ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzalv_5.4.0.1/rzalv_eim_reqs.htm

147 lines
8.5 KiB
HTML

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Enterprise Identity Mapping setup requirements for eServer" />
<meta name="DC.Relation" scheme="URI" content="rzalv_plan_eim_for_eserver.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2002, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2002, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzalv_eim_reqs" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Enterprise Identity Mapping setup requirements for eServer</title>
</head>
<body id="rzalv_eim_reqs"><a name="rzalv_eim_reqs"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Enterprise Identity Mapping setup requirements for eServer</h1>
<div><div class="p">To implement Enterprise Identity Mapping (EIM) successfully in your enterprise,
there are three sets of requirements that you must ensure are met: <ol><li>Enterprise or network level requirements</li>
<li>System requirements</li>
<li>Application requirements</li>
</ol>
</div>
<div class="section"><h4 class="sectiontitle">Enterprise or network level requirements</h4><p>You must
configure one system in your enterprise or network to act as an EIM domain
controller, which is a specially configured Lightweight Directory Access Protocol
(LDAP) server that stores and provides EIM domain data. There are a number
of considerations for choosing which directory services product to use as
a domain controller, including the fact that not all LDAP server products
provide EIM domain controller support. </p>
<p>Another consideration is the
availability of administration tools. One option is that you can use the EIM
APIs in your own applications to perform administrative functions. If you
plan to use the Directory Server for iSeries™ (LDAP) product as the EIM domain
controller, you can use iSeries Navigator to manage EIM. If you plan to use
the IBM<sup>®</sup> Directory
product, you can use the eimadmin utility that is part of the V1R4 LDAP SPE.</p>
<p>The
following information provides basic information about which IBM platforms
provide a directory server product that supports EIM. You can find more detailed
information about choosing a directory server to provide EIM domain controller
support in <a href="rzalv_plan_controller.htm#rzalv_plan_controller">Plan
an EIM domain controller</a>.</p>
</div>
<div class="section"><h4 class="sectiontitle">System and application requirements</h4><p>Each system
that participates in an EIM domain must meet the following requirements: </p>
<ul><li>Have LDAP client software installed.</li>
<li>Have an implementation of the EIM APIs. </li>
</ul>
<p>Each application that will participate in an EIM domain must be able
to use the EIM APIs to perform mapping lookup and other operations. </p>
<div class="note"><span class="notetitle">Note:</span> In
the case of a distributed application, it may not be necessary that both the
server side and the client side be able to use the EIM APIs. Typically, only
the server side of the application may need to use the EIM APIs.</div>
<div class="p">The
following table provides information about the EIM support that the <img src="eserver.gif" alt="e(logo)server" /> platforms provide. Information
is organized by platform with columns that indicate the following: <ul><li>The EIM client needed for the platform to support the EIM APIs.</li>
<li>The type of EIM configuration and administration tools are available for
the platform.</li>
<li>The directory server product that can be installed for the platform to
serve as an EIM domain controller.</li>
</ul>
A platform does not have to be able to serve as an EIM domain controller
to participate in an EIM domain. </div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><caption>Table 1. eServer™ EIM
support</caption><thead align="left"><tr><th align="left" valign="top" width="25.125628140703515%" id="d0e83">Platform</th>
<th valign="top" width="24.87437185929648%" id="d0e85">EIM client (API support)</th>
<th valign="top" width="25.125628140703515%" id="d0e87">Domain controller </th>
<th valign="top" width="24.87437185929648%" id="d0e89">EIM administration tools</th>
</tr>
</thead>
<tbody><tr><td valign="top" width="25.125628140703515%" headers="d0e83 ">AIX<sup>®</sup> on pSeries<sup>®</sup> </td>
<td valign="top" width="24.87437185929648%" headers="d0e85 ">AIX R5.2</td>
<td valign="top" width="25.125628140703515%" headers="d0e87 ">IBM Directory V5.1 </td>
<td valign="top" width="24.87437185929648%" headers="d0e89 ">Not available </td>
</tr>
<tr><td valign="top" width="25.125628140703515%" headers="d0e83 ">Linux<sup>®</sup> <ul><li>SLES8 on PPC64</li>
<li>Red Hat 7.3 on i386</li>
<li>SLES7 on zSeries<sup>®</sup> </li>
</ul>
</td>
<td valign="top" width="24.87437185929648%" headers="d0e85 ">Download one of these: <ul><li>IBM Directory
V4.1 client </li>
<li>IBM Directory
V5.1 client </li>
<li><a href="http://www.openldap.org/" target="_blank">Open
LDAP v2.0.23 client </a><br /><img src="www.gif" alt="Link outside Information Center" /><br /></li>
</ul>
</td>
<td valign="top" width="25.125628140703515%" headers="d0e87 ">IBM Directory V5.1 </td>
<td valign="top" width="24.87437185929648%" headers="d0e89 ">Not available</td>
</tr>
<tr><td valign="top" width="25.125628140703515%" headers="d0e83 ">i5/OS™ on iSeries</td>
<td valign="top" width="24.87437185929648%" headers="d0e85 ">OS/400<sup>®</sup> V5R2 and i5/OS V5R3 or later</td>
<td valign="top" width="25.125628140703515%" headers="d0e87 ">OS/400 V5R2 and i5/OS V5R3 or later Directory Server </td>
<td valign="top" width="24.87437185929648%" headers="d0e89 ">iSeries Navigator V5R2 and V5R3 or later </td>
</tr>
<tr><td valign="top" width="25.125628140703515%" headers="d0e83 ">Windows<sup>®</sup> 2000 on xSeries<sup>®</sup> </td>
<td valign="top" width="24.87437185929648%" headers="d0e85 ">Download one of these: <ul><li>IBM Directory
V4.1 client</li>
<li>IBM Directory
V5.1 client</li>
</ul>
</td>
<td valign="top" width="25.125628140703515%" headers="d0e87 ">IBM Directory V5.1 client </td>
<td valign="top" width="24.87437185929648%" headers="d0e89 ">Not available</td>
</tr>
<tr><td valign="top" width="25.125628140703515%" headers="d0e83 ">z/OS<sup>®</sup> on zSeries </td>
<td valign="top" width="24.87437185929648%" headers="d0e85 ">z/OS V1R4 LDAP SPE OW57137</td>
<td valign="top" width="25.125628140703515%" headers="d0e87 ">z/OS V1R4 LDAP </td>
<td valign="top" width="24.87437185929648%" headers="d0e89 ">V1R4 LDAP SPE OW57137</td>
</tr>
</tbody>
</table>
</div>
<div class="note"><span class="notetitle">Note:</span> For more information about the IBM Directory Server product see the IBM Web
product Web site at <a href="http://www-3.ibm.com/software/network/help-directory/" target="_blank">http://www-3.ibm.com/software/network/help-directory/</a></div>
<p> As
long as a platform provides EIM client (API) support that system can participate
in an EIM domain. It is not necessary that a platform provide EIM domain controller
support unless you want to use that particular platform as the EIM domain
controller for your enterprise. </p>
<p>After you have verified that all the
EIM requirements are met, you can begin to <a href="rzalv_plan_roles.htm#rzalv_plan_roles">identify needed skills, roles, and authorities</a> for configuring
EIM. </p>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzalv_plan_eim_for_eserver.htm">Plan Enterprise Identity Mapping for eServer</a></div>
</div>
</div>
</body>
</html>