Complete the installation with a manual LDAP install

Note: 

Make sure that you have the LDAP Installation Values from the M3 Core Installation Planning Guide available as you complete this portion of the installation. Refer to the LDAP Settings in the M3 Core Installation Planning Guide as you complete this portion of the installation.

  1. Select the option to Manually configure settings for a central LDAP server.
  2. Provide necessary information. Consider the following fields:
    LDAP server

    Type the host ID, either an IP address or domain name service (DNS) name of the LDAP server. For example, type ldap.company.com or 10.20.30.40.

    LDAP port

    Type the host port of the LDAP server.

    Bind user (distinguished name)

    Type the distinguished name for the LifeCycle Manager Server that will be used when binding to the directory service.

    Bind user password

    Type the bind user password.

    Note: 

    The bind user password cannot end with @.

    SSL enabled

    Optional. Select Yes or No depending on whether a secure socket communication is enabled in the LDAP server.

    Trust store password

    Optional. This setting is needed only if SSL is enabled. Type the password for the keystore.

    Note: 

    The trust store password cannot end with @.

    Retype Trust store password

    Retype the Trust store password for the keystore.

  3. Click Next. The LDAP Configuration Settings window is displayed.
  4. Provide necessary information. Consider the following fields:
    User prefix

    Type the attribute that LifeCycle Manager will use to display the user name of users in the directory service.

    Group prefix

    Type the attribute that LifeCycle Manager will use to display the group name of groups in the directory service.

    User suffix

    Type the base distinguished name which indicates the starting point for LDAP searches of users in the directory service.

    Group suffix

    Type the base distinguished name which indicates the starting point for LDAP searches of groups in the directory service.

    Group member attribute

    Type the attribute for groups in the directory service that LifeCycle Manager will use to determine which users are members of that group.

    User search filter

    Type the LDAP user filter that searches the user registry for users.

    Note: 

    With this search filter, a user can log on with either the value found in cn or the value found in sAMAccountName. The user name used in LifeCycle Manager is however determined by the User prefix setting (specified above).

    Group search filter

    Type the LDAP user filter that searches the user registry for groups.

    LCM admin group

    Type a group name in the user registry that points to the LifeCycle Manager Administrators group. Members of this group are allowed to perform all tasks in LifeCycle Manager.

    Note: 

    LifeCycle Manager must be able to find this group with an LDAP search using the group search filter (specified above).

    LCM user group

    Type a group name in the user registry that point out the LifeCycle Manager user group. Members of this group are allowed to log on to LifeCycle Manager but are not trusted to manage applications.

    Note: 

    If this field is left blank, all users that are found with an LDAP search using the user search filter specified above are allowed to log on to LifeCycle Manager. LifeCycle Manager must be able to find this group with an LDAP search using the group search filter (specified above).

    These values are written in the LCMInstallDir\LCM-Server\lcm.properties file. You can use a text editor to change values if you make a mistake during the installation, or want to change values later. The server needs to be restarted after the values in the lcm.properties file have been changed.

  5. Click Next. The Service Account window is displayed prompting you to select whether to create a new service account user or to use an already existing user.
  6. Perform one of the following options:
    • Click Yes to create a new service account user, go to step a.

    • Click No to select an existing user, go to step b.

    1. Provide the following information:
      Service account user:

      Enter the name of the user.

      Service account password:

      Enter the password for the user.

      Retype password:

      Retype the password.

    2. Provide the following information:
      Service account user:

      Select a local administrator user in the list.

      Service account password:

      Enter the password for the local administrator user.

  7. Click Next. The Installation Summary window is displayed.
  8. Click Next. The Installing LifeCycle Manager Server window is displayed and installation is initialized.
  9. When the task is finished, click Finish. The Windows service LCM-Server is automatically started. You can view the service in Computer Management > Services and Applications > Services.