Knowledge Base Search Advanced
Identity Maestro server needs, at minimum, a connection to the primary Directory that hosts the user accounts that will use Identity Maestro to manage user identities and group objects in target systems. Additional connections can be added using the same procedure once the server is licensed. This article will discuss:
This step involves using the Identity Maestro Connection Utility to run a "Microsoft Active Directory" wizard to create a Identity Maestro connection to a target Active Directory (AD) domain. This procedure needs to be repeated for each target AD domain that will be managed using Identity Masetro. Connections need to be created for each instance where Identity Maestro has been installed in Step 1 (Identity Maestro Host Server and Identity Maestro Remote Agent Server).
Prior to running the Active Directory connection wizard, ensure that a connection service user account has been created in each target AD domain, that this account uses the same username, e.g. "imconnect" or "servicecontrol", that each account uses the same password and that the password is set to never expire, and that each account has been added to the corresponding "Domain Admins" group for the corresponding AD domain. See Prepare Windows Server to Host Identity Maestro for details.
To create an Active Directory connection: