Follow these steps to disable nested group searches when logging on to WebSphere Application Server.
If you have several nested groups, to improve performance you might not want to retrieve all of the nested groups during login.
wsadmin>$AdminTask configureAdminWIMUserRegistry {-customProperties {"com.ibm.ws.wim.registry.grouplevel=1"} }
The
custom property, com.ibm.ws.wim.registry.grouplevel is
added to the user registry object. The value of the group level is
set to 1, which retrieves only first level groups. If you do not set
the value of the group level, the default value of 0 is used, which
retrieves all nested groups.<userRegistries xmi:type="security:WIMUserRegistry"
xmi:id="WIMUserRegistry_1" serverId="" serverPassword="{xor}"
realm="defaultWIMFileBasedRealm" ignoreCase="true" useRegistryServerId="false"
primaryAdminId="uid=wasadmin,o=default organization"
registryClassName="com.ibm.ws.wim.registry.WIMUserRegistry">
<properties xmi:id="VMMURProperty_1" name="com.ibm.ws.wim.registry.grouplevel" value="1"/>
</userRegistries>