3.5 Installing Drivers

Identity Assurance Solution contains five separate drivers. The following table describes which driver is installed on which system:

Table 3-1 Driver/System Installation

Driver Type

Driver Brand Name

System to Install Driver On

PIV card control center driver

PIV Life Cycle driver

Identity Vault server

PIV card user application driver

PIV Workflow driver

User Application server

Enrollment driver

Enrollment Driver for Honeywell SmartPlus System

User Enrollment/Biometric Capture Station

Card Management System driver

CMS Driver for ActivIdentity ActivID

Card Management System

Physical Access Control driver

PACS Integration Driver for Honeywell SmartPlus System

Physical Access Control System

HINT:The driver installation programs shut down eDirectory if eDirectory is installed on the system.

If the eDirectory shutdown attempt fails, the installer stops and must be run again. In order to avoid the inconvenience of re-running the installer, you can stop the eDirectory service before launching each installer.

3.5.1 PIV Life Cycle Driver

The PIV Life Cycle driver must be installed on the Identity Vault server.

  1. Double-click IASM odules_301:IDMDriver\PIV Life Cycle Driver.exe to install the driver.

  2. Read the welcome page, then click Next.

  3. Read the license agreement and select I accept the terms of the license agreement, then click Next.

  4. Specify the eDirectory server’s IP address.

    This is the IP address of the Identity Vault server.

  5. Specify the name of an eDirectory user who has sufficient administrative rights to the root of the tree to extend the schema, then click Next.

    The user name must be entered using the leading dot-delimited notation.

  6. Click Install to begin the installation.

  7. Click Finish to exit the installation wizard.

3.5.2 PIV Workflow Driver

For this solution, the PIV Workflow driver is installed using iManager, and it works with the User Application for Provisioning.

For more information on importing and configuring the PIV Workflow driver, see Section 4.1.2, Configuring the PIV Workflow Driver in iManager.

3.5.3 Enrollment Driver for the Honeywell SmartPlus System

To install the Enrollment driver, you need to complete the following three tasks:

  1. Install Identity Manager 3.5 for Connected System on the Enrollment Biometric Capture System

  2. Install the Driver

  3. Configure the Connected System (Remote Loader)

Install Identity Manager 3.5 for Connected System on the Enrollment Biometric Capture System

For information on installing Novell Identity Manager on connected systems, see the Installing the Connected Systems Option section of the Identity Manager 3.5 Installation Guide .

Install the Driver

The driver is installed on the same machine where the Honeywell SmartPlus Enrollment system is installed. Make sure that the Identity Manager Connected System is installed before proceeding with the installation of the driver.

  1. Double-click IASModules_301:IDMDriver\Honeywell SmartPlus Enrollment Driver.exe to install the driver.

  2. Read the welcome page, then click Next.

  3. Read the license agreement and select I accept the terms of the license agreement, then click Next.

  4. Browse to and select where you have the Remote Loader installed on the Honeywell SmartPlus Enrollment system, then click Next.

  5. Click Install to begin the installation.

  6. Click Finish to exit the installation wizard.

To configure the driver, see Section 4.0, Configuring Identity Assurance Solution.

Configure the Connected System (Remote Loader)

  1. Launch the Remote Loader Console by clicking the Remote Loader Console icon on your desktop.

  2. Click Add to add a remote driver.

  3. Specify a description for the remote driver.

  4. Select com.novell.nds.dirxml.hwbio.HWBioEnrollmentDriver in the driver drop-down list.

    This is the Biometric Enrollment driver. If the driver is not listed, it means the driver has not been installed. You must first install the driver. See Install the Driver.

  5. Specify a filename and location for the Remote Loader configuration file.

  6. Select All for the Remote Loader service to listen for communication on all IP addresses for the ActivIdentity server.

    1. Leave the connection port at the default of 8090.

    2. Leave the command port at the default of 8000.

  7. Specify the Remote Loader password.

  8. Specify the driver object password.

  9. Select Use an SSL Connection.

    1. Browse to and select a trusted root file.

      See Providing for Secure Data Transfer for information on how to create a trusted root file.

  10. Set the trace level to zero.

    Increase this only during troubleshooting of the driver.

  11. Select Establish a Remote Loader service for this driver instance.

  12. Click OK to save the information.

To configure the driver, see Section 4.0, Configuring Identity Assurance Solution.

3.5.4 CMS Driver for ActivIdentity ActivID

To install the CMS driver, you need to complete the following three tasks:

  1. Install Identity Manager 3.5 for Connected Systems on the Card Management System

  2. Install the Driver

  3. Configure the Connected System (Remote Loader)

Install Identity Manager 3.5 for Connected Systems on the Card Management System

For information on installing Novell Identity Manager on connected systems, see the Installing the Connected Systems Option section of the Identity Manager 3.5 Installation Guide .

Install the Driver

The driver is installed on the same machine where the Card Management System for ActivIdentity is installed.

  1. Double-click IASModules_301:IDMDriver\CMS Driver for ActivIdentity ActivID.exe to install the driver.

  2. Read the welcome page, then click Next.

  3. Read the license agreement and select I accept the terms of the license agreement, then click Next.

  4. Browse to and select where you have the Remote Loader installed on the ActivIdentity Card Management system, then click Next.

  5. Specify the path to your CMS portal deployment, then click Next.

  6. Click Install to begin the installation.

  7. Click Finish to exit the installation wizard.

Configure the Connected System (Remote Loader)

  1. Launch the Remote Loader Console.

  2. Click Add to add a remote driver.

  3. Specify a description for the remote driver.

  4. Select com.novell.nds.dirxml.driver.aicmsshim.AICMSDriverShim in the driver drop-down list.

    If the driver is not listed, it means the driver has not been installed. You must first install the driver. See Install the Driver.

  5. Specify a filename and location for the Remote Loader configuration file.

  6. Select All for the Remote Loader service to listen for communication on all IP addresses for the ActivIdentity server.

    1. Leave the connection port at the default of 8090.

    2. Leave the command port at the default of 8000.

  7. Specify the Remote Loader password.

  8. Specify the driver object password.

  9. Select Use an SSL Connection.

    1. See Providing for Secure Data Transfer for information on how to create a trusted root file.

  10. Set the trace level to zero.

    Increase this only during troubleshooting of the driver.

  11. Select Establish a Remote Loader service for this driver instance.

  12. Click OK to save the information.

To configure the driver, see Section 4.0, Configuring Identity Assurance Solution.

3.5.5 PACS Integration Driver for Honeywell SmartPlus System

To install the PACS driver, you need to do the following three tasks:

  1. Install Identity Manager 3.5 for Connected Systems on the Physical Access Control System

  2. Install the Driver

  3. Configure the Connected System (Remote Loader)

Install Identity Manager 3.5 for Connected Systems on the Physical Access Control System

For information on installing Novell Identity Manager on connected systems, see the Installing the Connected Systems Option section of the Identity Manager 3.5 Installation Guide .

Install the Driver

The driver is installed on the same machine where the Honeywell SmartPlus Integration system is installed.

  1. Double-click IASModules_301:IDMDriver\Honeywell SmartPlus Integration Driver.exe to install the driver.

  2. Read the welcome page, then click Next.

  3. Read the license agreement and select I accept the terms of the license agreement, then click Next.

  4. Browse to and select where you have the Remote Loader installed on the Honeywell SmartPlus Integration system, then click Next.

  5. Click Install to begin the installation.

  6. Click Finish to exit the installation wizard.

To configure the driver, see Section 4.0, Configuring Identity Assurance Solution.

Configure the Connected System (Remote Loader)

  1. Launch the Remote Loader Console.

  2. Click Add to add a remote driver.

  3. Specify a description for the remote driver.

  4. Select com.novell.nds.dirxml.driver.hwpacs.HWPACSDriver in the driver drop-down list.

    This is the Physical Access Control System (PACS) driver. If the driver is not listed, it means the driver has not been installed. You must first install the driver. See Install the Driver.

  5. Specify a filename and location for the Remote Loader configuration file.

  6. Select All for the Remote Loader service to listen for communication on all IP address for the ActivIdentity server.

    1. Leave the connection port at the default of 8090.

    2. Leave the command port at the default of 8000.

  7. Specify the Remote Loader password.

  8. Specify the driver object password.

  9. Select Use an SSL Connection.

    1. Browse to and select a trusted root certificate.

      See Providing for Secure Data Transfer for information on how to create a trusted root file.

      This trusted root certificate enables the remote loader to establish an SSL connection with the Identity Vault server.

  10. Set the trace level to zero.

    Increase this only during trouble shooting of the driver.

  11. Select Establish a Remote Loader service for this driver instance.

  12. Click OK to save the information.

To configure the driver, see Section 4.0, Configuring Identity Assurance Solution.