Unable to retrieve groups from domino ldap registry
 Technote (troubleshooting)
 
Problem(Abstract)
No groups are retrieved when trying to retrieve groups on WebSphere® Application Server admin console:

Enterprise Applications > DefaultApplication.ear > Map security roles to groups > Look up groups

The LDAP registry is configured with groups so it should retrieve the valid groups and show that information on the admin console. However, no groups are returned.

The following is logged in trace.log with security traces enabled:
LdapRegistryI 3 Number of groups returned = 0
 
Cause
The reason for zero groups being returned was because baseDN value specified in WebSphere security setting was incorrectly set. The Base DN indicates the starting point for searches in this LDAP directory server. In this particular case the groups were defined at a higher level of the specified baseDN and as a result nothing was returned.
 
Resolving the problem
Modify the value of baseDN so it is above the defined groups.
 
 
Cross Reference information
Segment Product Component Platform Version Edition
Application Servers Runtimes for Java Technology Java SDK
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > Security
Operating system(s): Windows
Software version: 6.1
Software edition:
Reference #: 1239388
IBM Group: Software Group
Modified date: Jun 8, 2006