3.6 Setting Up the Driver on the Metadirectory Server

  1. In iManager, select the Identity Manager Utilities task New Driver.

  2. Select a Driver Set where you want to create the driver, then click Next.

    If you place this driver in a new Driver Set, you must specify a Driver Set name, context, and associated server.

    Only one driver set can be active on a server.

  3. Select Import a driver configuration from the client (.XML file), type or browse for i5os.xml on the workstation (where you placed it in Step 2), then click Next.

  4. Provide a name for the driver and select an installation method, then click Next.

    For details about choosing the appropriate Installation Method, see Section 2.4, Choosing between the Basic and the Advanced Installation Methods.

  5. Specify the configuration settings as described in the following table, then click Next.

    Configuration Setting

    Action

    Installation Method

    Data Flow

    Select Bidirectional, Application to Identity Vault, or Identity Vault to Application. For details, see Data Flow.

    Advanced

    Polling Interval

    Specify the number of seconds the Publisher shim waits after running the polling CL program and sending events from the change log to the Metadirectory engine. For details, see Polling Interval.

    Advanced

    Base Container

    Specify the Identity Vault container where synchronized users and groups reside.

    You can specify separate containers for users and groups by updating the driver properties later. For details, see User Base Container and Group Base Container.

    Basic and Advanced

    Enable Entitlements

    Select Yes or No. For details, see Enable Entitlements.

    Advanced

    Synchronize Group Membership

    Select Yes or No. For details, see Synchronize Group Membership.

    Advanced

    Remote Host Name and Port

    Specify the host name or IP address and TCP port number of the driver shim on your i5/OS connected system. The default port number is 8090.

    Basic and Advanced

    Use SSL

    Select Yes or No. For details, see Use SSL.

    Advanced

    Driver Object Password Remote Loader Password

    Specify secure passwords and remember them. You must enter them in Step 7.h when you install the driver shim on the connected system. For details, see Driver Object Password and Remote Loader Password.

    Basic and Advanced

  6. Click Define Security Equivalences and make the driver equivalent to ADMIN or another high-rights user so the driver can obtain information from the Identity Vault and create users and groups there.

    For details about the rights required by the user, see Table 2-2, Base Container Rights Required by the Driver Security-Equivalent User.

  7. (Optional) Click Exclude Administrative Roles to exclude users with administrative rights from being processed by the driver.

  8. Click Finish to complete the driver installation.

  9. Start the driver.

    Click the upper right corner of the driver icon, then click Start driver.