Skip to main content

Transparent synchronization configuration (passwd)

The idapi file is used to configure the connection to API SOAP Service (idapisoap). The options are as follows:

targetid If you are using aliasing, this option is used to specify the ID of the target.

Example:

targetid = "UNIXSERVER";

url The url that API SOAP Service (idapisoap) is listening on.

Example:

url = "http://hipmserver/default/idapi";

user The product administrator used to connect to the API SOAP Service.

Example:

user = "_API_USER";

psw The product administrator password used to connect to the API SOAP Service. idaptool can be used to provide an encyrpted form of the password.

Example:

psw = "{AES}xdWShI2f+fM7Bd0SRhIi9kHvdhM9Y0fVxvKjpIbHfp4T47X2IAjLakoNitoSfu4Z" ;

libcurl In order to communicate to the API SOAP Service over SSL, the libcurl is required. If the full path is specified, then the library can be loaded when connecting over SSL. If no libcurl is avalable and plain HTTP is used, the value can be set to ’0’. If empty, the system default is used.

Example:

libcurl = "0";

capath When communicating to the API SOAP Service over SSL, a certificate check will be made unless ignore is set to "1". If the CA certificate is not installed on the system default paths, a path can be specified.

Example:

capath = "/etc/certs";

cert When communicating to the API SOAP Service over SSL, a client-side certificate can be provided. If there is a passphrase as part of the certificate it needs to be specified as well.

Example:

cert = "/etc/certs/hipmcert.pem:apassphrase";

ignore When communicating to the API SOAP Service over SSL, the certificate check can be ignored. If 0, the check is not ignored. If 1, the check is ignored.

Example:

ignore = "1";

language The language set in this value will be used when fetching the password rules. By default is it is en-us. The language packs must be installed in order to retrieve rules in other languages.

Example:

language = "fr-fr";

fail-if-unavailable Specifies the action to take if the password operation fails and the Password Manager service (idpm ) cannot be contacted. The default behavior is to fail the operation if the Password Manager service is unavailable.

Example:

fail-if-unavailable = "true";
In this section: