WebSphere Application Server Network Deployment, Version 6.0.x     Operating Systems: AIX, HP-UX, Linux, Solaris, Windows

Dynamic groups and nested group support for the IBM Tivoli Directory Server

Dynamic and nested groups simplify WebSphere Application Server security management and increase its effectiveness and flexibility.

WebSphere Application Server supports all Lightweight Directory Access Protocol (LDAP) dynamic and nested groups when using IBM Tivoli Directory Server. This function is enabled by default by taking advantage of a new feature in IBM Tivoli Directory Server. IBM Tivoli Directory Server uses the ibm-allGroups forward reference group attribute that automatically calculates all the group memberships including dynamic and recursive memberships for a user. Security directly locates a user group membership from a user object rather than indirectly search all the groups to match group members.

For more information, see Configuring dynamic and nested group support for the IBM Tivoli Directory Server.




Related concepts
Dynamic and nested group support for the SunONE or iPlanet Directory Server
Locating a user's group memberships in Lightweight Directory Access Protocol
Lightweight Directory Access Protocol user registries
Dynamic groups and nested group support

Related tasks
Configuring dynamic and nested group support for the SunONE or iPlanet Directory Server
Configuring dynamic and nested group support for the IBM Tivoli Directory Server
Using specific directory servers as the LDAP server

Concept topic    

Terms of Use | Feedback

Last updated: Dec 11, 2005 4:07:15 PM CST
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/index.jsp?topic=/com.ibm.websphere.nd.doc/info/ae/ae/csec_dynamicnestedgroupibm.html

© Copyright IBM Corporation 2002, 2005. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)