The aim of the project was to create a new component for CA IdM designed to manage permissions in end applications that lack direct connection to IdM.

It was important to define the initial concept of virtual endpoint management at the beginning of the project so that it would be universal and applicable to different types of endpoint systems. After this definition, an administration interface was created to manage virtual endpoints including their attributes, role and rule definitions, approval workflow or reports to compare the status between endpoint applications and IdM. A new user interface for role requests was also created. New email notifications (e.g., role assignment/removal, data change, etc.) including backups were created to keep stakeholders informed of the required status of accounts in managed applications.