This Connector is used in solutions which require communication with IBM Tivoli Identity Manager (ITIM).
The ITIM server provides a communication interface which uses a ITIM-proprietary version of DSMLv2. This ITIM-proprietary version of DSMLv2 doesn't fully comply with the DSMLv2 specification. Hence the Connector name - ITIM DSMLv2 Connector.
This Connector is used for both:
using the ITIM-proprietary DSMLv2 communication interface.
The version of ITIM supported is 5.0 and higher.
The Directory Services Markup Language v1.0 (DSMLv1) enables the representation of directory structural information as an XML document. DSMLv2 goes further, providing a method for expressing directory queries and updates (and the results of these operations) as XML documents.
This Connector is specially designed for use with ITIM; for generic use, use the DSMLv2Soap Connector and/or the DSMLv2SoapServer Connector instead.
The ITIM DSMLv2 Connector which connects to a IBM Tivoli Identity Manager Server repository using DSML over HTTP.
The Connector connects to the DSMLv2 ITIM event handler (introduced in ITIM 4.5) that allows the import of data into ITIM with ITIM acting as a DSMLv2 server. Therefore, only ITIM Server 4.5 and above is supported. The ITIM DSMLv2 Connector uses the ITIM DSML JNDI driver "dsml2.jar", to connect to and interact with the ITIM Server. Deployment of the DSMLv2 Connector uses JNDI queries to interact with the ITIM repository.
The Connector supports the AddOnly, Delete, Iterator, Lookup and Update modes.
This component is not available in the TDI 7.1 General Purpose Edition.
The ITIM DSMLv2 Connector supports the Skip Lookup general option in Update or Delete mode. When it is selected, no search is performed prior to actual update and delete operations. It requires a Name parameter (for example, $dn for LDAP) to be specified in order to operate properly.
When connecting to a ITIM Server the following URL should be specified in the ITIM DSMLv2 Connector: http://<ITIM_Server_host:ITIM_Server_port>/enrole/dsml2_event_handler; for example, "http://192.168.113.12:9080/enrole/dsml2_event_handler".
The following limitations apply to ITIM DSMLv2 Connector modes when interacting with ITIM Server:
When interacting with ITIM Server, all JNDI queries and filters, used either from the GUI or in scripting (in Advance Search Criteria, for example) must be enclosed in brackets, for example "(uid=user1)".
In order to use a secure HTTPS connection to the DSMLv2 Server, the provider URL specified must begin with "https://" and the server's certificate must be included in TDI's trust store.
The ITIM DSMLv2 Connector needs the following parameters: