Manualshelf

Troubleshooting guide

ManualsBrandsRSA Security ManualsServer6.1
71727374757677787980
72 4: Primary Server Migration
RSA Authentication Manager 6.1 to 8.1 Migration Guide
12. Select the identity source into which you want to migrate users. (If you do not
have LDAP synchronization jobs in your deployment, the option Selectively
migrate users to appropriate identity sources is not applicable or available.)
Migrate all users to the internal database. Select this option to migrate all
users to the Authentication Manager internal database.
Migrate all users to the Identity Source. The drop-down list displays all of
the configured external identity sources. Select an identity source to migrate
all users to that one identity source.
When you select an external identity source, a checkbox and accompanying
text are displayed below the Migrate all users to the Identity Source field.
Select the checkbox to move the users who are in the dump file and not in the
target identity source to the Authentication Manager internal database. If you
do not select the checkbox, these users are discarded.
Selectively migrate users to appropriate identity sources. Select this option
to map LDAP synchronization jobs to identity sources. This option is
available only if you have LDAP synchronization jobs in your deployment.
(You can map the LDAP synchronization jobs after completing the Customize
Migration page and clicking Next.)
When you select this option, a checkbox and accompanying text are displayed
below the Selectively migrate users to appropriate identity sources field.
Select the checkbox to move the users who are in the dump file and not in the
target identity source to the Authentication Manager internal database. If you
do not select the checkbox, these users are discarded.
13. Review the User ID Format (Internal Database): field and modify if necessary.
If the dump file contains User IDs in NTLM format, User ID Format (Internal
Database): is displayed and selected by default. The User IDs are listed in the
Domain Name Mapping section below the field.
Leave the field selected to map User IDs from NTLM to UPN format during the
migration. This mapping changes the format of the User IDs in the Authentication
Manager database. If you do not want to perform the mapping during the
migration, clear the User ID Format (Internal Database): field.
To map a User ID from NTLM to UPN format during migration, click the NTLM
User ID in the list in the Domain Name Mapping section. The NTLM User ID
displays in the NTLM Name field. Using the Windows 2000 Fully Qualified
Domain Names (FQDN) UPN format, enter the corresponding User ID in the
UPN Name field, and click Update. Repeat for each User ID that you want to
map.
You can perform NTLM to UPN format mapping after the migration using the
Security Console, but that process does not change the User IDs in the
Authentication Manager database. It simply enables Authentication Manager to
map authentication requests that are in NTLM format to UPN format at runtime.
For more information about performing NTLM to UPN mapping after the
migration, see the Security Console Help topic "Configure Agent Settings."