IBM Tivoli Directory Integrator
Configure the Password Synchronizer to utilize a Tivoli Identity
Manager Decorator by setting the syncClass property
value within the general configuration file (pwsync.props)
to one of the Decorator classnames shown below:
- com.ibm.di.plugin.pwstore.ldap.LDAPPasswordStoreITIMDecorator
- com.ibm.di.plugin.pwstore.ldap.JMSPasswordStoreITIMDecorator
- com.ibm.di.plugin.pwstore.log.LogPasswordStoreITIMDecorator
The pwsync.props file has a section
that configures the ITIM integration; specify the following required
properties (property names are case-sensitive):
- itimPasswordUrl
- URL of the Tivoli Identity Manager hosted Password
Strength Servlet. For example:
https://host:port/passwordsynch/synch
- itimPrincipalName
- Tivoli Identity Manager user name permitted to
perform a password check.
- itimPrincipalPassword
- The password for the Tivoli Identity
Manager user name specified in itimPrincipalName.
- itimSourceDN
- The Tivoli Identity Manager service name against which
the password check should be performed. For example:
erservicename=TDIPasswordService, o=IBM, ou=IBM, dc=com