VIS provides a consolidated/merged view of multiple LDAP directories in real-time. Multiple ways to configure merges and joins without custom coding.
Multiple Operating Modes
Union Mode- Provides a combination or collection of the objects from all connected source directories.
Object Precedence Mode (OP) – Provides an authoritative order at a directory level. For users that exist and are joined in x number of directories always return “this” user object.
Attribute Precedence (AP) Mode – Provides a merged view of objects (Givenname, SN from Internal directory and sAMAccountName and HealthID from External directory.
Eliminates the need to extend the Active Directory schema for 3rd party applications. Custom schema and data is stored at the virtual layer and is applied to objects automatically in real-time.
Virtual Group Manager™
Virtual Static Group Membership - Allows you to have users in a single group from multiple LDAP stores without the need for forest trusts.
Virtual Dynamic Group Membership - Allows you to have users in a group based on a LDAP filter. Users are not “physically” in the group, but rather determined by an LDAP query that is executed at run-time. “(&(objectclass=user)(title=manager))”
Scaling
VIS scales horizontally or vertically to meet the needs of enterprise deployments. Built-in connection pooling, and full support for failover and load balancers.
Auditing
VIS tracks and stores all LDAP activity (binds, search, deletes, modifies) to a SQL Server database.
Web Based Reports
Optimal IdM Reports provides comprehensive audit and compliance reports that can be run interactively, or scheduled and distributed via e-mail in a variety of formats (PDF, XLS, Word, HTML).
Password Management
Pointing a password manager application (such as the Optimal IdM Password Manager™) to VIS allows for password changes to be set in real-time, across multiple directories.
Extensibility
VIS can be extended by developers using any .NET language via the object class library.
