a single password across a set of multi-tenant application suites. This would have otherwise required 50-100 unique passwords per application. This allows the user to inject a centralized password (a.k.a. authentication service credential) with little ease and increased reliability. In turn, this removes the user element of the logon process, which is often the root cause of the invalid password attempts.

View full review »
it_user621060 - PeerSpot reviewer
Middleware Specialist at a tech vendor with 10,001+ employees

It applies access controls on an organization's web space while running on its components independently, while being highly available. We can isolate our organization infrastructure from security considerations, as we have our entire organization security policy centralized, organised & administered from its API.

View full review »
it_user181038 - PeerSpot reviewer
Enterprise Security Architect at a tech services company with 51-200 employees

This product enhanced the overall security at perimeter and improved user experience via SSO. A central place for policy and credentials simplifies the authentication over application landscape.

View full review »
RV
Senior Consultant at a tech company with 10,001+ employees

We implemented MFA in way that helps us to reduce a lot work load in terms of reducing help desk call to reset password.

View full review »
it_user595737 - PeerSpot reviewer
Service Now Consultant at a tech services company with 51-200 employees

The entire security of the intranet and internet web applications has been covered by the TAM environment.

View full review »
it_user185811 - PeerSpot reviewer
Information Security Engineer with 1,001-5,000 employees

We have managed to automate the creation of all employees, and the company's clients and then assign the accounts/accesses according to business need.

View full review »
it_user178272 - PeerSpot reviewer
Senior Security Consultant with 51-200 employees

Simplified deployment of web applications. The ISAM products centralises authentication and authorization giving a shorter time-to-market in the development of new web sites/applications

View full review »
it_user181527 - PeerSpot reviewer
Consultant at a consultancy with 51-200 employees
  • It provided a secure and robust end to end security solution.
  • You can fine tune authentication and authorization
  • It’s also easily scalable.
View full review »
it_user177240 - PeerSpot reviewer
Tivoli Access Manager SME at a government with 1,001-5,000 employees

Tivoli Access Manger lets you separate security from applications and manage at one place. Several applications can be rolled into to the same security model.

View full review »
it_user711612 - PeerSpot reviewer
Senior Consultant at a insurance company with 1,001-5,000 employees

It is a single product that caters for all the business needs throughout the organization. It provides a seamless integration that in turn encourages most of the applications to use the SSO features.

View full review »
it_user628068 - PeerSpot reviewer
Application Development Team Lead at a tech services company with 1,001-5,000 employees

It is a totally secure way of accessing clients through various application portals for more than ten EU countries, just by using single sign-on. Moreover, its EAI makes customization easier with the Java/J2EE Applications.

View full review »
it_user197922 - PeerSpot reviewer
Sales Engineer - Identity and Access Management at Sailpoint

The robust single sign-on feature allows business users to improve their productivity in their day-to-day tasks. It also provides end-user activity visibility on critical applications.

View full review »
it_user184626 - PeerSpot reviewer
Manager of Online Web Services Team at a financial services firm with 1,001-5,000 employees

It keeps our web applications secure.

View full review »
it_user178356 - PeerSpot reviewer
Consultant at a tech consulting company with 51-200 employees

I am a consultant and work on designing and implementing this tool for our customers. It has helped them to improve and control web and mobile application security.

View full review »
it_user634959 - PeerSpot reviewer
Security architect at a tech services company with 1,001-5,000 employees
  • More productive work for employees: They do not have to spend time on resetting passwords or spend time with help desk calls
  • Return on investment for companies: Many companies spend a lot of money on these help desk calls
  • It is a good solution for anyone to take to their enterprise and get a buy in
  • It is going to be more secure than the traditional password
View full review »
it_user182007 - PeerSpot reviewer
Technical Lead at a tech services company with 10,001+ employees

Provided more secure computing.

View full review »
it_user178584 - PeerSpot reviewer
Senior Info Security Consultant at a tech services company with 10,001+ employees

The WebSEAL reverse proxy is great for protecting your critical systems.

View full review »
Buyer's Guide
Single Sign-On (SSO)
March 2024
Find out what your peers are saying about IBM, Okta, Broadcom and others in Single Sign-On (SSO). Updated: March 2024.
765,234 professionals have used our research since 2012.