GitHubContribute in GitHub: Open doc issue|Edit online

Installing the plug-in

You must make the IBM Security Access Manager API available to IBM® Security Verify Directory Integrator.

Before you begin

Install the following products:

  • IBM® Security Verify Directory Integrator, Version 10.0.0
  • Apply the latest fix pack or service stream enhancement. This plug-in is available from version 7.2.0.1 onwards.
  • IBM Security Access Manager Version 6.1.1 or later.

Also, ensure that the Federated Directory Server target directory and the directory that is used by IBM Security Access Manager is the same IBM Security Directory Server instance. Otherwise, manual configuration of IBM Security Directory Server is required. If you added extended attributes to the IBM Security Access Manager schema in IBM Security Directory Server, then you must add assignments to the FDS_ISAM_Plugin.map mapping file.

About this task

sdi_solution_dir is the IBM® Security Verify Directory Integrator Solution Directory, which is selected during installation and is in tdi_install_dir/bin/defaultSolDir script.

tdi_install_dir is the IBM Security Directory installation directory.

The following files for the plug-in are installed:

FDS_ISAM_Plugin.xml
The IBM® Security Verify Directory Integrator configuration XML file that provides the AssemblyLine that handles synchronization with IBM Security Access Manager.

When you access the Federated Directory Server console for the first time, this file is copied to sdi_solution_dir/configs directory.

FDS_ISAM_Plugin.map
Controls how source endpoint attributes are mapped to IBM Security Access Manager user entries.

It is in the sdi_solution_dir/LDAPSync directory.

Procedure

Make the IBM Security Access Manager API available to IBM® Security Verify Directory Integrator with either one of the following methods:

  • From the ISAM_install_dir/java/export/rgy directory, copy the com.tivoli.pd.rgy.jar file to the tdi_install_dir/jars directory.
  • Add ISAM_install_dir/java/export/rgy to the com.ibm.di.userjars property in the sdi_solution_dir/solution.properties file.

What to do next

You must generate the configuration file that contains connection details for the IBM Security Access Manager API. See Plug-in API properties file.