C.1 Driver Configuration

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration.

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and click Properties > Driver Configuration.

There are different sections under Driver Configuration. Each section is listed in a table. The table contains a description of the fields, and the default value or an example of what value should be specified in the field.

C.1.1 Driver Module

The driver module changes the driver from running locally to running remotely or the reverse.

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration > Driver Module.

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and select Properties > Driver Configuration.

  2. Select the Driver Module tab.

    Option

    Description

    Java

    Used to specify the name of the Java class that is instantiated for the shim component of the driver. This class can be located in the classes directory as a class file, or in the lib directory as a .jar file. If this option is selected, the driver is running locally.

    Native

    Used to specify the name of the .dll file that is instantiated for the application shim component of the driver. If this option is selected, the driver is running locally.

    Connect to Remote Loader

    Used when the driver is connecting remotely to the connected system.

    Remote Loader Client Configuration for Documentation

    Includes the Remote Loader client configuration information in the driver documentation that is generated by Designer.

C.1.2 Driver Object Password

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration > Driver Object Password > Set Password.

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and click Properties > Driver Configuration.

  2. Click Driver Module > Connect to Remote Loader > Driver Object Password > Set Password.

    Option

    Description

    Driver Object Password

    Use this option to set a password for the driver object. If you are using the Remote Loader, you must enter a password on this page or the remote driver does not run. This password is used by the Remote Loader to authenticate itself to the remote driver shim.

C.1.3 Authentication

The authentication section stores the information required to authenticate to the connected system.

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration > Authentication.

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and select Properties > Driver Configuration.

  2. Click Authentication.

    Option

    Description

    Authentication ID

    or

    User ID

    Specify a user application ID. This ID is used to pass Identity Vault subscription information to the application.

    Example: CN=NotesDriver/o=novell

    Authentication Context

    or

    Connection Information

    Specify the IP address or name of the server the application shim should communicate with.

    The connection string uses the following format: CN=DominoServer1/o=novell

    Remote Loader Connection Parameters

    or

    Host name

    Port

    KMO

    Other parameters

    Used only if the driver is connecting to the application through the remote loader. The parameter to enter is hostname=xxx.xxx.xxx.xxx port=xxxx kmo=certificatename, when the host name is the IP address of the application server running the Remote Loader server and the port is the port the remote loader is listening on. The default port for the Remote Loader is 8090.

    The kmo entry is optional. It is only used when there is an SSL connection between the Remote Loader and the Metadirectory engine.

    Example: hostname=10.0.0.1 port=8090 kmo=IDMCertificate

    Driver Cache Limit (kilobytes)

    or

    Cache limit (KB)

    Specify the maximum event cache file size (in KB). If it is set to zero, the file size is unlimited.

    Click Unlimited to set the file size to unlimited in Designer.

    Application Password

    or

    Set Password

    Specify the password for the user object listed in the Authentication ID field.

    Remote Loader Password

    or

    Set Password

    Used only if the driver is connecting to the application through the Remote Loader. The password is used to control access to the Remote Loader instance. It must be the same password specified during the configuration of the Remote Loader on the connected system.

C.1.4 Startup Option

The Startup Option allows you to set the driver state when the Identity Manager server is started.

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration > Startup Option.

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and select Properties > Driver Configuration.

  2. Click Startup Option.

    Option

    Description

    Auto start

    The driver starts every time the Identity Manager server is started.

    Manual

    The driver does not start when the Identity Manager server is started. The driver must be started through Designer or iManager.

    Disabled

    The driver has a cache file that stores all of the events. When the driver is set to Disabled, this file is deleted and no new events are stored in the file until the driver state is changed to Manual or Auto Start.

    Do not automatically synchronize the driver

    This option only applies if the driver is deployed and was previously disabled. If this is not selected, the driver re-synchronizes the next time it is started.

C.1.5 Driver Parameters

In iManager:

  1. Click Identity Manager > Identity Manager Overview, then click Search to search for the driver set that is associated with the driver.

  2. Browse to the driver, then click the upper right corner of the driver icon.

  3. Click Edit Properties > Driver Configuration > Driver Parameters. (See Table C-1.)

In Designer:

  1. Open a project in the Modeler, then right-click the driver line and select Properties > Driver Configuration.

  2. Click Driver Parameters. (See Table C-1.)

    Table C-1 Driver Parameters for the Notes Driver

    Parameter

    Description

    Driver Options

     

    Driver parameters for server: Server-name

    Specify the name of the server on which the driver resides.

    Edit XML

    Allows you to edit the Lotus Notes driver parameters through an XML editor.

    Notes Domain Name

    Specify the name of the Notes Domain. An example is NotesDomain.

    Notes Driver User ID File

    Specify the full path (on the Domino Server) for the Notes User ID file associated with the Notes User this driver will use for Notes Authentication. An example is c:\lotus\domino\data\admin.id.

    Default Certifier ID File

    Specify the full path (on the Domino server) for the Default Notes Certifier ID file the driver will use as the default certifier. This is usually the root certifier, but can be any certifier with adequate access. An example is c:\lotus\domino\data\cert.id.

    Default Notes Certifier Password

    Specify the password for the Default Notes Certifier ID this driver will use when certifying new users, then reconfirm the password. You can also clear the password.

    This password is secured using the Named Passwords feature. See Section 4.3, Using Named Passwords.

    Directory File

    The Notes database filename the Notes Driver is synchronizing. For example, names.nfs is the Notes public address book.

    Notes Address Book?

    Select True if the Notes database that is being synchronized is a Notes Address Book. Select False if the Notes database that is being synchronized is not a Notes Address Book.

    Update File

    The ndsrep program creates an output database (by default, ndsrep.nsf), detects changes in the address book in the Domino server (or other Notes database), and copies these changes to the output database. The default filename is ndsrep.nsf.

    Subscriber Options

     

    Certify (register) Notes Users

    Whether the driver should certify users added to Notes on the Subscriber channel. The default is True.

    Registration/Certification Log File

    The Certification log file of the Domino server ( certlog.nsf). For the Notes driver to register or certify Notes users, the Notes driver user must have rights to create entries in this database.

    Default User ID File/Registration Expiration Term (in years)

    Specify the expiration term (in years) for ID files created by the driver when certifying users added on the Subscriber channel. The default is 2.

    User ID File Storage Location

    The full directory path of the location to create UserID files for newly created users.

    Add Registered Users to Address Book

    Select True if you want to add newly registered users in the Notes Address Book. Select False so newly registered users who have a UserID file created are not placed in the Notes Address Book.

    Store User ID file in Address Book?

    Whether Notes should store new user IDs in the address book when certifying users added to Notes on the Subscriber channel. The default is False.

    Is Domino Server North American?

    Is the Domino server this driver is binding to when certifying new users a North American Domino server? (This affects encryption levels.) Choose True for 128-bit encryption. The default is True.

    Notes Password Strength (0 - 16)

    Specify the minimum password strength for new Notes user IDs (0 - 16). The default is 5.

    Create User E-mail Box

    Select the desired option. Select True if you want to create a Notes e-mail account for users. Select False if you do not want to create an e-mail account for users. The default is True.

    Domino Mail Server Name

    Specify the name of the Domino mail server this driver will authenticate to (in fully qualified canonical form, such as cn=MyMailServer/o=Organization).

    Mail File Template

    Specify the filename (on the Domino server) for the mail database template this driver will use when creating new mailfile users. The path should be relative to the Domino mail server’s data directory.

    User Mail File Storage Location

    Specify the directory where you want to store user mail files. An example value is mail.

    Default Notes Password:

    Specify the default password for newly registered users if no other password is supplied to the Notes driver shim. An example value is notes.

    Default Notes HTTP Password

    Specify the default Notes Web HTTP password for new Notes users if no other password is supplied to the Notes driver shim. An example value is notes.

    Publisher Options

     

    Polling Interval (in seconds)

    Specify the polling interval (in seconds) for how often the Publisher channel checks the change log for updates. The default is 30.

    Enable Loop Back Detection

    Select True to enable event loopback capability, or False to disable event loopback detection. Loopbacks cannot be used to determine object changes if they are performed by the Administration Process (AdminP). The default is True.

    NDSREP Polling Units

    The units of time used to specify the ndsrep polling interval. You can specify Seconds, Minutes, Hours, Days, or Years.The default is Seconds.

    NDSREP Polling Interval

    A positive integer specifying the polling interval for ndsrep. The default value is 30.

    DN Format

    Specify the distinguished name format used by the Publisher channel. Changing this parameter might also necessitate changing the Publisher Placement policy where the Notes Source DN is often interpreted to determine Identity Vault object placement.

    The choices are NOTES_TYPED, NOTES, SLASH_TYPED, SLASH, LDAP_TYPE, LDAP, DOT_TYPED, and DOT. The default is Slash.

    NDSREP Domino Console Trace Level.

    Specify the Domino console trace setting. The choices are Silent, Normal, Verbose, and Debug. The default is Normal.

    Check Attributes

    Whether all attributes should be checked for each object event. Select True for only changed attribute values to be published from Notes to Identity Manager. Select False for all attributes within the Publisher channel filter to be published from Notes to Identity Manager if a changed attribute is detected. The default is True.

    Write Time Stamps

    Whether driver time stamps should be written to each synchronized object. Select True to attach a Notes driver-specific time stamp to each object that the Notes driver modifies. This action is done to improve the driver’s ability to detect object changes from replicated databases. Select False to disallow any special time stamps from being attached to Notes objects. The default is False.