Novell Credential Provisioning Policies for Identity Manager 3.5.1

Novell® Credential Provisioning policies for Identity Manager 3.5.1 enhance the user provisioning abilities of any Identity Manager driver by providing the capability to simultaneously provision application credentials to the Novell SecretStore® and Novell SecureLogin credential repositories. Additionally, you can provision the SecureLogin passphrase question and answer in environments where non-repudiation is desired.

This guide provides a detailed reference of how to implement Credential Provisioning policies with SecureLogin and SecretStore. The guide does not contain configuration information for Identity Manager, SecureLogin, or SecretStore.


This guide is intended for Identity Manager administrators.


We want to hear your comments and suggestions about this manual and the other documentation included with this product. Please use the User Comments feature at the bottom of each page of the online documentation, or go to and enter your comments there.

Documentation Updates

For the most recent version of Credential Provisioning Policies, visit the Identity Manager Web site.

Additional Documentation

For documentation on Identity Manager, see the Identity Manager Documentation Web site .

For documentation on Identity Manager drivers, see the Identity Manager Documentation Web site .

For documentation on SecureLogin, see the Novell SecureLogin Documentation Web site .

For documentation on SecretStore, see the Novell SecretStore Documentation Web site .

Documentation Conventions

In Novell documentation, a greater-than symbol (>) is used to separate actions within a step and items in a cross-reference path.

A trademark symbol (®, ™, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark.

When a single pathname can be written with a backslash for some platforms or a forward slash for other platforms, the pathname is presented with a backslash. Users of platforms that require a forward slash, such as Linux* or UNIX*, should use forward slashes as required by your software.