Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Summary
Updated guidance has been provided regarding the PowerShell execution policy setting for the Identity Manager Scripting Driver. The updated configuration guidance is to set the execution policy to RemoteSigned.
Products
Identity Manager (IDM)
Article Body
Security Change
The following is a recommendation for a configuration settings change to the Identity Manager Scripting Driver.
Supported Software Versions
This works on all versions of Identity Manager Scripting Driver.
Resolution
It is recommended that the execution policy for the PowerShell module in the Windows Server on which the Identity Manager (IDM) Scripting Driver is running to be modified as follows:
Here is a sample run of the steps noted above. Items in Yellow are user input:
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.
PS C:\Users\Administrator> Set-ExecutionPolicy RemoteSignedExecution Policy Change
The execution policy helps protect you from scripts that you do not trust. Changing the execution policy might expose you to the security risks described in the about_Execution_Policies help topic at http://go.microsoft.com/fwlink/?LinkID=135170. Do you want to change the execution policy?
[Y] Yes [A] Yes to All [N] No [L] No to All [S] Suspend [?] Help (default is "N"): Y
PS C:\Users\Administrator> Exit
Additional Documentation
https://www.netiq.com/documentation/identity-manager-48-drivers/bi_impl_scripting/data/b8mns15.html
26-May-2023•Knowledge
URL Name
KM000017930