Tivoli Access Manager users can be managed through the Web Portal Manager located in the IBM Integrated Solutions Console. When a TAM user profile is viewed in Web Portal Manager, there are two text boxes that show the Last Login and Last Password Change for a user. These are especially useful for audit purposes as they can show an administrator when the user last logged in and when his password was last changed. However, these are not automatically enabled and must be configured to be used.
Figure 1: Sample TAM User Page with Last Login and Last Password Change Enabled
To configure the Last Login and Last Password Change for users:
- Login to the TAM Server as root
- Edit the ivmgrd.conf file as follows:
[ivmgrd]
provide-last-login = yes
provide-last-pwd-change = yes[ldap]
enable-last-login = yes - Save the file
- Restart TAM:
pd_start restart - Login to WebSeal Server as root
- Edit the webseald-default.conf file as follows:
[ldap]
enable-last-login = yes - Save the file
- Restart WebSeal:
pdweb restart
No comments:
Post a Comment