domain create

Creates a domain, including an administrator ID and password to log in to the specified domain. We must log in to the management domain as an administrator to perform this command.

Requires authentication (administrator ID and password) to use.

This command applies to LDAP registries only.

domain create domain domain_admin_id domain_admin_password [-desc description]

An initial domain is created when the policy server is configured. This domain, called the management domain, is the default domain in which ISAM enforces security policies for authentication, authorization, and access control. We must log in to the management domain to create more policy domains. When we create a domain, specify an administrative ID and password for the domain. The administrator of the management domain later assigns the new ID and password. The new credentials are assigned to the administrator responsible for handling policy management tasks for the specific domain. The administrator of the domain is responsible for updating the security policy for that particular domain if:

This domain administrator can also delegate administration tasks to others within that specific domain. For information about managing domains, see the Administering topics in the IBM Knowledge Center.

Options

Return codes

Examples

  • Create a domain named Finance, a domain administrator ID Admin2, a password, and a domain description:
    pdadmin sec_master> domain create Finance Admin2 password
    -desc "accounting area"

    See also

    domain delete
    domain list
    domain modify
    domain show

    Parent topic: pdadmin commands