This section defines the settings for the identity applications, such as the User Application. The program displays the basic parameters. To view all parameters, click Advanced Settings.
IMPORTANT:You must select Advanced Settings and change any field that contains localhost to be a valid IP address or DNS name. If you do not change the default parameter from localhost, the configuration fails.
Specifies the DNS name or IP address of the server where you plan to install OSP and which becomes the LDAP authentication server. Do not use localhost.
For more information about OSP, see Using Single Sign-on Access in Identity Manager in the NetIQ Identity Manager Setup Guide.
Specifies the password that you want to create for loading the new keystore on the OAuth server.
The password must be a minimum of six characters.
Specifies the password that you want to create for configuring Self-Service Password Reset (SSPR).
By default, SSPR does not have a configuration password. Without the password, any user who can log in to SSPR can also modify the configuration settings.
Specifies the password for the single sign-on client used by SSPR, the identity applications, and Identity Reporting.
The password must be a minimum of six characters.
Specifies the password for the administrator of the User Application. The installation process creates this account in the Identity Vault with rights to perform administrative tasks for the specified user container for User Application. The following considerations apply to this setting:
By default, the account name is uaadmin.
If you have started the application server hosting the User Application, you cannot change this setting with the configupdate.sh or configupdate.bat files.
To change this assignment after you deploy the application, use the Administration > Security page in the User Application.
This user account has the right to use the Administration tab of the User Application to administer the portal.
If the User Application Administrator participates in workflow administration tasks exposed in iManager, Designer, or the User Application (Requests & Approvals tab), you must grant this administrator appropriate trustee rights to object instances contained in the User Application driver. For more information, see the NetIQ Identity Manager - Administrator’s Guide to the Identity Applications.
Specifies the password for the administrator of the database for the identity applications.
By the default, the account is idmadmin.
Specifies the port that you want to use for cleanly shutting down all webapps and Tomcat. The default is 8105.
Specifies the port that you want the Tomcat server to use for communication with client computers. The default is 8080. To use SSL, the default is 8443. For more information, see Enabling SSL with a Signed Certificate in the NetIQ Identity Manager Setup Guide.
(Conditional) When you do not use TLS/SSL protocols, specifies the port to which the application server redirects requests that require SSL transport. The default value is 8543.
(Optional) Specifies the port that you want the application server to use for communication with a web connector using the AJP protocol instead of HTTP. The default value is 8109.
Use this parameter when you want the application server to manage the static content contained in the web application, or utilize the application server’s SSL processing.
Specifies the DNS name or IP address of the server that hosts the SIEM database that the Sentinel and Identity Reporting use (Identity Information Warehouse). Do not use localhost.
IMPORTANT:You must have your audit server installed and running before you configure the identity applications. If the integrated installation program cannot communicate with the audit server, the configuration fails.
All of the remaining settings are under Advanced Settings. You must change the Identity Application host field from localhost to an IP address or DNS name. If you do not make any changes to the Advanced Settings, the configuration program uses the default settings listed and the configuration fails.
Specifies the name of the administrator account for the identity applications. The default value is uaadmin.
Specifies the URL setting that connects to the User Application client on the application server. Do not use localhost.