About ActivID CMS Directories

Prerequisites: To add a directory and configure its settings:

Your directory must be installed and running.
You must have the required credentials to access it.

ActivID CMS uses directories to store and retrieve information about users (such as their device serial numbers). ActivID CMS can be deployed with populated or non-populated directories.

Note:

ActivID CMS relies on the UserID attribute to look up users. This attribute is also used in the certificates issued on devices.
It is recommended to choose an attribute that does not contain the last names of users in order to prevent any complications in case there is a legal name change.
Starting with version 5.13, you can configure ActivID CMS to work with more than one type of directory. In this case, User Attributes may need to differ depending on the type of directory where the user is stored. For details, see Setting Parameters for User Attributes.

Important: Currently, ActivID CMS offers the capability to issue and manage certificates from the Microsoft CA when CMS is configured with 2 directories (1 Microsoft Active Directory and 1 OpenLDAP).

Once a directory is added, the ActivID CMS user’s UserID is mapped to an attribute used to identify the user in ActivID CMS. For details about the default attributes for each type of directory, see Procedure 1: Adding a Directory.

Important: The UserID mapping must be consistent across all directories having the same type. It cannot be changed after its initial creation. Directories with different types can have different attribute mappings.