In iManager:
Click to display the Identity Manager Administration page.
Open the driver set that contains the driver whose properties you want to edit:
In the Administration list, click Identity Manager Overview.
If the driver set is not listed on the Driver Sets tab, use the Search In field to search for and display the driver set.
Click the driver set to open the Driver Set Overview page.
Locate the driver icon, then click the upper right corner of the driver icon to display the Actions menu.
Click Edit Properties to display the driver’s properties page.
By default, the Driver Configuration page is displayed.
In Designer:
Open a project in the Modeler.
Right-click the driver icon or line, then select click Properties > Driver Configuration.
The Driver Configuration options are divided into the following sections:
The driver module changes the driver from running locally to running remotely or the reverse.
Table A-1 Driver Module
Option |
Description |
---|---|
Java |
Used to specify the name of the Java class that is instantiated for the shim component of the driver. This class can be located in the classes directory as a class file, or in the lib directory as a .jar file. If this option is selected, the driver is running locally. The Java class name is: com.novell.nds.dirxml.driver.gmailshim.GMailDriverShim |
Native |
This option is not used with the Google Apps driver. |
Connect to Remote Loader |
Used when the driver is connecting remotely to the connected system. Designer includes two suboptions:
|
Table A-2 Driver Object Password
Option |
Description |
---|---|
Driver Object Password |
Use this option to set a password for the driver object. If you are using the Remote Loader, you must enter a password on this page or the remote driver does not run. This password is used by the Remote Loader to authenticate itself to the remote driver shim. |
The authentication section stores the information required to authenticate to the connected system.
Table A-3 Authentication
Option |
Description |
---|---|
Authentication ID or User ID |
This is a User ID on the target Google domain that has administrative rights on the domain. The driver will authenticate to Google Apps using this User ID. If your domain is mydomain.com, then this user id would be in the form: admin@mydomain.com |
Authentication Context or Connection Information |
This is the name of the Google domain to be managed by the driver. If your Google domain is named mydomain.com, then you would enter mydomain.com in the Authentication Context. |
Remote Loader Connection Parameters or Host name Port KMO Other parameters |
Used only if the driver is connecting to the application through the remote loader. The parameter to enter is hostname=xxx.xxx.xxx.xxx port=xxxx kmo=certificatename, when the host name is the IP address of the application server running the Remote Loader server and the port is the port the remote loader is listening on. The default port for the Remote Loader is 8090. The kmo entry is optional. It is only used when there is an SSL connection between the Remote Loader and the Metadirectory engine. Example: hostname=10.0.0.1 port=8090 kmo=IDMCertificate |
Driver Cache Limit (kilobytes) or Cache limit (KB) |
Specify the maximum event cache file size (in KB). If it is set to zero, the file size is unlimited. Click Unlimited to set the file size to unlimited in Designer. |
Application Password or Set Password |
This option is not used with the Google Apps driver. Application authentication is accomplished using OAuth. |
Remote Loader Password or Set Password |
Used only if the driver is connecting to the application through the Remote Loader. The password is used to control access to the Remote Loader instance. It must be the same password specified during the configuration of the Remote Loader on the connected system. |
The Startup Option section allows you to set the driver state when the Identity Manager server is started.
Table A-4 Startup Option
Option |
Description |
---|---|
Auto start |
The driver starts every time the Identity Manager server is started. |
Manual |
The driver does not start when the Identity Manager server is started. The driver must be started through Designer or iManager. |
Disabled |
The driver has a cache file that stores all of the events. When the driver is set to Disabled, this file is deleted and no new events are stored in the file until the driver state is changed to Manual or Auto Start. |
Do not automatically synchronize the driver |
This option only applies if the driver is deployed and was previously disabled. If this is not selected, the driver re-synchronizes the next time it is started. |
Table A-5 Parameter Name
Parameter Name |
Description |
---|---|
Service Account Email Address |
Set this parameter to the service account email address created for your service account credential. See Section 3.2.1, Creating a Google Service Account |
P12 Private Key File |
Set this parameter to the path and filename of the .p12 file created for your service account credential. Section 3.2.1, Creating a Google Service Account |
Override JAXP Parameter |
Set to true to have the driver override the default setting for the system property javax.xml.parsers.SAXParserFactory with the value org.apache.xerces.jaxp.SAXParserFactoryImpl. |
Hash Passwords |
Setting this subscriber parameter to True tells the driver to apply an MD5 hash to the password before passing it to Google. |
Heartbeat Interval |
This publisher parameter tells the publisher how frequently to emit a heartbeat document to the IDM engine. |