In a browser, go to the following Access Manager URL:
https://loadbalancer-3.example.com:9443/amserver/UI/Login
Log in to the Access Manager console using the following information:
amadmin
4m4dmin1
Add a new user.
On the Realms page, click the users link.
Click the Subjects tab.
On the User page, under User, click New.
On the New User page, provide the following information, and then click Create:
johndoe
John
Doe
John Doe
password
password
John Doe is now displayed in the list of Users. This indicates the user created in Access Manager was also created in Directory Server. Changes to the user profile were updated in Directory Server.
Modify the John Doe entry.
Log in as a root user to the host DirectoryServer-1.
Start the Directory Server console:
# cd /var/opt/mps/serverroot # ./startconsole & |
Log in to the Directory Server console using the following information:
cn=Directory Manager
d1rm4n4ger
http://DirectoryServer-1.example.com:1391
In the navigation tree, expand the DirectoryServer-1 node, and expand the Server Group.
Click the am-users instance.
On the Directory Server page for am-users , click Open.
Click the Directory tab.
Click the dc=company,dc=com suffix, and then click the users group.
In the list of users, double-click the johndoeentry.
In the Edit User page, verify that the information is the same as the information you entered through the Access Manager console in the previous steps.
Leave the Directory Server console open.
In the Access Manager console, create a new role and add John Doe to the role.
In the Realms page for users, click the Subjects tab.
Click the Role tab.
Under Roles, click New Role.
In the Role page, in the Name field, enter testRole.
Click Create.
The new role testRole is now displayed in the list of roles.
Click the testRole link.
Click the User tab.
In the Edit Role page for testRole, in the Available list, select johndoe.
Click Add.
The user johndoe is added to the Selected list.
Click Save.
John Doe is now added to the testRole role.
Verify that the new user and role are created in Directory Server.