With the IAS drivers configured, you can complete the installation by completing the following steps:
If you are using Identity Manager 3.5.0, you can use the User Application for Provisioning version 3.5.0 that is included in the Novell Identity Manager 3.5.0 build. If you are using Identity Manager 3.5.1, use User Application for Provisioning version 3.6.0, which can be found on the Novell download site.
For installation instructions, see the “Installing User Application” section of the Identity Manager 3.5 Installation Guide and the Identity Manager 3.5.1 Installation Guide product.
For this release, we recommend installing the User Application for Provisioning on a separate Windows 2003 server on the network because of the large number of workflow requests this system will be handling. Alternatively, you can install the User Application for Provisioning on the Identity Vault server.
During the User Application configuration, you need to enter the PIV Workflow driver’s distinguished name in the field next to .
Also, when prompted for the search root, user root, and group root containers, select the IAS Root container you specified during the PIV Life Cycle driver configuration (See Section 4.1.1, Configuring the PIV Life Cycle Driver). For the user root, select the IAS Root/Users container. For the group root, select IAS Root/Groups container.
IMPORTANT:After you install the IDM User Application for Provisioning product, you should configure JBoss* to only allow mutual authenticated SSL connections. For more information, see this JBoss Wiki page .
The IAS Digital Signature Applet must be installed on the same server as the User Application for Provisioning.
Before you begin the installation, make sure that JBoss is not running on the server.
Double-click IASM odules_302:IDMDriver\IASSignerApplet.exe to install the driver.
Read the welcome page, then click .
Read the license agreement and select , then click .
Select the folder that is the root of your User Application deployment, then click .
Click to begin the installation.
Read the post-install instructions on the last installation page.
These instructions need to be completed after you click .
Click to exit the installation wizard.
Complete the post-install instructions:
Start JBoss and wait until User Application is fully deployed.
Open an Internet browser and go to the following URL, substituting your system-specific values where appropriate:
http://userapp-domain-or-ip:port/userapp-context/jsps/IASSignerConfig.jsp
This redirects you to the Digital Signature Service configuration page.
Log in as Administrator.
Make sure the check box is checked.
To complete your installation and configuration of Identity Assurance Solution, restart the PIV Life Cycle driver.