Customize role schema

Administrators customize a role schema by adding optional attributes to ISIM LDAP and then to the role definition schema (erRole objectclass).

1. Access the ISIM LDAP.
2. Add new optional type attributes. For example, add the attribute designation. For more information, see LDAP Installation and Configuration Guide.

3. Update the erRole objectclass in theSecurity Identity Manager LDAP to associate the new attributes. For example, update the erRole objectclass in IBM Security Directory Server using the Security Directory Server web administrative console and associate the designation attribute with the erRole objectclass. For more information about Security Directory Server, see the IBM Knowledge Center.
4. Ensure that the role schema is customized correctly.
5. Ensure that ISIM and Security Identity Manager LDAP are running.
6. Launch ISIM administrative console.

7. Select Configure System > Design Forms.
8. Update the role form template to display the new attribute. The LDAP schema is cached, and we might need to restart Security Identity Manager to see the new attribute that was added to the erRole objectclass.

We can view the new attributes on ISIM administrative console when viewing the role definitions.

We can define, set, modify, save, and restore custom attributes when creating or modifying a role.

Parent topic: Entities management