Previous Topic: Delete Recurring TasksNext Topic: Logical Attribute Handlers

Identity Management ServiceIdentity Management Administration GuideSystem TasksManage Connector Servers

Manage Connector Servers

CA CloudMinder tenants can manage endpoints in their enterprise, called on-premise endpoints, by installing a local CA IAM Connector Server.

Administrators who have the Manage Connector Server task configure a connection to a local CA IAM Connector Server to allow tenants to manage endpoint accounts in CA CloudMinder.

Follow these steps:

  1. Log in to the User Console as an administrator who can use the Manage Connector Server task.
  2. Click System Tasks, Manage Connector Server.

    A diagram displays the cloud Connector Server and the local connector servers that it connects to.

  3. Click Add to create a connector server definition.
  4. Complete the following fields:
    Name

    Specifies the display name for the connector server.

    URL

    Specifies the Connector Server message broker URL.

    Domain

    Specifies the LDAP domain name.

    The Domain is included for backward compatibility. In most cases, do not change the domain.

    Username

    Specifies the user account that logs in to the connector server.

    Password

    Specifies the password for the account specified in the Username field.

    Allowed Tenant

    Specifies the name of the tenant who installed the connector server.

    Tenant Host ID

    Specifies an optional identifier in cases where multiple connector servers are installed at a tenant site to handle different sets of connectors. For example, one connector server supports Active Directory connectors and another connector supports Oracle connectors. The on-premise connector servers in this scenario are not peers since they are separate servers. However, they share a tenant name and authentication credentials for the Cloud connector server.

  5. Click OK.
  6. Drag the connector server that you created to the local connector server in the diagram above the list of connector servers to create the connection.
  7. Specify which endpoint operations are handled by the on-premise connector server as follows:
    1. Right-click the connector server definition, and select Modify Route.

      You route any connector types that need to communicate with on-premise endpoints, such as a corporate Active Directory, to an on-premise connector server. You do not need to route connector types that operate as a cloud service, such as Google Apps, to an on-premise connector server.

    2. Select one or more endpoint type, then click OK.

      Note: For each tenant, a connector type can be assigned to only one on-premise connector server. Any connector types that are used in a route for another on-premise connector server with the same Tenant Name, but different Tenant Host ID, appear as unavailable for selection.

      A Connector Type can be shared however, if a filter is used. The filter can be an exact endpoint name match, or it can include the wildcard (*) character at the start and end of the name. If any endpoints have already been acquired, they can be selected from a list.