Product Report: IBM Tivoli Identity Manager

The IBM Tivoli Identity Manager (TIM) belongs to the category of enterprise provisioning systems. Its core function is to reconcile identity information among different systems based on defined processes and connectors to the target systems in a structured, automated, and traceable manner.

IBM Tivoli Identity Manager supports some integrated Access Governance capabilities beyond classical Identity Provisioning. The focus has shifted from pure provisioning towards the more advanced capabilities around role management, access certification, and SoD policies as well as advanced workflow features. Bundled with IBM TIM is the IBM Tivoli Directory Integrator, which is sort of meta-directory solution which in fact allows connecting to a broad variety of different systems. Based on that approach, IBM can offer a large number of connectors.

The product is based originally on the acquisition of the Access360 product by IBM. IBM was amongst the first large software vendors which entered the Identity Provisioning market. With the release 5.1 of TIM, IBM is back and has a competitive offering again.

We recommend evaluating IBM Tivoli Identity Manager when it comes to decisions about Identity Provisioning products with integrated basic Access Governance capabilities. Beyond that, IBM TIM appears to be a good fit within IT Security strategies, especially when mainly based on IBM products. In these situations, we strongly recommend to include IBM TIM in shortlists for product decisions.