Adding system entities

Create new Person and BPPerson entities to associate with a new custom LDAP class.

Before you begin

Depending on how your system administrator customized your system, you might not have access to this task. To obtain access to this task or to have someone complete it for you, contact your system administrator.

When you add a Person or BPPerson type entity, the actual LDAP class that stores the entity must be created before you use this task to add entities.

Custom LDAP classes and their attributes must be created directly within your data store with tools compatible with your LDAP data repository software. Create the classes before associating them with a custom IBM Verify Identity Governance entity. After it is created, the class can be associated with a custom Identity Manager entity. Map its attributes to Identity Manager attributes.

About this task

All LDAP classes, auxiliary, and structural, that begin with er are considered Identity Manager-managed classes. They are excluded from the list of LDAP classes within the Manage Entities task.

When adding a custom entity, you need to examine the default control type of each attribute. Change it to an appropriate control type from the form customization page. Refer to a standard Identity Manager entity of the same entity type as the custom entity to view the control types assigned to the attributes of a standard entity.

To add a custom system entity, complete these steps:

Procedure

  1. From the navigation tree, click Configure System > Manage Entities.
    The Manage Entities page is displayed.
  2. On the Manage Entities page, click Add.
    The Create Entity wizard is displayed.
  3. On the Select Type page, select the entity type that you want to create, and then click Next.
  4. On the Entity Detail Information page, complete the following steps:
    1. In the Entity name field, type a unique name for the entity.
    2. Click Search to find and specify an LDAP class that stores the entity.
    3. On the Select LDAP Class page, click Search to display a list of LDAP classes.
    4. Select the object class name, and then click OK.
      The LDAP class field is populated with the object class name that you specified.
    5. Click Browse name attributes to find and specify
      Valid entries for the Name attributes field depend on which LDAP class is selected.
      The Select Attribute page is displayed, which lists the name attributes of the LDAP class that you selected.
    6. On the Select Attribute page, select the name attribute that you want to associate with the new entity, and then click OK.
      The Name attribute field is populated with the name attribute that you selected.
    7. In the Default search attributes list, select the search attributes that you want to add to the entity, and then click Add.
      Select attributes that are searchable, such as string or numeric type.
    8. When you are finished specifying entity information, click Next.
  5. On the Attribute Mapping page, map an attribute by completing these steps:
    1. Select an attribute in the Identity Manager attribute list.
    2. Select an attribute in the Custom LDAP attribute list.
    3. Click Map.
    4. Optional: To obtain the default mapping, select an attribute pair in the table, and click Reset.
    5. When the mapping is complete, click Finish.

Results

A message is displayed, indicating that you successfully created an entity.

What to do next

Perform additional entity management tasks, or click Close.