Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Code Block
mkdir /var/lib/ldap/evolveum-net
chown openldap:openldap /var/lib/ldap/evolveum-net
slapdconf create-suffix dc=evolveum,dc=net --dbDir=/var/lib/ldap/evolveum-net --rootPassword secret
slapdconf add-schema -f samples/evolveum/midpoint.schema
ldapadd -H ldapi:/// -D "cn=admin,dc=evolveum,dc=net" -w secret -f samples/evolveum/evolveum-net.ldif
slapdconf set-suffix-acis dc=evolveum,dc=net < samples/evolveum/evolveum-net.aci

 

Users

usernamepassworddescription
administrator5ecr3tsuperuser
semancikqwe123manager of serveral orgs
role approver
   
   

 

Job Roles

There are several job roles that are automatically assigned: CEO, Software Developer, IDM Engineers, etc. These roles are automatically assigned in the user template based on the value of title property. This property is inbound mapped from the HR job attribute.

...

There is a simple role catalog with couple of applications. The roles in "Jira" application also have corresponding LDAP groups. The devel, admin ans write roles are subject to approval. The reader roles do not have approval. The aditor roles are not requestable at all.

roleapprover 
Jira Administratorsemancik