10.1 Using the Wizard to Install the Identity Vault on a Windows Server

  1. Log in as administrative user to the computer where you want to install eDirectory.

  2. Navigate to the Setup.exe program in the installation directory, by default IDMversion_Win:\products\eDirectory\processor_type\windows\.

  3. Run the Setup.exe program.

  4. Follow the steps in the installation wizard.

  5. (Conditional) If the NICI or Novell Client for Windows is not already installed on the computer, the installation program will prompt you to install these components.

    The computer will restart after the program installs NICI. The Identity Vault installation wizard should open after the computer restarts. If it does not open, run the Setup.exe program.

  6. In the Identity Vault installation program, complete the steps in the wizard with the following considerations:

    • (Optional) To use IPv6 addresses on the Identity Vault server, click Enable IPv6 under IPv6 Preference.

      NOTE:NetIQ recommends that you enable this option. To enable IPv6 addressing after installation, you must run the setup program again.

      Specify Tree name, Server Context name, admin name, and context.

      For example: Tree name: WIND2K; Server Context name: <hostname><context> example: WIND2K-NDS.sa.system; admin name: admin; context: sa.system.

      For more information, see NWI:NDS.

    • Ensure that the ports for HTTP stack are different than the HTTP stack ports you have used or will use for NetIQ iManager. For more information, see the iManager Administration Guide.

    • (Conditional) If a service already loaded on the host server (before eDirectory was installed) uses port 636, you must specify a different port for SSL/TLS.

    • (Optional) To disallow clear passwords and other data, select Require TLS for Simple Bind with Password when specifying the LDAP ports. For more information, see Using LDAP to Communicate with the Identity Vault.

    • Specify the login methods that you want to install for NetIQ Module Authentication Service (NMAS). For more information, see “Managing Login and Post-Login Methods and Sequences” in the NetIQ eDirectory Administration Guide.

    • You must install and configure NetIQ SecreStore (ss). For more information, see Adding SecretStore to the Identity Vault Schema.

  7. Follow the instructions in the wizard until you finish installing the Identity Vault.

  8. To support LDAP search with VLV (Virtual List View) and SSS (Server Side Sort) controls, apply Hotfix 2 to the Identity Vault. For more information, see Section 11.0, Applying Hotfix 2 to the Identity Vault.

  9. To use the NMAS login methods, install the NMAS client software on each client workstation. For more information, see NMAS Considerations in the NetIQ eDirectory Administration Guide.

  10. (Optional) Exclude the DIB directory on your eDirectory server from any antivirus or backup software processes. Use the eDirectory Backup Tool to back up your DIB directory. For more information about backing up eDirectory, see “Backing Up and Restoring NetIQ eDirectory” in the NetIQ eDirectory Administration Guide.