The identity applications must be able to interact with the objects in your Identity Vault.
To improve the performance of the identity applications, the eDirectory Administrator should create value indexes for the manager, ismanager and srvprvUUID attributes. Without value indexes on these attributes, identity application users can experience impeded performance, particularly in a clustered environment.
You can create these value indexes automatically during installation by selecting Advanced > Create eDirectory Indexes in the RBPM Configuration utility. For more information about using Index Manager to create value indexes, see the NetIQ eDirectory Administration Guide.
Perform the following steps before installing Identity Manager User Application as non-root user:
Import the eDirectory certificate into the User Application JRE cacerts file.
Ensure that the Default Notification Collection object is deployed.
Add SAML method to the eDirectory server using the following command:
nmasinst -addmethod <admin dn> <tree-name> <configuration file present in /<eDirectory installed location>/nmas/NmasMethods/Novell/SAML> -h <hostname:NCP port> -w <pawsswd>
For example on Linux:
nmasinst -addmethod admin.sa.system TREE /home/user1/eDirectory/nmas/NmasMethods/Novell/SAML/config.txt -h 10.10.10.248:524 -w novell
For example on Windows:
nmasinst.exe -addmethod admin.sa.system tree C:\Users\Administrator\Desktop\SAML\config.txt -h 10.10.10.248:524
Extend the required schema:
ndssch -h <hostname:port> -t <treename> <admin dn> authsaml.sch ndssch -h <hostname:port> -t <treename> <admin dn> edirectory-schema.sch ndssch -h <hostname:port> -t <treename> <admin dn> osp.sch
For example:
ndssch -h 10.10.10.248 -t TREE admin.sa.system authsaml.sch
Restart eDirectory.