IBM Tivoli Access Manager [EOL] Reviews

The single sign-on configurations are unique to the product. They support multiple types of SSO configurations, including FSSO, HTTP, SAML. The most robust functionality for SSO is its EAI (External Authentication Interface) option. EAI allows customers to customize their authentication mechanisms as per their needs.

Access management for web resources is simple to configure but highly impenetrable. It can search all the resources in the protected system and allows you to manage user access with a few clicks.

The robust single sign-on feature allows business users to improve their productivity in their day-to-day tasks. It also provides end-user activity visibility on critical applications.

The user interface looks like it was designed for technical personnel only. The interface is part of the WebSphere Admin console. A lot of configuration, including those for SSO, are done through scripts and config files. The GUI could incorporate these configurations.

I have used it for four years.

If we talk about out-of-the-box functionality, the product is highly stable. For the areas in which the product allows customization, stability is dependent on the quality of customization done.

The product is highly scalable; very simple to increase the scale of deployment.

IBM provides prompt support on any issues faced. IBM is willing to go an extra mile to help meet their customers’ requirements.

This was the first product I have worked with.

Initial setup in older versions was quite complex, but with the newer versions it is quite simple. The product also comes with a pre-configured appliance.

I am more involved in the technical side, with limited knowledge of licensing and pricing.

I am part of an organization which is an IBM business partner and provides services using IBM products only.

This product is highly recommended to meet access management and web single sign-on requirements.

• Junctions access control
• Transparency to the user

Provided more secure computing.

The whole product could be made into one suite instead of multiple components which are essentially a part of the same infrastructure.

Six years.

Yes, the deployment has many issues like: the sequence of components installation, connectivity and most of all, certificates.

Yes, the applications depend on each other to function. Each application becomes a single point of failure.

No issues encountered.

Customer Service:

8/10.

Technical Support:

8/10.

No solution was used previously.

Many components needed to be installed with even more prerequisites. Each component had a sequence to follow.

It was implemented by an in-house team.

We also looked at Siteminder.

Go for Siteminder.

• More productive work for employees: They do not have to spend time on resetting passwords or spend time with help desk calls
• Return on investment for companies: Many companies spend a lot of money on these help desk calls
• It is a good solution for anyone to take to their enterprise and get a buy in
• It is going to be more secure than the traditional password

• The Verify feature: A push method which customers are going for
• “Password-less” solution
• A very good demo to look at
• A very good solution to take to customers
• Solves a lot of the problems with help desk calls and password resets
• A very secure solution

I am pretty happy with the outcome so far this year. We have yet to hear from the customers. I have not updated it myself and I have not done any work with customers. Looking at their roadmap, they have a broad grasp of the security features which the industry needs.

I have not tested the stability yet. This is the first time that I have seen it. I cannot comment on the stability at this point.

I can’t comment about scalability. This is the first time that I have heard about this technology. I would like to learn more about this offering and then I will know how stable and scalable it is.

We haven’t used technical support yet. This solution has not yet been released. It is still just a demo and it is going to come out in the next few months.

I have been with this technology for over ten years. I have been following all the developments closely. I know that it is a good solution for customers to invest in.

My advice to colleagues is to try the solution.

When looking for a vendor, I want the following from them:

• A good understanding of the technology
• Knowledge of how it should be implemented
• Knowledge of the right way of doing things
• An understand of the roadmap for the next few years: This will make sure that customers do not have to make a U-turn later and redo things

• WebSEAL
• SSO

The WebSEAL reverse proxy is great for protecting your critical systems.

There is always room for improvement in all areas.

On and off for five years.

Yes, because there are so many moving parts it can often be difficult getting it right first time. Linux is more difficult than Windows but I feel Linux is more stable.

Not once it’s is installed.

No issues encountered.

Customer Service:

Good.

Technical Support:

Very good.

No previous solution used.

Complex. Like I mentioned, there are so many moving parts and I had issues with DB2 installation and patching it up to latest versions. This seems typical but others may have had better experiences.

Vendor. Their experience was phenomenal.

No other options evaluated.

Try to install a few times on various platforms to familiarise yourself with any issues.

Tivoli access manager enables integration with user session management and Web Sphere Data Power in web services and web 2.0 environments.Authentication and authorization management for online business initiatives and portals implementations are centralized.Access controls for .NET, Java, Exchange servers and Microsoft Share point implementations are also centralized.Capabilities of advanced security are enhanced to support strong, flexible authentifications and authentications based on risks as well as critical internet vulnerabilities.Malicious, fraudulent, accidental behavior by staff and internal users are high level security threats that are prevented by Tivoli access manager.It also delivers Web SSO that is consistent with users on heterogeneous systems.

You must be skilled to use Tivoli Access manager. I had to undergo training to use Tivoli access manager, which was another expense exclusive of the purchase, but it was worth it.

Tivoli access manager securely manages access to critical data and applications to businesses, as well as convenient and fast access to systems by authorized users. It consists of a user registry and an authorization service, that includes an authorization engine and database, as well as a resource manager. It has a family for e-business, enterprise SSO, and operating systems. I have used it for two years now.