IBM Security Identity Governance and Intelligence, Version 5.2.3.1

Managing directory server configuration

Use the Directory Server Configuration page to configure the directory server in the IBM® Security Identity Governance and Intelligence virtual appliance.

Before you begin

Install and configure the directory server. Make sure that you create the directory server DN location. See https://www-01.ibm.com/support/knowledgecenter/SSRMWJ_7.0.0/com.ibm.isim.doc_7.0/installing/tsk/tsk_ic_ins_dir_itds_config_manual.htm

About this task

Note: You need not configure the directory server if you do not want to enable Identity Brokerage Providers.

Configure or reconfigure the directory server options. See Table 1.

Table 1. Directory server configuration details
Function	Directory server options
Configure	Host name Specify the name of the server that hosts the directory server. The acceptable formats for the host name are IPv4, FQDN, and IPv6. For example, `igildap.example.com`. Port Specify the directory server port. For example, `389`. SSL Flag this check box to apply SSL encryption to the connection with this server. If you select this option, you are also prompted to accept the `ldapcert` default digital certificate. Principal DN Specify the principal distinguished name. For example, `cn=root`. Password Specify the password for the directory server. Organization name Specify the name of the enterprise or the organization. For example, `JK Enterprises`. Default organization short name Specify the abbreviation or short form of the organization name. For example, `jke`. DN Location Specify the directory server DN location. For example, `dc=com`.
Reconfigure	Host name Specify the name of the server that hosts the directory server. The acceptable formats for the host name are IPv4, FQDN, and IPv6. For example, `igildap.example.com`. Port Specify the directory server port. For example, `389`. SSL Flag this check box to apply SSL encryption to the connection with this server. If you select this option, you are also prompted to accept the `ldapcert` default digital certificate. Principal DN Specify the principal distinguished name. For example, `cn=root`. Password Specify the password for the directory server.

Note: If a directory server was configured during the virtual appliance setup, you can reconfigure or unconfigure the directory server only. The configure function is disabled.

Procedure

From the top-level menu of the Appliance Dashboard, click Configure > Manage External Entities > Directory Server Configuration.
Click Configure.
In the Directory Server configuration details window, specify the expected variables. For more information, see Table 1.
Click Save Configuration.
Note: The directory server configuration takes time. Do not refresh or close the page until the configuration process is complete.
Optional: Reconfigure an existing directory server configuration.
1. Create a snapshot to recover from any configuration failures. See Managing the snapshots.
2. From the Directory Server Configuration table, select the directory server configuration record, Identity User Registry.
3. Click Reconfigure.
4. In the Edit directory server configuration details window, edit the configuration variables. For more information, see Table 1.
5. Click Save Configuration.
  Note: The directory server reconfiguration takes some time. Do not refresh or close the page until the reconfiguration process is complete.
Optional: Unconfigure an existing directory server configuration.
1. From the Directory Server Configuration table, select the directory server configuration record, Identity User Registry.
2. Click Unconfigure.
3. Click Yes to confirm the deletion.

What to do next

After you use the Directory Server Configuration page on the IBM Security Identity Governance and Intelligence virtual appliance to configure the directory server, you must configure the database server. If you already configured the database server, you must reconfigure it.