Creating a basic single sign-on configuration for System A

The EIM Configuration wizard helps you create a basic EIM configuration and also opens the Network Authentication Service wizard to allow you to create a basic network authentication service configuration.

Note: Instructions in this scenario are based on the assumption that the IBM® Tivoli® Directory Server for IBM i has not been previously configured on System A. However, if you already configured the directory server, you can still use these instructions with only slight differences. These differences are noted in the appropriate places within the configuration steps.

When you have finished this step, you will have completed the following tasks:

Created a new EIM domain
Configured the directory server on System A to be the EIM domain controller
Configured network authentication service
Created EIM registry definitions for the System A IBM i registry and the Kerberos registry in the newly created EIM domain
Configured System A to participate in the EIM domain.

Follow these steps to Configure EIM and Network Authentication Service.

After you have completed the basic EIM and network authentication service configuration on System A, you can add the service principal for System A to the Kerberos server.