Chat now with support
Chat with Support

Enterprise Single Sign-On 9.0.2 - One Identity Enterprise Access Management Console Administration Guide

Preface Overview Authenticating to EAM Console and Managing Protection Modes Searching the Directory Tree Managing administrators Managing Security Profiles
Managing time slices Managing Password Format Control Policies Managing User Security Profiles Managing Access Point Security Profiles Managing Application Security Profiles Defining Security Profiles Default Values Managing User and Access Point Security Profiles Priorities
Managing directory objects
Managing applications Managing users Managing access points Managing representative objects Managing clusters of access points Selecting a domain controller
Importing/Exporting security profiles and directory objects Managing smart cards Managing SA server devices Managing RFID tokens Managing biometrics Managing Mobile Devices Enabling the public key authentication method Managing Emergency Accesses Managing audit events Managing reports Customizing configuration files Creating scripts Basic syntax of regular expressions Listing audit events and error codes Correspondence between profiles and administration rights Report Models and Parameters List Custom Group Files Format

Custom Group Files Format


To sort and filter the data according to custom groups, you must create definition files for these groups.

  • These files must be in CSV and UTF-8 formats and installed in the C:\Program Files\Common Files\One Identity\IAR\datasources\CSV directory.
  • Each file must at least contain for each object (user, access point or account) its DN and the group it belongs to.
  • All the attributes are separated by semi-colons. If there is no value, the field must exist anyway.

For the users

The file header must start with: userGUID;userName;userDN;customGroup


  • userGUID is the GUID of the user.
  • userName is the name of the user.
  • userDN is the DN of the user (mandatory).
  • customGroup is the name of the group to which belongs the user.

For the access points

The file header must start with: accessPointGUID;accessPointName;accessPointDN;customGroup


  • accessPointGUID is the GUID of the access point.
  • accessPointName is the name of the access point.
  • accessPointDN is the DN of the access point (mandatory).
  • customGroup is the name of the group to which belongs the access point.

For the accounts

The file header must start with: loginId;customGroup


  • loginId is the name of the account (mandatory).
  • customGroup is the name of the group to which belongs the access point. If the account group file is specific to an application, the group name can be empty (do not forget the semi-colon to delimit both fields of the file). In that case, the value of the parameter corresponding to the application name is taken by default into account. Otherwise, the name of the application specified in the file must be the one known by E-SSO.

For the access points







For the accounts





Related Documents