If you require more flexibility than create-initial-config provides, you can manually configure the SCIM subsystem and its connectivity to the LDAP user store. However, if you have not done this before, first use create-initial-config to generate an example configuration and then customize that configuration.
This task shows how to define two backend LDAP servers and a failover load-balancing
algorithm. Also, it shows how to connect the load-balancing algorithm to an existing LDAP
store adapter named UserStoreAdapter
.
Note: The example is simplified and does not discuss SSL
connection management. When using SSL to connect to an LDAP external server, you must
configure PingAuthorize Server to trust the server
certificate presented by the LDAP external server using a trust manager provider.