This section explains how to change from user management via the Extended User Management function to user management via a Systemwalker authentication repository.
Creating a Systemwalker authentication repository
Either create a new Systemwalker authentication repository or set up an existing Active Directory or Interstage Directory Service as a Systemwalker authentication repository. Refer to the Systemwalker User's Guide - Systemwalker User Management and Single Sign-on for details.
Deciding on a rule for creating user IDs
Decide on a rule for creating user IDs that are unique among all servers that use the Systemwalker authentication repository.
Settings on Systemwalker Operation Manager servers
Use the following setup procedure:
Close any open Systemwalker Operation Manager windows. If Systemwalker Centric Manager has been installed, close any Systemwalker Centric Manager windows as well.
Stop Systemwalker Operation Manager by executing the following command. If Systemwalker Centric Manager has been installed, stop Systemwalker Centric Manager as well.
[Windows]
poperationmgr /a |
[UNIX]
poperationmgr -a |
Disable the Extended User Management function by executing the mpsetusermode command.
Example:
mpsetusermode -s off |
Set up the Systemwalker authentication repository connection by executing the swidmg_set_repository command (connection destination Systemwalker authentication repository setup command). Refer to the Systemwalker User's Guide - Systemwalker User Management and Single Sign-on for details on the swidmg_set_repository command.
Example:
In the following example, Active Directory is used as the Systemwalker authentication repository, the host name of the Systemwalker authentication repository is "REPOSERVER.fujitsu.com" (port number 636), the user account that accesses the Systemwalker authentication repository is "Administrator" (which is registered in the "Users" group of the "fujitsu.com" domain), the password is "password", and accounts that have been registered in the "System Operation Section" and "System Information Department" (organizational units (OU) below the "fujitsu.com" domain) are used
swidmg_set_repository SET -h REPOSERVER.fujitsu.com -p 636 -u"cn=Administrator,cn=Users,dc=fujitsu,dc=com"-pw password -publicdir"dc=fujitsu,dc=com", -accountdir"ou=/System Operation Section,ou=System Information Department,dc=fujitsu,dc=com"-t AD |
Create the user IDs and initial passwords to be registered with the Systemwalker authentication repository, according to the rule for creating user IDs that was decided earlier.
Use the swidmg_user_mng command (user management command) to register the newly created user IDs and initial passwords with the Systemwalker authentication repository. Refer to the Systemwalker User's Guide - Systemwalker User Management and Single Sign-on for details.
Start Systemwalker Operation Manager by executing the following command. If Systemwalker Centric Manager has been installed, start Systemwalker Centric Manager as well.
[Windows]
soperationmgr /a |
[UNIX]
soperationmgr -a |
Log in to Systemwalker Operation Manager as a system administrator (for the Windows version, this means the built-in "Administrator" account and for the UNIX version, it means a "superuser"), and set up project access rights for the users in the Systemwalker authentication repository. Refer to "Setting up Access Permissions for Projects" in the Systemwalker Operation Manager User's Guide for details.
