Linux Default Attributes

For the Linux service type, IBM® Security Identity Manager provides a set of default attributes.

Employee information page

The following list contains the default attributes. The administrator can remove attributes from or add attributes to the list.

For more information about other attributes, refer to your specific adapter installation and configuration guide.

User ID: Type the login user ID for the user.
Gecos (comments): Type general descriptive information about the user.
UID number: Type the user ID number for the user.
Allow duplicate UIDs?: Select this check box to allow the group ID to be duplicated (non-unique).

UNIX shell: Specify a default command shell for the account.
Account expiration date : Date: Specify a date for when the account expires.
Account expiration date : Time: This field is not supported for Linux operating systems.
UNIX umask: Specify the permissions to be used by the account for a default file creation mask.
Home directory permissions: Specify the permissions to be used by the account as a default change file mode value for the user home directory. Set these permissions to enable deleting the home directory when the user account is deleted, if you also select Delete home directory when the account is deleted for the service.

Force a password change?: Select this check box to force the user to change the password for this account when logging in for the first time.
Primary group: Specify the name of the group to use as the primary group of the user.
Secondary group: Specify the name of the group to useas a secondary group of the user.
Home directory: Specify the fully qualified UNIX path for the home directory of the user account.
Password maximum age: Specify the maximum number of days that the password for the account is valid.
Password minimum age: Specify the minimum number of days that the password for the account is valid.
Password warning age: Specify the number of days before expiration that an password expiration warning is issued to the user.
Maximum number of days the account can remain valid after the password expires: Specify the maximum time (in days) that the account can remain active after the password for the account has expired.