Configure the Identity external user registry

Use the Identity External User Registry Configuration page to configure or reconfigure the external user registry for the ISIM virtual appliance.

Before working from the Identity External User Registry Configuration page Add the required users to the Identity external user registry.

Properties

Configure button

Select an external registry type from the list:

• IBM Security Directory Server
• Sun Java System Directory Server
• Microsoft Active Directory

Host name	Name of the server hosting the directory server. The acceptable formats for the host name are FQDN, IPv4, and IPv6. For example, isimldap.example.com.
Port	Directory service port. For example, 389.

We can select or clear the SSL check box to manage the secure connection.

Principal DN	Principal distinguished name. For example, cn=root.
Password	Password for the principal distinguished name.
External registry DN location	Location of the external registry DN. For example, dc=com.
Identity Manager system user	Name for ISIM system user. For example, isimsystem.
Identity Manager system user password	Password for ISIM system user.
User Filter	Filters the registry for ISIM user. Specify the LDAP filter that is based on the directory server attributes.

Reconfigure button

External registry type

Select an external registry type from the list:

• IBM Security Directory Server
• Microsoft Active Directory
• Sun Java System Directory Server

Host name	Name of the server hosting the directory server. The acceptable formats for the host name are FQDN, IPv4, and IPv6. For example, isimldap.example.com.
Port	Directory service port. For example, 389.

We can select or clear the SSL check box to manage the secure connection.

Principal DN	Principal distinguished name. For example, cn=root.
Password	Password for the principal distinguished name.
External registry DN location	Location of the external registry DN. For example, dc=com.
Identity Manager system user	Name for ISIM system user. For example, isimsystem.
Identity Manager system user password	Password for ISIM system user.
User Filter	Filters the registry for ISIM system user. Specify the LDAP filter that is based on the directory server attributes.

1. From the top-level menu of the Appliance Dashboard, click...
   Configure > Manage Server Setting > Identity External User Registry Configuration

2. Click Configure.

3. In the Identity External User Registry Configuration Details window, specify the expected variable values.

4. Click Save Configuration to complete this task. The directory server configuration takes some time. Do not refresh or close the page. Wait for the configuration process to complete.

   A message in the Notifications widget indicates you to restart ISIM Server.

5. From the Server Control widget:

   1. Select Security Identity Manager server.

   2. Click Restart.

   See View the Server Control widget.

6. Synchronize the member nodes of the cluster with the primary node.

7. From the Server Control widget, restart ISIM Server again on the primary node.

8. Log on to ISIM Console from the primary node using the Identity external user registry user credentials.

9. Optional: To reconfigure an existing external user registry, do these steps:

   1. From the Identity External User Registry Configuration table, select a record. For example, IBM Security Identity Manager User Registry.

   2. Click Reconfigure.

   3. In the Edit Identity External User Registry Configuration Details window, edit the configuration variables.

   4. Click Save Configuration to complete this task.

Related:

• Collecting information from the external user registry
  
• Add required users to the external user registry
  

Parent topic: Installation of prerequisite components