Tivoli Federated Identity Manger for Federated Identity Management and Web Services Security

[This article is sponsored by Peningo Systems, Inc., a provider of Tivoli Consulting and Staffing Services on a nationwide basis. For more information on Peningo Systems, please go to the Peningo Tivoli Identity Manager Consultants page ]

IBM has release a RedBook Draft titled “Federated Identity Management and Web Services Security with IBM Tivoli Security Solutions. We at Peningo Systems strongly recommend this RedBook for any Tivoli Security Consultant, as well as, any security officers, administrators and architects who are considering implementing and deploying Federated Identity Management solution, or wish to understand and implement Web Services security and Federated Identity Management.

Federated Identity Management for many businesses is essential as it enable companies to optimally pursue business automation goals that best align with their business model, IT policies, security and privacy goals and requirements. For companies that have not implemented a Federated Identity Management solution, they have is no way in today’s world to trust identities belonging to their partners, suppliers, contracts and their outsourcers. This lack of trust means companies end-up creating online identities (and passwords) for all users. This approach is very costly, inefficient, and creates user frustration with multiple accounts and registrations for each Web Site. Federation is the set of business and technology agreements as well as policies that enable companies to optimally pursue business automation goals that best align with their business model, IT policies, security and privacy goals and requirements.

This book takes a close look at the trust infrastructure over which business federations are implemented. This RedBook covers important aspects of utilizing the Tivoli integrated Identity management architecture in order to build and deploy the Tivoli Federated Identity Management and Web Services Security components, which consist of Tivoli Federated Identity Manager, IBM WebSphere Application Server, and the IBM Integrated Solutions Console.

The following is the Table of Contents for this RedBook

Part 1. Architecture and design

Chapter 1. Business context for identity federation
Chapter 2. Architecting an identity federation
Chapter 3. Tivoli Federated Identity Manager architecture
Chapter 4. Deploying Tivoli Federated Identity Manager
Chapter 5. Integrating with IBM identity management offerings

Part 2. Customer environment

Chapter 6. Overview
Chapter 7. Use case 1 – SAML/JITP
Chapter 8. Use case 2 – WS-Federation
Chapter 9. Use case 3 – Liberty
Chapter 10. Use case 4 – Web services security management

Part 3. Appendixes

Appendix A. Configuring Access Manager WebSEAL and Web plug-in
Appendix B. Identity mapping rules
Appendix C. Keys and certificates
Appendix D. WS-Security deployment descriptors

To view and download the RedBook Draft in PDF, please go to the link below:


If you are an “End Client” looking for a Tivoli Consulting Service provider to support your Tivoli Applications, Peningo Systems provides Consultants with expertise in many areas including:

Tivoli Identity Manager

Tivoli Access Manager

WebSphere Portal

WebSphere Commerce

WebSphere Eclipse Development

WebSphere MQ

System Security Architecture

DB2 – UDB,



Peregrine / HP Openview AssetCenter and ServiceCenter

J2EE based systems architecture and development.

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo Tivoli Consultants page.

To see Peningo’s other Blogs please go to

Peningo’s Blog

The Peningo Opinion Blog

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

About Edward Pellon

About Peningo Systems ( www.peningo.com ) Peningo Systems and it founders have been involved in IT Consulting for over 30 years. Our goal is to support the individual IT Consultant by providing an avenue for them to be in contact directly to the end client. By doing this we reduce the many layers and tiers of organizations that are involved with placement of an IT Consultant. By reducing these layers and tiers, cost can be significantly reduced to the end client, while still providing the room for the Consultant to increase their revenues. Peningo is a for profit organization. We have decided to earn our “keep” by advocating, establishing and supporting a “market place” where the IT consultant and the “end client” may function without the interference of tiers of “prestigious” companies that bring to the consulting assignment excessive Markups and very little else. At Peningo we feel that the IT Consultant should be paid adequate rates commensurate with their skills and the personal sacrifice inherent in the life of an IT consultant. These allows us to field capable, motivated consultants that will contribute successfully to the “end client’s” systems development and implementation, while attracting to the IT industry new talent that otherwise would go to more lucrative pursuits. With the elimination of the “prestigious ones” there will be costs savings that will allow for the consultant to be paid a higher rate and for the client to reduce its costs. Both objectives represents Peningo’s Mission.
This entry was posted in IBM Tivoli, Offshoring, Tivoli, Tivoli Access Manager, Tivoli Consulting, Tivoli Federated Identity Manager, Tivoli Identity Manager, WebSphere. Bookmark the permalink.

Comments are closed.