Administrators customize a role schema by adding optional
attributes to the IBM Verify Identity Governance LDAP and then to the role definition
schema (erRole objectclass).
Procedure
- Access the IVIG LDAP.
- Add new optional type attributes.
For example,
add the attribute designation. For more information,
see LDAP Installation and Configuration Guide.
-
Update the erRole objectclass in theIVIG LDAP to associate the
new attributes.
For example, update the
erRole objectclass in
IBM® Security Directory Server by using the
Security Directory Server web administrative
console and associate the
designation attribute with the
erRole objectclass. For more information about
Security Directory Server, see the
IBM Knowledge
Center.
- Ensure that the role schema is customized correctly.
- Ensure that IVIG and IVIG LDAP
are running.
- Launch the IVIG administrative
console.
- Select Configure System > Design Forms.
- Update the role form template to display the new attribute.
Note: The LDAP schema is cached, and you might
need to restart IVIG to
see the new attribute that was added to the erRole objectclass.
Results
You can view the new attributes on the IVIG administrative
console when viewing the role definitions.
What to do next
You can define, set, modify, save, and restore custom attributes
when creating or modifying a role.