Follow these steps to disable nested group searches when logging on to WebSphere Application Server.
If you have several nested groups, to improve performance you might not want to retrieve all of the nested groups during login.
wsadmin>$AdminTask configureAdminWIMUserRegistry {-customProperties {"com.ibm.ws.wim.registry.grouplevel=1"} }The custom property, com.ibm.ws.wim.registry.grouplevel is added to the user registry object. The value of the group level is set to 1, which retrieves only first level groups. If you do not set the value of the group level, the default value of 0 is used, which retrieves all nested groups.
<userRegistries xmi:type="security:WIMUserRegistry" xmi:id="WIMUserRegistry_1" serverId="" serverPassword="{xor}" realm="defaultWIMFileBasedRealm" ignoreCase="true" useRegistryServerId="false" primaryAdminId="uid=wasadmin,o=default organization" registryClassName="com.ibm.ws.wim.registry.WIMUserRegistry"> <properties xmi:id="VMMURProperty_1" name="com.ibm.ws.wim.registry.grouplevel" value="1"/> </userRegistries>