If the clusters in your business continuity cluster are in separate eDirectory trees and you require user-based access control, then User object synchronization is required.
To configure the Identity Manager driver for User object synchronization:
Start your Internet browser and enter the URL for iManager.
The URL is http://server_ip_address/nps/iManager.html. Replace server_ip_address with the IP address or DNS name of the server that has iManager and the Identity Manager preconfigured templates for iManager installed.
Specify your username and password, specify the tree where you want to log in, then click
.In the left column, click
, then click the link.Choose to either place the new driver in a new driver set, or add the driver to the driver set you created for cluster resource synchronization, then click
.Both the User Object Synchronization driver and the Cluster Resource Synchronization driver can be added to the same driver set.
Specify the driver set name, context, and the server that the driver set will be associated with.
The server is the same server where you installed the Identity Manager engine and eDirectory driver.
Choose to not create a new partition for the driver set, then click .
Choose to import a preconfigured driver from the server, select the Identity Manager preconfigured template for User object synchronization, then click
.The template name is BCCUserObjectSynchronization.XML.
Fill in the values on the wizard page as prompted, then click
.Each field contains an example of the type of information that should go into the field. Descriptions of the information required are also included with each field.
Additional information for the wizard page fields can be found in Importing the Sample Driver Configuration
in the DirXML Driver for eDirectory Implementation Guide.
In the left column of the iManager page, click
, then click .Search the eDirectory tree for the Identity Manager driver sets by clicking
.Click the
driver icon, then click > .Click
, browse to and select the context that contains the User objects, then click .(Optional) Exclude the Admin User object from being synchronized:
Click the
button, then click .Browse to and select the Admin User object, then click
.Perform Step 1 through Step 13 for each cluster that is in a separate tree.