Linux Connector
EmpowerID Linux connector allows organizations to bring the user and group data in their Linux systems to EmpowerID, where it can be managed and synchronized with data in any connected back-end user directories. Once connected, you can manage this data from EmpowerID in the following ways:
Create new users
Edit user attributes
Delete users
Create new groups
Manage group membership
Delete groups
Steps
To connect EmpowerID to your Linux server, you do the following:
Create a Linux account store in EmpowerID
Configure attribute flow
Configure Linux account store settings
Enable the Account Inbox permanent workflow
Monitor inventory
Step 1 – Create a Linux account store
On the navbar, expand Admin > Applications and Directories and then click Account Stores and Systems.
On the Account Stores page, select the Actions tab and then click Create Account Store.
Â
Under System Types, search for Linux.
Click the record for Linux to select the type and then click Submit.
Â
This opens the Linux form, which is where you enter the information needed to connect EmpowerID to the system.
Â
Enter the following information in the Linux form:
Server – Enter the IP address or the FQDN for the server
Name – Enter a name for the account store
User Name – Enter the user name for the account EmpowerID should use to connect to the Linux server. This account should be a super user.
Password – If you want to use password authentication, enter the password for the above user account.
Use Certificate – If you want to use certificate authentication, select this option (check it). Doing so hides the Password field and displays the Certificate and Certificate Password fields.
Certificate – Click Choose File and then browse to and select the appropriate certificate.
Certificate Password – Enter the certificate password.
Â
Is Remote (Requires Cloud Gateway) – This setting appears for account stores with local directories, such as Active Directory, LDAP, SAP, etc. When enabled, this tells EmpowerID to use the Cloud Gateway Connection for that account store. The Cloud Gateway Connection must be installed on an on-premise machine. For installation information, please see Installing the EmpowerID Cloud Gateway Client.
Click Submit to create the account store.
EmpowerID creates the account store and the associated resource system. The next step is to configure the attribute flow between the account store and EmpowerID.
Step 2 – Configure attribute flow
Step 3 – Configure account store settings
On the Account Store and Resource System page, click the Account Store tab and then click the pencil icon to put the account store in edit mode.
This opens the edit page for the Linux account store. This page allows you to specify the account proxy used to connect EmpowerID to your Linux system as well as how you want EmpowerID to handle the user information it discovers in the Linux system during inventory. Settings that can be edited are described in the table below the image.Edit the account store as needed and then click Save to save your changes.
Next, enable the Account Inbox permanent workflow to allow the Account Inbox to provision or join the user accounts in Domino to EmpowerID Persons as demonstrated below.
EmpowerID recommends using the Account Inbox for provisioning and joining.
Step 3 – Enable the Account Inbox permanent workflow
Step 4 – Monitor Inventory
IN THIS ARTICLE