beautypg.com

HP Identity Driven Manager Software Series User Manual

Page 157

background image

3-93

Using Identity Driven Manager

Using the User Import Wizard

Figure 3-63. IDM User Import Wizard, SASL External Authentication

To set up External authentication:

1. In the Server field, type the DNS name of the LDAP server.

2. In the Domain field, type the domain name. It is used to create a domain in IDM.

3. Optionally, in the Base DN field, type the Base Distinguished Name. IDM will

search only for users and groups from this node of a directory tree.

4. In the Keystore field, type the keystore file name.

For JKS, the Keystore is the location on the IDM server where you installed the
keystore. (for example: c:\idmuser\mykeystore)
For PKCS12, enter the PKCS certificate in the Keystore field,.

5. In the Password field, type the password.

For JKS, enter the password of the keystore on the IDM Server.
For PKCS12, enter the PKCS12 key in the Password field

6. Select the Type: either jks, or pkcs12.

7. Click Next to continue to the Extract Users and Groups window.

Importing LDAP X509 User Certificates into a Keystore:

If you are using a JKS Keystore, the X509 User Certificate must be installed in a
keystore on the IDM server. You can get the X509 User Certificate from your LDAP
Administrator.