Add system entities

Create new Person and BPPerson entities to associate with a new custom LDAP class.

When we add a Person or BPPerson type entity, the actual LDAP class that stores the entity must be created before we use this task to add entities.

Custom LDAP classes and their attributes must be created directly within your data store with tools compatible with the LDAP data repository software. Create the classes before associating them with a custom IBM Security Identity Manager entity. After it is created, the class can be associated with a custom Security Identity Manager entity. Map its attributes to Security Identity Manager attributes.

All LDAP classes, auxiliary, and structural, that begin with er are considered Security Identity Manager-managed classes. They are excluded from the list of LDAP classes within the Manage Entities task.

When adding a custom entity, you need to examine the default control type of each attribute. Change it to an appropriate control type from the form customization page. Refer to a standard Security Identity Manager entity of the same entity type as the custom entity to view the control types assigned to the attributes of a standard entity.

To add a custom system entity...

  1. Click Configure System > Manage Entities. The Manage Entities page is displayed.

  2. On the Manage Entities page, click Add. The Create Entity wizard is displayed.

  3. On the Select Type page, select the entity type to create, and then click Next.

  4. On the Entity Detail Information page, complete the following steps:

    1. In the Entity name field, type a unique name for the entity.

    2. Click Search to find and specify an LDAP class that stores the entity.

    3. On the Select LDAP Class page, click Search to display a list of LDAP classes.

    4. Select the object class name, and then click OK. The LDAP class field is populated with the object class name that you specified.

    5. Click Browse name attributes to find and specify Valid entries for the Name attributes field depend on which LDAP class is selected. The Select Attribute page is displayed, which lists the name attributes of the LDAP class that we selected.

    6. On the Select Attribute page, select the name attribute to associate with the new entity, and then click OK. The Name attribute field is populated with the name attribute that we selected.

    7. In the Default search attributes list, select the search attributes to add to the entity, and then click Add. Select attributes that are searchable, such as string or numeric type.

    8. When we are finished specifying entity information, click Next.

  5. On the Attribute Mapping page, map an attribute by completing these steps:

    1. Select an attribute in the Identity Manager attribute list.

    2. Select an attribute in the Custom LDAP attribute list.

    3. Click Map.

    4. Optional: To obtain the default mapping, select an attribute pair in the table, and click Reset.

    5. When the mapping is complete, click Finish.

A message is displayed, indicating that you successfully created an entity.

Perform additional entity management tasks, or click Close.

Parent topic: Entities management