GitHubContribute in GitHub: Open doc issue|Edit online

Verifying the plug-in setup

To test that the plug-in is working properly, you must verify the synchronized entries in the target IBM Security Directory Server.

About this task

In the Federated Directory Server console, you can use the LDAP browser to verify entries in the target IBM Security Directory Server. For more information, see Browsing the directory entries.

Procedure

  1. Verify that the IBM Security Access Manager users were added by the plug-in. These user entries must appear under SECAUTHORITY=instance name,cn=Users container of IBM Security Directory Server.
  2. If you used Default as the IBM Security Access Manager instance, check under cn=Users,SECAUTHORITY=DEFAULT search base and search with principalname=* as the filter. Verify that each LDAP person entry that is synchronized to IBM Security Directory Server is also represented as an IBM Security Access Manager user. The user's secDN must be pointing to the corresponding LDAP entry.
  3. Use the credentials of a user that was synchronized to IBM Security Directory Server, but where the original password for that user exists in the source directory. If the login works, then pass-through authentication is also functioning successfully.