In iManager, select the
task .Select a driver set where you want to create the driver, then click
.If you place this driver in a new driver set, you must specify a driver set name, context, and associated server.
Only one driver set can be active on a server.
Import the driver rules file.
Select RACF-IDM3_6_0-V1.xml on the workstation (where you placed it in Step 2), then click .
, type or browse forNOTE:If you are running the Identity Manager 4.0.1 Metadirectory engine, this XML file should be selectable through the drop-down.
Specify the configuration settings as described in the following table, then click
.
Configuration Setting |
Action |
---|---|
Driver Name |
Specify a name for the driver object. |
Data Flow |
Select Data Flow. , , or . For details, see |
Base Container |
Specify the Identity Vault container where synchronized users and groups reside. You can specify separate containers for users and groups by updating the driver properties later. For details, see User Base Container and Group Base Container. |
Set Preconfigured TSO Data |
or . For details, see |
Set Preconfigured OMVS Data |
or . For details, see |
Default Group |
Specify a group to be used as the default group for new users created by the driver. For details, see User Default Group. |
Enable RACF Password Phrases |
or . For details, see |
Enable Entitlements |
Select Enable Entitlements. or . For details, see |
Polling Interval |
Specify the number of seconds the Publisher shim waits after sending events from the change log to the Metadirectory engine. For details, see Polling Interval. |
Remote Host Name and Port |
Specify the host name or IP address and TCP port number of the driver shim on your connected system. The default port number is 8090. |
Use SSL |
Select Use SSL. or . For details, see |
Driver Object Password Remote Loader Password |
Specify secure passwords and remember them. You must enter them when you run the SETPDWDS exec while installing the driver shim on the connected system. For details, see Driver Object Password and Remote Loader Password. |
Default TSO Account Number |
Specify the default account number for new users created by the driver. For details, see User Default TSO Account Number. |
Default TSO Procedure |
Specify the default cataloged procedure name for new users created by the driver. For details, see User Default TSO Proc. |
UID and GID Assignment |
Select UID Assignment. or . For details, see |
Default Home Directory |
Specify an HFS file path to be used as the default home directory for new users created by the driver. For details, see Default Home Directory. |
Default Program |
Specify the default login shell to be assigned to new users created by the driver. For details, see Default Program. |
Synchronize IDV passwords to RACF phrases |
Select or . If you select , Identity Vault passwords will be synchronized to RACF password phrases. |
Synchronize RACF phrases to IDV passwords |
Select or . If you select , RACF password phrases will be synchronized to the Identity Vault. |
Synchronize RACF passwords to IDV passwords |
Select or . If you select , RACF passwords will be synchronized to the Identity Vault. |
Click
and make the driver equivalent to Admin or another high-rights user so the driver can obtain information from the Identity Vault and create users and groups there.For details about the rights required by the user, see Table 2-2, Base Container Rights Required by the Driver Security-Equivalent User.
(Optional) Click
to exclude users with administrative rights from being processed by the driver.Click
to complete the driver installation.Start the driver.
Click the upper right corner of the driver icon, then click
.