System information
Identity Manager Resources Reference
Part Number 820-2952-10 Page 99
Identity Manager Resources Reference
This section contains new information and documentation corrections for the Sun Java
™
System
Identity Manager Resources Reference:
General
• The Exchange 5.5 resource adapter is not supported. Ignore any references to this adapter.
Active Directory
The following information should be added to the Active Directory resource adapter
documentation.
Specifying a Domain for Pass-Through Authentication
In a default configuration, pass-through authentication is accomplished by sending the user ID and
password only. These two attributes are configured in the
AuthnProperties
element in the resource
object’s XML as
w2k_user
and
w2k_password
. Without a domain specification, the gateway searches
all known domains and tries to authenticate the user in the domain that contains the user.
In a trusted multi-domain environment, there can be two possible situations:
• All domains contain a synchronized user/password combination
• The user/password combination is domain dependent.
When the user/password combination is synchronized, configure your Active Directory
resources so that they are common resources. See Identity Manager Administration for more
information about setting up common resources.
If the user/password combination is domain-dependent, and if users can be expected to
know the domain information, you can allow users to enter the domain information on the
login screen. This option can be used in combination with common resources.
To allow the user to enter the domain on the login page, add the following property to the
<AuthnProperties>
element in the resource object's XML:
<AuthnProperty name='w2k_domain' displayName='Domain:' formFieldType='text'
dataSource='user' doNotMap='true'/>