After installing the Identity Vault, you may need to perform certain configuration tasks on the Identity Vault.
You must extend the Identity Vault schema to support SecretStore functionality. The identity applications need SecretStore to connect to the vault.
To extend the schema for the Identity Vault, enter the following command:
ice -S SCH -f C:\NetIQ\eDirectory\sssv3.sch -D LDAP -s serverIP -d adminDN
For example:
ice -S SCH -f C:\NetIQ\eDirectory\sssv3.sch -D LDAP -s 192.168.0.1 -d cn=admin,o=administrators
To configure SecretStore on a Windows server, complete the following steps:
Navigate to the C:\NetIQ\eDirectory directory.
Enter the following command:
ssscfg.exe -c
Specify the configuration settings for SecretStore, then close the utility.
Run NDSCons.exe.
In the utility, specify auto for the ssncp.dlm module.
Close the utility.
For more information, see “SecretStore Configuration for eDirectory Server” in the NetIQ eDirectory Administration Guide.
To configure the Identity Vault in a specific locale, you must export LC_ALL and LANG to that particular locale before performing the configuration. For example, enter the following commands in the ndsconfig utility:
export LC_ALL=ja
export LANG=ja
You can create, start, and stop server instances in the Identity Vault. You can also view a list of configured instances.
You can use the DHost iConsole to view the configuration file path, fully distinguished name and port for the server instance, and the status of the instance (active or inactive) for specified users.
Use DHost utility to create a new instance in eDirectory.
Use DHost utility to configure and deconfigure an instance in the Identity Vault.
You can run utilities, such as DSTrace, against an instance.
Navigate to the C:\NetIQ\eDirectory directory.
Run the NDSCons.exe.
In the NetIQ eDirectory Services console, navigate to the dstrace.dlm.
Click Start.
You can start or stop one or more instances that you configured.
To start an instance:
Navigate to the C:\NetIQ\eDirectory directory.
Run the NDSCons.exe.
Navigate to an instance and click Start.
To stop an instance:
Navigate to the C:\NetIQ\eDirectory directory.
Run the NDSCons.exe.
Navigate to an instance and click Stop.