Contribute in GitHub:
Open doc issue|Edit online
Verifying the plug-in setup
To test that the plug-in is working properly, you must verify the synchronized entries in the target IBM Security Directory Server.
About this task
In the Federated Directory Server console, you can use the LDAP browser to verify entries in the target IBM Security Directory Server. For more information, see Browsing the directory entries.
Procedure
- Verify that the IBM Security Access Manager users were added by the plug-in. These user entries must appear under
SECAUTHORITY=instance name,cn=Users
container of IBM Security Directory Server. - If you used
Default
as the IBM Security Access Manager instance, check undercn=Users,SECAUTHORITY=DEFAULT
search base and search withprincipalname=*
as the filter. Verify that each LDAP person entry that is synchronized to IBM Security Directory Server is also represented as an IBM Security Access Manager user. The user's secDN must be pointing to the corresponding LDAP entry. - Use the credentials of a user that was synchronized to IBM Security Directory Server, but where the original password for that user exists in the source directory. If the login works, then pass-through authentication is also functioning successfully.