Home
Administrator Guides
Administrator Guide
Administrator Guide
Integration with web access control platforms
Organizations use web access control platforms to consolidate their security systems, which provide a portal that regulates user access to web sites. This section provides an overview of Unica integration with web access control platforms.
IBM Security Access Manager integration prerequisites
The following prerequisites must be met to integrate Unica with IBM Security Access Manager.

Administrator Guides
- Administrator Guide
  - Administrator Guide
    - Unica Platform features
      Unica Platform provides security, configuration, notification, and dashboard features for Unica products.
    - Licensing - overview
    - HCL Unica user account management
      You can manage the attributes of user accounts created using Unica Platform user interface, which we refer to as internal accounts. This is in contrast to external user accounts, which are imported from an external system such as an LDAP server or web access control system.
    - Security management
      Unica Platform supports roles and permissions to control user access to objects and features in Unica applications.
    - Configuration management
      When Unica is first installed, the Configuration page shows only the properties used to configure Unica Platform and some global configuration properties. When you install additional Unica applications, the properties used to configure these applications are registered with Unica Platform. These properties are then shown on the Configuration page, where you can set or modify their values.
    - Dashboard management
      Dashboards are configurable pages that contain information useful to groups of users who fill various roles within your company. The components that make up dashboards are called portlets. Dashboards can contain pre-defined portlets or portlets that you create.
    - The HCL Unica Scheduler
      The Unica Scheduler enables you to configure a process to run at intervals that you define.
    - SAML 2.0 based federated authentication
      Unica Platform implements a SAML 2.0 based Identity Provider (IdP) that enables a single sign-on federation among Unica products or between Unica products and third party applications.
    - SAML 2.0 single sign-on
      Unica Platform supports SAML 2.0 based single sign-on.
    - Single sign-on between HCL Unica and IBM Digital Analytics
      If your organization uses IBM Digital Analytics, you can enable single sign-on between Digital Analytics and Unica.
    - Integration between HCL Unica and Windows Active Directory
      Unica Platform can be configured to integrate with Windows™ Active Directory server or another LDAP (Lightweight Directory Access Protocol) server. By integrating Unica with a directory server, you can maintain users and groups in one centralized location. Integration provides a flexible model for extending the enterprise authorization policies into Unica applications. Integration reduces support costs and the time needed to deploy an application in production.
    - Integration between HCL Unica and LDAP servers
      Unica Platform can be configured to integrate with Windows™ Active Directory server or another LDAP (Lightweight Directory Access Protocol) server. By integrating Unica with a directory server, you can maintain users and groups in one centralized location. Integration provides a flexible model for extending the enterprise authorization policies into Unica applications. Integration reduces support costs and the time needed to deploy an application in production.
    - Integration with web access control platforms
      Organizations use web access control platforms to consolidate their security systems, which provide a portal that regulates user access to web sites. This section provides an overview of Unica integration with web access control platforms.
      - About context roots
        You must unprotect URLs in your web access control system to enable various features in Unica products. To perform this task, you need to include the product context roots in the URLs.
      - SiteMinder integration prerequisites
        The following prerequisites must be met to integrate Unica with Netegrity SiteMinder.
      - IBM Security Access Manager integration prerequisites
        The following prerequisites must be met to integrate Unica with IBM Security Access Manager.
        Configuring IBM Security Access Manager for HCL Unica products
        Unprotect objects in IBM Security Access Manager as described in this procedure to enable correct functioning of your Unica products.
      - Configuration process roadmap: integrating HCL Unica with a web access control system
        Use this configuration process roadmap to scan the tasks required to integrate Unica with a web access control system. The Topic column provides links to the topics that describe the tasks in detail.
      - Configuring integration with an SSL type of WebSEAL junction
        Follow this procedure to configure Unica Platform integration with IBM Security Access Manager using an SSL type of WebSEAL junction.
    - Alert and notification management
      Unica Platform provides support for system alerts and user notifications sent by Unica products.
    - Implementation of one-way SSL
      This section describes one-way SSL in Unica.
    - Security framework for HCL Unica APIs
      Unica Platform provides the security framework for the APIs implemented by Unica products.
    - Data filter creation and management
      Data filters make it possible to restrict the customer data that an Unica user can view and work with in Unica applications. You can think of the data you secure with a data filter as a data set defined by the fields in your customer tables that you specify.
    - Audit event tracking in HCL Unica
      You can configure which audit events are tracked and assign a severity level to each tracked event.
    - The Unica Platform system log
      You should check the system log first if the Unica Platform application malfunctions. The system log is independent of the security audit information, which is stored in the system tables. While the system log tracks some of the same information contained in the security audit reports, it also contains information useful in troubleshooting Unica Platform.
    - Unica Platform utilities
      This section provides an overview of the Unica Platform utilities, including some details that apply to all the utilities and which are not included in the individual utility descriptions.
    - Unica Platform SQL scripts
      This section describes the SQL scripts provided with Unica Platform to perform various tasks relating to the Unica Platform system tables.
    - HCL Unica configuration properties
      This section describes the configuration properties found on the Settings & Configuration page.
    - Customization of stylesheets and images in the HCL Unica user interface
      You can customize the appearance of the user interface where most Unica product pages appear. By editing a cascading style sheet and providing your own graphics, you can change many of the images, fonts, and colors in the user interface.
- Configuration Properties Guide
- System Tables

IBM Security Access Manager integration prerequisites

The following prerequisites must be met to integrate Unica with IBM Security Access Manager.

The IBM Security Access Manager WebSEAL junction must be configured to pass the user name (Short, not Full DN) as the HTTP variable in the URL request to the Unica application.
The Unica property Web access control header variable must be set to the name of the variable that Security Access Manager uses for login names.
The default name for the Security Access Manager login name variable is iv-user.
The IBM Security Access Manager policy server must be configured to use LDAP as its repository for storing group members and user attributes.
The Unica application URLs defined by a WebSEAL junction and the Java™ application server hosting the Unica application must refer to the same path.
All users who need to access Unica applications must belong to a group added to an Access Control List (ACL) with appropriate permissions. A WebSEAL junction that points to an application server where Unica Platform is deployed must be attached to this ACL.
To ignore basic authentication on ISAM setup, you must set Ignore HTTP Basic Authentication header. Navigate to Junction Management -> <Edit Junction> -> Identity Tab and select Ignore for HTTP Basic Authentication Header.

Note: When users log out of an Unica application, they are not automatically logged out of IBM Security Access Manager. They must close their browser after they log out of an Unica application to log out of IBM Security Access Manager.

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.