Configure the LDAP client certificate filter.
Procedure
- Using the WebSphere® Application
Server administrative console, click .
- In the User account repository section,
select Standalone LDAP registry from the Available
realm definitions list and click Configure.
- In the Additional Properties section,
click Advanced Lightweight Directory Access Protocol (LDAP)
user registry settings.
- Select CERTIFICATE_FILTER from the Certificate
map mode list.
- Enter an LDAP filter string in the Certificate
filter text field. The filter is used to map attributes
in the client certificate to entries in the LDAP directory. For example,
the following filter maps the SubjectCN field in
the client certificate to the uid field in the LDAP
directory: uid=${SubjectCN}.
- Click Apply and then click Save.
- Repeat steps 1-6 to configure additional LDAP search filters,
as needed. See the WebSphere Application
Server Version 6.1 Information Center for details.