3.6 Setting Up the Driver on the Metadirectory Server

  1. For a Linux or UNIX Metadirectory server, run the installation script on the Metadirectory server, and select Install only the rules (LinuxUnix.xml) and schema components. Respond to the prompts as appropriate.

    For details, see Section 3.5, Running the Installation Script.

  2. In iManager, select the Identity Manager Utilities task New Driver.

  3. Select a Driver Set where you want to create the driver, then click Next.

    If you place this driver in a new Driver Set, you must specify a Driver Set name, context, and associated server.

    Only one driver set can be active on a server.

  4. Import the driver rules file.

    Select Import a driver configuration from the server (.XML file), select LinuxUnix-IDM3_5_0-V2.xml, then click Next.

  5. Provide a name for the driver and select an installation method, then click Next.

    For details about choosing the appropriate Installation Method, see Section 2.5, Choosing between the Basic and the Advanced Installation Methods.

  6. Specify the configuration settings as described in the following table, then click Next.

    Configuration Setting

    Action

    Installation Method

    Data Flow

    Select Bidirectional, Application to Identity Vault, or Identity Vault to Application. For details, see Data Flow.

    Advanced

    POSIX Management Mode

    Select Manage Bidirectional, Manage Local, or Manage from Identity Vault. For details, see POSIX Management Mode.

    Advanced

    Polling Interval

    Specify the number of seconds the Publisher shim waits after running the polling script and sending events from the change log to the Metadirectory engine. For details, see Polling Interval.

    Advanced

    Database Type

    Select Files, NIS or NIS+. For details, see Database Type.

    Basic and Advanced

    Base Container

    Specify the Identity Vault container where synchronized users and groups reside.

    You can specify separate containers for users and groups by updating the driver properties later. For details, see User Base Container and Group Base Container.

    Basic and Advanced

    Enable Entitlements

    Select Yes or No. For details, see Enable Entitlements.

    Advanced

    Exclude Privileged Users and Groups

    Select Yes or No. For details, see Exclude Privileged Users and Groups.

    Advanced

    Synchronize Group Membership

    Select Yes or No. For details, see Synchronize Group Membership.

    Advanced

    Remove Home Directories

    Select Yes or No. For details, see Remove Home Directories.

    Advanced

    Create Home Directories

    Select Yes or No. For details, see Create Home Directories.

    Advanced

    Allow Duplicate UIDs and GIDs

    Select Yes or No. For details, see Allow Duplicate UIDs and Allow Duplicate GIDs.

    Advanced

    Use First Name + Last Name for gecos

    Select Yes or No. For details, see Use First Name + Last Name for gecos.

    Advanced

    Lower Case CNs

    Select Yes or No. For details, see Lower Case CNs.

    Advanced

    Remote Host Name and Port

    Specify the host name or IP address and TCP port number of the driver shim on your Linux or UNIX connected system. The default port number is 8090.

    Basic and Advanced

    Use SSL

    Select Yes or No. For details, see Use SSL.

    Advanced

    Driver Object Password Remote Loader Password

    Specify secure passwords and remember them. You must enter them in Step 3.a when you install the driver shim on the connected system. For details, see Driver Object Password and Remote Loader Password.

    Basic and Advanced

  7. Click Define Security Equivalences and make the driver equivalent to ADMIN or another high-rights user so the driver can obtain information from the Identity Vault and create users and groups there.

    For details about the rights required by the user, see Table 2-2, Base Container Rights Required by the Driver Security-Equivalent User.

  8. (Optional) Click Exclude Administrative Roles to exclude users with administrative rights from being processed by the driver.

  9. Click Finish to complete the driver installation.

  10. Start the driver.

    Click the upper right corner of the driver icon, then click Start driver.