25.3 Adding additional identities

You can use the Manage Additional Identities workflow to add new identities (for example, accounts from other areas of the LDAP directory) and certificates that can then be included on the user's smart card.

If you have specified any additional identities for a user, when you issue a device to that user, new certificates based on the specified policies are requested from the appropriate certificate authority and written to the device.

To select additional identities:

  1. From the People category, select Manage Additional Identities

    You can also launch this workflow from the View Person screen in the MyID Operator Client; this launches the workflow with the person already selected. See the Managing additional identities section in the MyID Operator Client guide for details.

  2. Use the Find Person stage to search for the user for whom you want to add additional identities.

  3. Click the Additional Identities tab.

    You can select up to ten additional identities for the user.

  4. For each additional identity:

    1. Click Add.

      The available entries in the directory are restricted to the Organizational Unit of the operator and below.

    2. Use the LDAP browser to select the directory account for the user.
    3. Select the required branch of the LDAP directory.

    4. Select the initial letter of the person, click All to view all the people in the group, or filter the list:

      1. Click the Advanced button.

      2. Type the appropriate characters in the Filter field followed by an asterisk (*).

        For example, to find only people with first names starting with Jo, type Jo* in the Filter field.

      3. Click Search.
    5. Select the appropriate person.

    6. Click Select.

      If you have more than one certificate authority set up for additional identity certificate policies, you must select which one to use.

      If you have only one certificate authority set up for additional identity certificate policies, MyID proceeds directly to the Select Policy dialog.

    7. Select the additional identity policy from the CA you want to use, then click OK.
  5. Click Save.