Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Creating and Managing User Information Source

Use the UISConfigUtil utility to create, retrieve, update, or delete user information sources.

Creating a User Information Source

Use the UISConfigUtil utility to create a user information source.

Before you create a user information source, you must install and configure your Tivoli Directory Integrator server. For more information, see Configuring the Tivoli Directory Integrator Server.

When you create a user information source, you must identify the property values required to configure the user information source. The following table describes the supported property values:

Table 1: Supported User Interface Property Values

Property

Description

tdiserver

Defines the host name of the Tivoli Directory Integrator server.

tdiport

Defines the listening port for the HTTP connector on the Tivoli Directory Integrator server.

hostname

Defines the host name of the user information source host.

port

Defines the listening port for the Identity and Access Management registry on the user information host.

username

Defines the user name that JSA and Log Manager use to authenticate to the Identity and Access Management registry.

password

Defines the password that is required to authenticate to the Identity and Access Management registry.

searchbase

Defines the base DN.

Note:

All users that are referenced in all groups must be found in a search from the searchbase.

search filter

Defines the search filter that is required to filter the groups that are retrieved from the Identity and Access Management registry.

  1. Using SSH, log in to your JSA Console as the root user.

    1. User name: root

    2. Password: <password>

  2. To add a user information source, type the following command: UISConfigUtil.sh add <name> -t <AD|ISAM|ISIM|ISFIM> [-d description] [-p prop1=value1,prop2=value2...,propn=valuen]

    Where:

    • <name> Is the name of the user information source you want to add.

    • <AD|ISAM|ISIM|ISFIM> Indicates the user information source type.

    • [-d description] Is a description of the user information source. This parameter is optional.

    • [-p prop1=value1,prop2=value2,...,propn=valuen] Identifies the property values required for the user information source. For more information about the supported parameters, see Creating a User Information Source.

    For example:

    • /UISConfigUtil.sh add "UIS_ISIM" -t ISIM -d "UIS for ISIM" -p "tdiserver=nc9053113023.tivlab.austin.ibm.com,tdiport=8080, hostname=vmibm7094.ottawa.ibm.com,port=389, username=cn=root,password=password,\"searchbase=ou=org,DC=COM\",\ "searchfilter=(|(objectClass=erPersonItem)(objectClass=erBPPersonItem) (objectClass=erSystemUser))\""

Retrieving User Information Sources

Use the UISConfigUtil utility to retrieve user information sources.

  1. Using SSH, log in to your JSA Console as the root user.

    1. User name: root

    2. Password: <password>

  2. Choose one of the following options:

    1. Type the following command to retrieve all user information sources: UISConfigUtil.sh get <name>

    2. Type the following command to retrieve a specific user information source: UISConfigUtil.sh get <name>

      Where <name> is the name of the user information source you want to retrieve.

      For example:

      [root@vmibm7089 bin]# .UISConfigUtil.sh get "UIS_AD"

Editing a User Information Source

Use the UISConfigUtil utility to edit a user information source.

  1. Using SSH, log in to your JSA Console as the root user.

    1. User name: root

    2. Password: <password>

  2. Type the following command to edit a user information source: UISConfigUtil.sh update <name> -t <AD|ISAM|ISIM|ISFIM> [-d description] [-p prop1=value1,prop2=value2,...,propn=valuen]

    Where:

    • <name> Is the name of the user information source you want to edit.

    • <AD|ISAM|ISIM|ISFIM> Indicates the user information source type. To update this parameter, type a new value.

    • [-d description] Is a description of the user information source. This parameter is optional. To update this parameter, type a new description.

    • [-p prop1=value1,prop2=value2,...,propn=valuen] Identifies the property values required for the user information source. To update this parameter, type new properties. For more information about the supported parameters, see Creating a User Information Source.

    For example:

    ./UISConfigUtil.sh update "UIS_AD_update" -t AD -d "UIS for AD" -p "searchbase=DC=local"

Deleting a User Information Source

Use the UISConfigUtil utility to delete a user information source.

  1. Using SSH, log in to your JSA Console as the root user.

    1. User name: root

    2. Password: <password>

  2. Type the following command to delete a user information source:

    UISConfigUtil.sh delete <name>

    Where <name> is the name of the user information source you want to delete.

The collected user information is stored in a reference data collection in the JSA database. If no reference data collection exists, a new reference data collection is created. If a reference data collection was previously created for this user information source, the reference map is purged of previous data and the new user information is stored. For more information about reference data collections, see Reference Data Collections for User Information.

Related Documentation