B.2 Global Configuration Values

Global configuration values (GCVs) enable you to specify settings for the Identity Manager features such as password synchronization and driver heartbeat, as well as settings that are specific to the function of an individual driver configuration. Some GCVs are provided with the drivers, but you can also add your own.

IMPORTANT:Password synchronization settings are GCVs, but it’s best to edit them in the graphical interface provided on the Server Variables page for the driver, instead of the GCV page. The Server Variables page that shows Password Synchronization settings is accessible as a tab as with other driver parameters, or by clicking Password Management > Password Synchronization, searching for the driver, and clicking the driver name. The page contains online help for each Password Synchronization setting.

In iManager:

  1. Click Identity Manager > Identity Manager Overview.

  2. Click Search to search for the driver set that is associated with the driver.

  3. Click the upper right corner of the driver icon.

  4. Click Edit Properties > Global Config Values.

In Designer:

  1. Open a project in the Modeler.

  2. Right-click the driver icon or line, then select Properties > Global Configuration Values.

Table B-6 Global Configuration Values > Password Configuration

Option

Description

Application accepts passwords from Identity Manager

If True, allows passwords to flow from the Identity Manager data store to the connected system.

Identity Manager accepts passwords from application

If True allows passwords to flow from the connected system to Identity Manager.

Publish passwords to NDS password

Use the password from the connected system to set the non-reversible NDS® password in eDirectory.

Publish passwords to Distribution Password

Use the password from the connected system to set the NMAS™ Distribution Password used for Identity Manager password synchronization.

Require password policy validation before publishing passwords

If True, applies NMAS password policies during publish password operations. The password is not written to the data store if it does not comply.

Reset user’s external system password to the Identity Manager password on failure

If True, on a publish Distribution Password failure, attempt to reset the password in the connected system by using the Distribution Password from the Identity Manager data store.

Notify the user of password synchronization failure via e-mail

If True, notify the user by e-mail of any password synchronization failures.

Connected System or Driver Name

The name of the connected system, application, or Identity Manager driver. This value is used by the e-mail notification templates.