WebSphere Application Server Network Deployment, Version 6.0.x   Operating Systems: AIX, HP-UX, Linux, Solaris, Windows
             [TIP: Focusing the table of contents and search results]

Configuring dynamic and nested group support for the SunONE or iPlanet Directory Server

Configure dynamic and nested groups to simplify WebSphere Application Server security management and increase its effectiveness and flexibility.

Before you begin

To use dynamic and nested groups with WebSphere Application Server security, you must be running WebSphere Application Server Version 5.1.1 or later. Refer to Dynamic groups and nested group support for more information on this topic.

Procedure

  1. In the administrative console for WebSphere Application Server, click Security > Global security.
  2. Under User registries, click LDAP.
  3. Select SunONE for the type of LDAP server.
  4. Select the Ignore case for authorization option.
  5. Under Additional Properties, click Advanced Lightweight Directory Access Protocol (LDAP) user registry settings.
  6. Change the Group filter setting to &(cn=%v)(objectclass=ldapsubentry)).
  7. Change the Group member ID map setting to nsRole:nsRole.
  8. Click Apply or OK to validate the changes.



Related concepts
Lightweight Directory Access Protocol user registries
Related tasks
Locating a user’s group memberships in Lightweight Directory Access Protocol
Configuring dynamic and nested group support for the IBM Tivoli Directory Server
Using specific directory servers as the LDAP server
Configuring Lightweight Directory Access Protocol user registries
Task topic    

Terms of Use | Feedback

Last updated: Mar 8, 2007 8:14:28 PM CST
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/index.jsp?topic=/com.ibm.websphere.nd.doc/info/ae/ae/tsec_dynamicnestedgroupsun.html

© Copyright IBM Corporation 2005, 2006. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)