You can add, modify, or delete an external datastore.
You must configure the LDAP datastore in Privileged Account Manager to store the Enterprise Credential Vault objects.
Extend the schema of the LDAP directory to store the Enterprise Credential Vault Objects.
Create a container in the LDAP directory to store the Enterprise Credential Vault Objects. The container can be of any type under which an Organizational Unit (OU) can be created.
When you add multiple LDAP datastores, ensure that the LDAP servers are synchronized and the containers are replicated.
To add the LDAP data store, perform the following steps:
On the home page of the console, click Enterprise Credential Vault.
In the middle pane, click Add Datastore.
In the right pane, specify the following details:
Name: Specify a name for the LDAP directory.
Host: Specify the IP address or DNS name of the LDAP directory that is used to store the Enterprise Credential Vault objects.
Port: Select the LDAP service port number. The default port number for LDAP is 389 and for secure LDAP(LDAPS) is 636.
Secure: Select this option if you want to use secure LDAP (LDAPS).
Admin DN: Specify the Administrator Distinguished Name (Admin DN) of the LDAP directory. For example, cn=admini,ou=mycompany,dc=com
NOTE:The Admin DN must have administrator privilege on the Container DN that is sent as part of this configuration.
Password: Specify the LDAP Admin DN password.
Container DN: Specify the DN of the container, where the Enterprise Credential Vault Objects must be stored. For example, ou=data,dc=mycompany,dc=com
Click Save. The newly added LDAP directory gets added to the list of LDAP data stores in the middle pane.
You can click Test Connection, to validate the administrator credentials and schema extension. When you click Save, the test connection is triggered automatically.
To modify the data store configurations, perform the following steps:
On the home page of the console, click Enterprise Credential Vault.
In the left pane, click Datastore.
In the middle pane, click the edit icon against the required data store.
Make required changes and click Save.
To delete a data store, perform the following steps:
NOTE:Deleting the datastore does not delete the Enterprise Credential Vault Objects stored on the LDAP datastore.
On the home page of the console, click Enterprise Credential Vault.
In the left pane, click Datastore.
In the middle pane, click the delete icon against the required data store.
In the right pane, click Confirm.