Administer > System security > SAML Single Sign-On > SAML SSO setup > Configure SAML SSO using the standalone IdM > Task 8: Specify an IdM user account for Service Manager

Task 8: Specify an IdM user account for Service Manager

Note This is an optional task.

Each IdM client (the Service Manager Web Tier, SRC, or Mobility Client) needs an IdM user account to access the IdM service.

By default, the IdM service has a user account defined: idmTransportUser (user name) and idmTransportUser (password). You can skip this task and simply specify this default user account in the SM Web Tier, SRC, and Mobility Client. For details, see Configure SAML SSO in Service Manager (using standalone IdM).

Important You cannot change the user name. However, you can change the password as you like.

To change the IdM user account password, follow these steps:

  1. Open the <idm-service>/WEB-INF/classes/integrationusers.properties file in a text editor.

  2. Locate the line with an encrypted string:

    idmTransportUser=ENC(xxxx)

    Where: xxxx represents an encrypted string.

  3. Change this line to the following:

    idmTransportUser=idmTransportUser,ROLE_ADMIN,PERM_IMPERSONATE,enabled

    Where:

    • "idmTransportUser" on the left side of the equals sign (=) is the user name, which must not be changed.
    • On the right side of the equals sign (=), "idmTransportUser" is the default password and the rest of the string are other properties of the user account.
  4. Change the default password to your own value. For example, change it to "1Qaz2wsx3edc":

    idmTransportUser=1Qaz2wsx3edc,ROLE_ADMIN,PERM_IMPERSONATE,enabled

  5. Save the file.

Note You will also need to specify the same user name and password (for example, 1Qaz2wsx3edc) on the Service Manager side. For details, see Configure SAML SSO in Service Manager (using standalone IdM).

Note In the last task, you will run the IdM encryption tool to encrypt all IdM passwords and keys, including the entire IdM user account property string. You will need to copy the encrypted string back to this file.