Create a domain, user template, and user realm

We can use the IBM Security Directory Server web administration tool to create a domain, user template, and user realm. This task shows how to use the graphical user interface.

If the web administration tool is not installed, see the IBM Security Directory Server documentation for installation instructions: http://www.ibm.com/support/knowledgecenter/SSVJJU/welcome?

  1. Start the IBM Security Directory Server web administration tool and log on to the LDAP server as an administrator.

  2. Go to Directory management > Manage entries and click Add... to create a domain.

  3. In the Structural Object Class field, select domain and click Next.

  4. On the Select auxiliary object classes panel, we do not need to specify any settings. Click Next.

  5. On the Required Attributes panel, enter dc=mycorp in the Relative DN field. In the Required attribute section, in the dc field, enter mycorp. Click Next.
  6. We do not need to set any values on the Optional attributes page. Scroll to the bottom of the panel and click Finish.
  7. A confirmation page displays, and asks if to add a similar entry. Click No to go back to the Manage entries page.

  8. On the Manage entries page, ensure that the dc=mycorp domain is created and listed in the RDN column.

  9. Optionally, we can create a user template. If we do not want a user template, continue to the next step to create the user domain. To create a user template:

    1. Go to the Realms and templates --> Manage user templates page and click Add....

    2. On the Add user template page, enter a name in the User template name filed and enter a value in the Parent DN filed. Click Next.

      For this example, User template name can be mycorpUserTempl and Parent DN is dc=mycorp.

    3. Select a value for the Structural object class for this user template. For this example, select menu item inetOrgPerson. Click Next.

    4. Enter a value in the Naming attribute field. For this example, enter uid. Click Edit... to add the password field to the required attributes tab.

    5. On the Edit tab page, select the userPassword attribute and click Add.

    6. When userPassword is added, go to the Selected attributes field and move userPassword to the bottom. Click OK.

    7. Click Finish to create the user template.
    8. Verify that the user template mycorpUserTempl is created.

      On the Manage user templates page, verify the existence of the entry cn=mycorpusertempl,dc=mycorp.

  10. On the Realms and templates --> Manage realms page, click Add... to create a user realm for the user template that we created.

  11. On the Add realm page, enter values in the Realm name field and the Parent DN field, and click Next.

    For example, Realm name can be mycorpUserRealm and Parent DN is dc=mycorp.

  12. On the Add realm page, go to the User template menu and select the user template that we created. Click Edit....

    In this example, the value in the User template field is cn=mycorpusertempl,dc=mycorp.

  13. On the Search filter page, accept the default settings and click OK.

  14. Click Finish to complete the creation of a user realm.

  15. Select Realms and templates > Manage realms. Ensure that the new realm is listed.

    For this example, ensure that there is an entry cn=mycorpuserrealm,dc=mycorp.

The user registry is now configured.

Parent topic: User registry configuration for external user registry