User registry configuration for external user registry

To use an external user registry for authentication, and do not already have a registry, we must create registry entries.

The topic Preinstall configuration for authentication with an external user registry describes how to prepare an existing user registry for use as an external user registry for authentication. However, if we do not have an existing user registry, we must create one first. The instructions describe how to configure a new user registry so that it can be prepared for use as an external user registry for authentication.

These instructions present one example of how to configure a user registry using the graphical administration tool for IBM Security Directory Server. Alternatively, we can use a command-line utility such as ldapadd. If we are using a different user registry product, your configuration steps can differ.

The task sequence is.

1. Create a suffix.

   The example uses a suffix dc=mycor.

2. Create a domain.

   The example uses a domain dc=mycorp.

3. Create a user template.

4. Create a user realm.

   The example uses a realm dc=mycorp. ISIM requires two user accounts in the realm. The user accounts are an administrator user and a system user. For the administrative user, we use ITIM Manager. For the system user, we use isimsystem.

This example creates a suffix dc=mycorp.

To begin configuration, see Create a suffix.

• Create a suffix
  We can use the IBM Security Directory Server Instance Administration utility to create a suffix.
• Create a domain, user template, and user realm
  We can use the IBM Security Directory Server web administration tool to create a domain, user template, and user realm.

Parent topic: Install