Chat now with support
Chat with Support

Identity Manager 8.1 - Administration Guide for Connecting Unix-Based Target Systems

Managing Unix-Based Systems Setting Up Synchronization with a Unix-Based Target System Base Data for Unix-Based Target Systems Unix Host Unix User Accounts Unix Groups Reports about Unix Objects Appendix: Configuration parameters for managing a Unix environment Appendix: Default Project Template for Unix-Based Target Systems

Master Data of a User Account's Encrypted File System

On Encrypted File System, enter the following additional information for using encrypted file system (EFS) for a user account in an AIX system. This data is mapped in /etc/security/user.

Table 27: User account master data for encrypted file systems

Property

Description

efs_adminks_access

Defines the efs_admin keystore location (Parameter efs_adminks_access). Permitted values:

  • file
  • ldap

efs_allowksmodechangebyuser

Specifies whether the user can change the mode or not. (Parameter efs_allowksmodechangebyuser).

efs_file_algo

Algorithm used to generate the file protection key. (Parameter efs_file_algo). Permitted values:

  • AES_128_CBC
  • AES_192_CBC
  • AES_256_CBC

efs_initialks_mode

Initial mode of the user keystore. (Parameter efs_initialks_mode). Permitted values:

  • guard
  • admin

efs_keystore_access

User keystore location. (Parameter efs_keystore_access). Permitted values:

  • none
  • file

efs_keystore_algo

Algorithm used to generate the user private key when the keystore is created. (Parameter efs_keystore_algo). Permitted values:

  • RSA_1024
  • RSA_2048
  • RSA_4096

Additional Tasks for Managing Unix User Accounts

After you have entered the master data, you can apply different tasks to it. The task view contains different forms with which you can run the following tasks.

Overview of Unix User Accounts

Use this task to obtain an overview of the most important information about a user account.

To obtain an overview of a user account

  1. Select the category Unix | User accounts.
  2. Select the user account in the result list.
  3. Select Unix user account overview.

Changing the manage level of a Unix user account

The default manage level is applied if you create user accounts using automatic employee assignment. You can change a user account manage level later.

To change the manage level for a user account

  1. In Manager, select Unix | User accounts.

  2. Select the user account in the result list.

  3. Select Change master data.
  4. On the General tab, select the manage level in the Manage level menu.

  5. Save the changes.
Related Topics
Related Documents