Product DocsMenu

Configuring an EMC Documentum Security Provider

When you choose to index permissions associated with EMC Documentum items, the Coveo connector needs a security provider. When permissions are indexed, in Coveo search results, a user searching for EMC Documentum Server content only sees the content to which he has access in EMC Documentum.

Note: You can get familiar with how Coveo components deal with permissions on documents both at indexing and query time (see Security) .

To configure a Documentum security provider

  1. On the Coveo server, access the Administration Tool (see Opening the Administration Tool).

  2. Select Configuration > Security.

  3. In the navigation panel on the left, click Security Providers.

  4. In the Security Providers page, click Add to create a new security provider.

  5. In the Modify Security Provider page:

    1. Configure the following required parameters:


      Choose a significant name to identify the security provider.

      Example: Documentum7 Security Provider

      Security Provider Type

      Select Documentum (x86).

      User Identity

      Select the Documentum user identity that you created previously (see EMC Documentum Connector Deployment Overview) .

      Active Directory Security Provider

      When the user names in your Documentum instance match the usernames in your Active Directory (AD) and you want to allow AD users to see Documentum items in search results, in the drop-down list, select Active Directory to allow this Documentum security provider to map Documentum permissions to AD users (see Configuring an Active Directory Security Provider).

      Note: If your Documentum and AD usernames do not match, contact Coveo Support for assistance with other methods to map users or use the ForceADDomain hidden parameter.

    2. (Optional) Click Add Parameter and then use the following hidden parameter when you want to match your Documentum usernames to their Windows usernames:

      ForceADDomain CES 7.0.5031+ (March 2013)

      Enter a value to overwrite the domain value when CES expands users to Windows users. The default value is null.

      Example: When the ForceADDomain parameter value is MyCompany and you expand the Documentum user John, the security provider will expand this user to the AD user MyCompany\John.

    3. Leave the Allow Complex Identities cleared as it does not apply to this type of security provider.

    4. Click Apply Changes.

What's Next?

Configure and index a Documentum source (see Configuring and Indexing an EMC Documentum Source).

People who viewed this topic also viewed