Configuring dynamic and nested group support for the SunONE or iPlanet Directory Server

Configure dynamic and nested groups to simplify WebSphere® Application Server security management and increase its effectiveness and flexibility.

Before you begin

To use dynamic and nested groups with WebSphere Application Server security, you must be running WebSphere Application Server Version 6.1 or later. Refer to Dynamic groups and nested group support for LDAP for more information on this topic.

Procedure

  1. In the administrative console for WebSphere Application Server, click Security > Global security.
  2. Under User account repository, click the Available realm definitions drop-down list, select Standalone LDAP registry, and click Configure.
  3. Select SunONE for the type of LDAP server.
  4. Select the Ignore case for authorization option.
  5. Under Additional Properties, click Advanced Lightweight Directory Access Protocol (LDAP) user registry settings.
  6. Change the Group filter setting to &(cn=%v)(objectclass=ldapsubentry)).
  7. Change the Group member ID map setting to nsRole:nsRole.
  8. Click Apply or OK to validate the changes.



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms of Use | Feedback

Last updatedLast updated: Sep 19, 2011 5:16:49 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=matt&product=was-base-iseries&topic=tsecdynamicnestedgroupsun
File name: tsec_dynamicnestedgroupsun.html