Configuration of Password Synchronizers for IBM Security Identity Manager integration
You must set the syncClass property value in thepwsync.props configuration file to configure the Password Synchronizers for the Security Identity Manager integration.
Configure the Password Synchronizer to use an IBM Security Identity Manager Decorator to one of the Decorator class names that are shown in the following list:
- com.ibm.di.plugin.pwstore.ldap.LDAPPasswordStoreITIMDecorator
- com.ibm.di.plugin.pwstore.ldap.JMSPasswordStoreITIMDecorator
- com.ibm.di.plugin.pwstore.log.LogPasswordStoreITIMDecorator
Specify the following required properties in the pwsync.props configuration file to configure for IBM Security Identity Manager integrationNote: Property names are case-sensitive.
- itimPasswordUrl
- URL of the IBM Security Identity Manager hosted Password Strength servlet. For example:
https://host:port/passwordsynch/synch- itimPrincipalName
- The IBM Security Identity Manager user name to run a password check.
- itimPrincipalPassword
- Password for the IBM Security Identity Manager user name that is specified in the itimPrincipalName property.
- itimSourceDN
- The IBM Security Identity Manager service name against which you must run the password check. For example:
erservicename=TDIPasswordService, o=IBM, ou=IBM, dc=comNote: When the IBM Security Identity Manager Integration is enabled, set the checkRepository property to true in the configuration file of the Password Synchronizer.
Parent topic:
IBM Security Identity Manager integration