Creating an EIM identifier for John Day

 

Now that you have performed the initial steps to create a basic single signon configuration, you can begin to add information to this configuration to complete your single signon test environment. You need to create the EIM identifier that you specified in the planning work sheet. In this scenario, this EIM identifier is a name that uniquely identifies you, John Day, in your enterprise.

To create an EIM identifier, follow these steps:

  1. In iSeries™ Navigator, expand System A > Network > Enterprise Identity Mapping > Domain Management > MyCoEimDomain.

    You may be prompted to connect to the domain controller. In that case, the Connect to EIM Domain Controller dialog box is displayed. You must connect to the domain before you can perform actions in it. To connect to the domain controller, provide the following information and click OK:

    • User type: Distinguished name

    • Distinguished name: cn=administrator

    • Password: mycopwd

      Any and all passwords specified in this scenario are for example purposes only. To prevent a compromise to your system or network security, you should never use these passwords as part of your own configuration.

  2. Right-click Identifiers and select New Identifier....

  3. On the New EIM Identifier dialog box, enter a name for the new identifier in the Identifier field, and click OK. For example, John Day.
Now that you have created your identifier, you can add associations to the identifier to define the relationship between the identifier and the corresponding Kerberos principal and i5/OS® user profile.

 

Parent topic:

Scenario: Creating a single signon test environment
Previous topic: Testing network authentication service configuration on System A
Next topic: Creating a source association and target association for the new EIM identifier