Login Allowed Time Map attribute
The time specified on the time map user interface reflects the time zone of the server on which the adapter is installed.
Internally, the Novell Directory Services Adapter uses its time zone. This is the time of the server it runs on to convert the time specified on the IBM® Security Identity Manager time map into GMT. The API calls initiated for the Novell eDirectory use these GMT values to set the allowed login times.
| IBM Security Identity Manager server | Novell Directory Services Adapter | Novell eDirectory | Novell Directory Services Console One | |
|---|---|---|---|---|
| Time zone | GMT is 08:00 Pacific Time (PST) | GMT is 08:00 Pacific Time (PST) | GMT is 08:00 Pacific Time (PST) | GMT is 08:00 Pacific Time (PST) |
| Time Map bit set for specified time duration | Value entered from IBM Security Identity Manager: 04:00 to 04:30 AM, Monday. | Receives as: 04:00 to 04:30 AM (Monday). Converts to GMT as: 12:00 to 12:30 PM (Monday). | Set on Novell eDirectory as: 12:00 to 12:30 PM (Monday). | Viewed from Console One as 04:00 to 04:30 AM, Monday. |
When the ernetwloginallowedtimemap attribute enters in the Protocol Data Unit (PDU) request, the adapter performs the GMT conversion of this attribute based on the time zone of its workstation. The IBM Security Identity Manager server does not send the GMT converted value for this attribute as it sends for other date-related attributes, such as ernetwpwdexptime. The adapter converts the time map attribute because the Novell Directory Services API searches for GMT values.
The same value is set on the Novell eDirectory. However, Console One displays the value only after performing the GMT conversion based on the time zone of its own workstation. If the time zone of the workstation for Console One, the Novell Directory Services Adapter, and the IBM Security Identity Manager server are the same, you can view the inputs provided from IBM Security Identity Manager for the time map attribute from Console One.
However, if IBM Security Identity Manager server, the Novell Directory Services Adapter, Novell eDirectory are in the same time zone and the Novell Directory Services Console One is in a different time zone, the display is based on the time zone of the Novell Directory Services Console One. See Table 2.
| IBM Security Identity Manager server | Novell Directory Services Adapter | Novell eDirectory | Novell Directory Services Console One | |
|---|---|---|---|---|
| Time zone | (GMT is 08:00) Pacific Time (PST) | (GMT is 08:00) Pacific Time (PST) | (GMT is 08:00) Pacific Time (PST) | (GMT +05:30) Indian Standard Time (IST) |
| Time Map bit set for specified time duration | Value entered from IBM Security Identity Manager: 04:00 to 04:30 AM (Monday). | Receives as: 04:00 to 04:30 AM (Monday). Converts to GMT as: 12:00 to 12:30 PM (Monday). | Set on Novell eDirectory as: 12:00 to 12:30 PM (Monday). | Viewed from Console One as 05:30 to 06:00 PM (Monday). |
Novell Directory Services Console One is opened on a workstation which is in the same time zone as the IBM Security Identity Manager server, that is, (GMT is 08:00) Pacific Time (PST). The value of ernetwloginallowedtimemap attribute is 04:00 to 04:30 AM (Monday) instead of 05:30 to 06:00 PM (Monday). The adapter sets the appropriate GMT converted value for the ernetwloginallowedtimemap attribute on the Novell eDirectory.
- Ensure that the IBM Security Identity Manager server and the adapter are in the same time zone.
- You cannot configure the loginmap widget with time slots of 15 minutes on the Novell Directory Services Console One. The Novell Directory Services Adapter does not support GMT + 5:45 time zone for attribute ernetwloginallowedtimemap. The loginmap widget on the Novell Directory Services account form that is on IBM Security Identity Manager does not have slots for 15 minutes.