Table of Contents
Advertisement
3 The system displays an attribute set page with the following tabs:
General: Click to edit the name of the attribute set.
Mapping: Click to edit the attribute map.
Usage: Displays where the attribute set is used. Informational only.
4 Click OK, then click Close.
4.3 Configuring User Matching Expressions
One of the user identification methods the Identity Server uses when an assertion is received is to
query the user store based on attributes received in the assertion from the identity provider. You
configure user matching expressions to define the logic of the query. You must know the LDAP
attributes that are used to name the users in the user store and create the user's distinguished name.
In order to use user matching, you must enable the Personal Profile on the identity provider and the
service provider. See
1 In the Administration Console, click Devices > Identity Servers > Shared Settings > User
Matching Expressions.
2 Click New, or click the name of an existing user matching expression.
Name: The name of the user lookup expression.
3 Click the Add Attributes icon (plus sign), then select attributes to add to the logic group. (Use
the Shift key to select several attributes.)
4 Click OK.
136 Novell Access Manager 3.1 SP1 Identity Server Guide
Section 10.2, "Enabling Web Services and Profiles," on page
224.
Advertisement
Table of Contents
Troubleshooting
