FileNet P8 Platform, Version 5.2.1            

Overview (IBM Tivoli Directory Server)

One instance of IBM Tivoli Directory Server can have multiple data naming contexts. Because each data naming context is mapped to a Content Platform Engine realm, one IBM Tivoli Directory Server can be mapped to multiple Content Platform Engine realms.

For each realm, you need to create an application server authentication provider and a DirectoryConfigurationIBM object, so that there is a one-to-one relationship between Realm object and authentication provider, and also a one-to-one relationship between Realm object and DirectoryConfigurationIBM object.

For each authentication provider, FileNet® P8 extracts the realm name from the specified User Base DN value by comparing it with each data naming context. For example, if this authentication provider's user base DN is “ou=people,o=isp”, and if there are two data naming contexts: “o=isp” and “dc=filenet,dc=com”, then you know the realm name for this authentication provider is “o=isp”.

Important: It is a best practice to configure SSL between your application server that hosts Content Platform Engine and your directory server. This will include making changes in the application server to the authentication provider's DirectoryConfigurationIBM object that was created while running Configuration Manager. Consult your application server's documentation for instructions.


Last updated: October 2015
p8psd012.htm

© Copyright IBM Corporation 2015.