Creating EIM identifiers for two administrators, John Day and Sharon Jones

In this scenario, you create two EIM identifiers, one named John Day and the other named Sharon Jones.

As part of setting up your single sign-on test environment, you need to create EIM identifiers for two of your administrators so they can both log on to IBM® i environments using their Windows user identities.

To create the EIM identifiers, follow these steps:

  1. In IBM Navigator for i on System A, expand IBM i Management > Security > All Tasks > Enterprise Identity Mapping.
  2. Click Domain Management.
  3. Right-click MyCoEimDomain and select Open.
    Note: You might be prompted to connect to the domain controller. In that case, the Connect to EIM Domain Controller dialog box is displayed. You must connect to the domain before you can perform actions in it. To connect to the domain controller, provide the following information and click OK:
    • User type: Distinguished name
    • Distinguished name: cn=administrator
    • Password: mycopwd
      Note: Any and all passwords specified in this scenario are for example purposes only. To prevent a compromise to your system or network security, you should never use these passwords as part of your own configuration.
  4. Right-click Identifiers and select New Identifier.
  5. On the New EIM Identifier dialog box, enter John Day in the Identifier field.
  6. Click OK.

Repeat steps 2 through 6, but enter Sharon Jones in the Identifier field.

Now that you have created an EIM identifier for each of the administrators, you must create identifier associations that map user identities to the identifiers. First, create the identifier associations for John Day.