Adding required users to the external user registry

You must add required users to the external user registry.

About this task

Identity Manager requires the existence of two accounts:
Table 1. Default account names for required users
Account usage Default account name
Default administrative user ITIM Manager
Default system user isimsystem

You can choose to use a different account name for each of the accounts. You might want to use a different account name if you already have administrative or system user account names in an existing external user registry. You might want to use a different account name for the administrative user if your operating system does not support spaces in account names. For example, if the user registry is on a Linux® system, you might want to specify an account name of itimManager instead of ITIM Manager.

The exact steps for creation of a user depend on the type of user registry. The following steps describe how to use the IBM® Security Directory Server administration tool to add the required users. Alternatively, you can create an ldapadd command, or use LDIF files.

Procedure

  1. Log on to the IBM Security Directory Server web administration tool.
  2. From the navigation tree, click Directory Management > Add an entry to open the Select object class tab of the Add an entry page.
  3. Select inetOrgPerson from the Structural Object classes list.
  4. Click Next to open the Select auxiliary object classes tab.
  5. Click Next in the Select auxiliary object classes tab to open the Required attributes tab.
  6. Provide the values for the following attributes in the Required attributes tab:
    • Relative DN
    • Parent DN
    • cn
    • sn

    You can use the default administrative user ID (uid) ITIM Manager, the default system user ID (uid) isimsystem, or specify a different uid. The following table shows example entries for the required attributes, when you use the default administrative user ID or the default system user ID:

    Table 2. Example entries for required naming attributes for the default administrative user and the default system user accounts
    Attribute Example value for the default administrative user Example value for the default system user
    Relative DN cn=ITIM Manager cn=isimsystem
    Parent DN dc=com dc=com
    cn System Administrator isimsystem
    sn Administrator isimsystem
  7. Click Next to open the Optional attributes tab.
  8. Provide the values for the following attributes in the Optional attributes tab:
    • uid
    • userPassword
    For example, provide the optional attribute values from the following table:
    Table 3. Optional attribute values for the default administrative user and the default system user accounts
    Attribute Example value for the default administrative user Example value for the default system user
    uid ITIM Manager isimsystem
    userPassword The default password for the ITIM Manager account is secret. You can specify your own password. The default password for the isimsystem account is secret. You can specify your own password.
  9. Click Finish.