Connector GuidesConnectors GuideConnecting to EndpointsEntrust PKI ConnectorConnector-Specific Features › Acquire an Entrust Authority Security Manager System

Previous Topic: Individual Entrust Profile Approach

Next Topic: Endpoint Connections
Acquire an Entrust Authority Security Manager System

To acquire an Entrust Authority Security Manager System, you must be an administrative user defined in the Entrust Authority System.

Note: The C++ Connector Server service must be restarted before acquiring the Entrust Authority Security Manager System.

From the Endpoint Type task view

  1. Register the Entrust Authority Security Manager System as a managed endpoint in CA Identity Manager.

    Use the PKI Endpoint property sheet to register an Entrust Authority Security Manager System.

    Important! The host name string specified in the host name control, must match exactly the host name string specified for this Entrust Authority system in the Global User settings on the Entrust PKI Domain Access property page.

    During the registration process, CA Identity Manager identifies the Entrust Authority Security Manager System you want to administer and gathers information about it.

  2. Explore the objects that exist on the endpoint.

    After registering the Entrust Authority Security Manager System in CA Identity Manager, you can explore its contents. Use the Explore and Correlate Endpoint dialog. The Exploration process finds all PKI users/accounts. You can correlate the accounts with global users at this time or you can correlate them later.

  3. Correlate the explored accounts with global users.

    When you correlate accounts, CA Identity Manager creates or links the accounts on an endpoint with global users, as follows:

    1. CA Identity Manager attempts to match the logon name with each existing global user name. If a match is found, CA Identity Manager associates the PKI account with the global user. If a match is not found, CA Identity Manager performs the next step.
    2. CA Identity Manager attempts to match the display name with each existing global user's full name. If a match is found, CA Identity Manager associates the PKI account with the global user. If a match is not found, CA Identity Manager performs the next step.
    3. If the Create Global Users as Needed button is selected, CA Identity Manager creates a new global user and then associates the PKI account with the global user. If the Create Global Users as Needed button is cleared, CA Identity Manager performs the next step.
    4. CA Identity Manager associates the PKI account with the [default user] object.