Adding a connector and mapping attributes

After you import the adapter profile on the Security Identity Governance and Intelligence server, add a connector so that Security Identity Governance and Intelligence server can communicate with the managed resource.

Procedure

  1. Log in to the Security Identity Governance and Intelligence Administration Console.
  2. From the Administration Console, select Enterprise Connectors.
  3. Select Manage > Connectors.
    A list of connectors is displayed on the Connectors tab.
  4. Optional: Click Filter to toggle the filter on to refine your search results, or click Hide Filter to toggle the filter off. When the filter is visible, you can specify search criteria for your requests, and then click Search.
  5. Optional: To view all of the columns in the list of connectors, expand the Connectors pane.
  6. Click Actions > Add.
    The Connector Details pane is enabled for your input.
  7. On the Connector Details tab, complete these steps:
    1. Assign a name and description for the connector.
    2. Select the target profile type as Identity Brokerage and its corresponding target profile.
    3. Select the entity, such as Account or User.
      Depending on the connector type, this field might be preselected.
    4. Optional: Select Trace ON and the corresponding Trace Level to enable trace logs.
      The available trace levels are DEBUG, INFO, and ERROR.
    5. Optional: Select History ON to save and track the connector usage.
    6. Click Save.
      The fields for enabling the channels for sending and receiving data are now visible.
    7. Select the channel modes that you want to enable.
    8. Click Save.
  8. Select Driver Configuration tab.
    1. Under Service section, in the Security Directory Integrator location, specify the URL for the IBM® Security Directory Integrator instance. The valid syntax for the URL is.rmi://ip-address:port/ITDIDispatcher.
    2. Under Connection section, provide values for Access Key Id and Secret Access Key.
    3. Default value for Region is us-east-1. Leave this value empty if you do not want to change the default value.
    4. Select Enable Reconcile Roles check box to monitor roles in AWS.
    5. Click Save.
    6. Click Test Connection.
  9. Select Channel-Write To tab.
    1. Click the Mapping icon.
    2. Click Map button to map the attribute eruid to CODE.
    3. Click Map button to map the attribute erpassword to PASSWORD.
  10. Select Channel-Read From tab.
    1. Click the Mapping icon.
    2. Click Map button to map the attribute CODE to eruid.
    3. Click Map button to map the attribute PASSWORD to erpassword.

Results

The connector is saved and added to the list of connectors in the Connectors pane and required attributes are mapped.