API eIAM-RDM

eIAM-RDM allows users to be invited into eIAM using a REST (Representational State Transfer) API. RDM stands for Remote Delegated Management. In principle, delegated management is about someone else granting permissions rather than the person responsible for permissions in an office (cf. eIAM performance 6 under and eIAM-Video at minute 11).

When using RDM, it is not a human who triggers the invitation in eIAM, but a machine (process in the business application). eIAM sends the invited person an e-mail containing an invitation text and an onboarding code. The invited person redeems the onboarding code once using an adequate electronic identity of their choice, thus this electronic identity is connected to the target application via eIAM.

RDM Functionality
×

The RDM 2.0 API offers a simple access to your user base, access management and also offers a onboarding workflow. At the moment the following methods are available:

1) User:

  • Create
  • Delete
  • Update
  • Get single user
  • Search users with filter condition
2) Enterprise roles:
  • Assign a role to an user
  • Revoke a role from an user
  • Get roles from a user
3) Onboarding:
  • Trigger onboarding (create code and start the onboarding flow, multiple options)
  • Get onboarding state
The idea is, that every usecase available at Delegated Management also could be achieved using RDM 2.0 API. Currently only above methods are implemented. Please talk to us when you need other use cases from delegated management available in RDM 2.0 API.


Usage consideration
The consideration of whether to use eIAM's
Delegated Management
in general and possibly in particular via RDM is based on the modelling of the onboarding processes, i.e. the question of "how do users get into the target application for the first time".

First-time use of the application for new users