Make sure that you secure access to Identity Vaults and to Identity Manager objects.
Physical Security. Protect access to the physical location of the servers where an Identity Vault is installed.
Access Rights. Administrative rights are needed to create Identity Manager objects and configure drivers. Monitor and control who has rights to create or modify the following:
An Identity Manager driver set
An Identity Manager driver
Driver configuration objects (filters, style sheets, policies), especially policies that are used for password retrieval or synchronization
Password policy objects (and the iManager task for editing them), because they control which passwords are synchronized to each other, and which Password Self-Service options are used