Environment
Identity Manager 4.8
Identity Governance 3.6
Identity Governance 3.6
Situation
For a successful integration of Identity Manager 4.8 and Identity Governance 3.6 using a single OSP, it is important to use the right version of configupdate. The version should be 4.9 and it can be checked by looking at the version of file:
ldapconfig_support-4.9.0.jar
The configupdate utility should not prompt for the cx client in the IG SSO Clients. If it does, it's an indication that there is a leftover setting from an integration with 3.5 that needs to be removed.
Resolution
Edit the file configupdate.sh/bat and remove, if present, the parameter:
-Dcom.netiq.uaconfig.impl.custom.clients=/opt/netiq/idm/apps/tomcat/conf/uaconfig-ig-defs.xml
From the JAVA_OPTS definitions of the program.
It's also necessary to remove the file /opt/netiq/idm/apps/tomcat/conf/uaconfig-ig-defs.xml from the tomcat/conf directory. It can be deleted or backed up to a temporary location.
After doing this, in the "Request client" section of the IG SSO Clients tab, there should be no password prompt for the cx client.