User creation in the provisioning directory occurs only for provisioning related events, such as assigning a provisioning role to a user. A user is created in the provisioning directory only when you use an admin task that assigns a role to create the user.
Note: A Provisioning Directory user is also called a global user. A global user is the single user that connects endpoint accounts.
When user creation in CA IdentityMinder triggers user creation in the provisioning directory, CA IdentityMinder sends an email with a temporary password to the new user’s email address as it is defined in the provisioning directory. The user can log in to the User Console with that password, however, the user must then change the password. As a result, the password is synchronized between the user store and provisioning directory.
If the user has no email address, the user cannot access the User Console until changing the password in the user store.
Note: To email a temporary password, email notifications must be enabled for the Environment, and the CreateProvisioningUserNotificationEvent must be configured for email notification. (See the Configuration Guide.)
|
Copyright © 2013 CA.
All rights reserved.
|
|