Skip to main content

Software  >  Workplace  >  

Errors on Learning Portal Security page in Workplace Information Center
 Technote (troubleshooting)
 
 
Problem
There are errors on the IBM® Workplace™ Collaborative Learning 2.7 Portal Security page in the Workplace Information Center that are preventing a successful deployment. This document identifies the errors and provides corrections.
 
Resolving the problem
This issue was reported to Quality Engineering as SPR# PRAV7A2JYK. You can work around this issue by editing specific files as follows:
Files to be edited:
-- ConfigEngineInstallLocation (usually found at .../IBM/WebSphere/ConfigEngine)
-- was_profile_root (usually found at .../IBM/WebSphere/profiles/wp_profile)

Learning Security

-- Although they are usually the same, the Learning administrator ID might be different from the Portal administrator ID.

-- The Learning admin ID should be the same for both Learning components.

-- This is an operation that requires password properties to be passed to the configuration framework. Refer to password considerations for your deployment.

Learning Portal Security

1. Edit the ConfigEngineInstallLocation/properties/wkplc_comp.properties file and change the following values. Note the five distinct LDAP groups MUST be groups that already exist in LDAP.
  • learningportal.lmmserver_admin_name=<full_distinguished_name_of_LearningAdminId_LDAP_user>
  • learningportal.admin_group_name=<short_name_of_ldap_admin_group_name>
  • learningportal.instructor_group_name=<short_name_of_ldap_instructor_group_name>
  • learningportal.managers_group_name=<short_name_of_ldap_managers_group_name>
  • learningportal.coursemanagers_group_name=<short_name_of_ldap_coursemanagers_group_name>
  • learningportal.HRmanagers_group_name=<short_name_of_ldap_HRmanagers_group_name>

2. Open a command/shell/QSH Window and change to the ConfigEngineInstallLocation directory.

3. Run the appropriate command as follows:
    • On Windows: ConfigEngine action-update-settings-learningportal -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>
    • On Unix: ./ConfigEngine.sh action-update-settings-learningportal -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>
    • On iSeries™: $configengine.sh -profileName portal_profile action-update-settings-learningportal -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>

Learning Server Security

1. Edit the ConfigEngineInstallLocation/properties/wkplc_comp.properties file and change the following values. Note the five distinct LDAP groups MUST be groups that already exist in LDAP.
  • learningserver.lmmserver_admin_name=<short_name_of_LearningAdminId_LDAP_user>
  • learningserver.RunAsRole.UserName=<short_name_of_LearningAdminId_LDAP_user>
  • learningserver.RunAsRole.Password=<password_of_LearningAdminId_LDAP_user>
  • learningserver.admin_group_name=<full_distinguished_name_of_ldap_admin_group_name>
  • learningserver.instructor_group_name=<full_distinguished_name_of_ldap_instructor_group_name>
  • learningserver.managers_group_name=<full_distinguished_name_of_ldap_managers_group_name>
  • learningserver.HRmanagers_group_name=<full_distinguished_name_of_ldap_HRmanagers_group_name>
  • learningserver.coursemanagers_group_name=<full_distinguished_name_of_ldap_coursemanagers_group_name>

2. Open a command/shell/QSH Window and change to the ConfigEngineInstallLocation directory

3. Run the appropriate command
    • On Windows: ConfigEngine action-update-settings-learningserver -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>
    • On Unix: ./ConfigEngine.sh action-update-settings-learningserver -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>
    • On iSeries™: $configengine.sh -profileName portal_profile action-update-settings-learningserver -DWasUserid=<was_admin_id> -DWasPassword=<was_admin_password> -DPortalAdminId=<portal_admin_id> -DPortalAdminPwd=<portal_admin_password>
Learning Server user authentication common name unique ID
Some configurations authenticate users by their common name (cn) attribute and not by their UID attribute which is the default for the Learning Server. The system administrator may change this behavior by editing the Learning Server's settings.xml file, usually found at the following location:
    was_profile_root\installedApps\<server>\LearningServer.ear\lmmWeb.war\WEB-INF\classes\settings.xml

1. The following lines inside the <commonschema> section of the <ldap> section in each file should be edited to replace the UID with CN to get the Learning Server to authenticate against the "cn" instead of the "uid" attribute value.
    Original
      <ldap>

      <commonschema>

      <mapping name="LdapId" wmmAttribute="uid"/>

      <mapping name="UserId" wmmAttribute="uid"/>

      </commonschema>

      <ldap>

    Revised
      <ldap>

      <commonschema>

      <mapping name="LdapId" wmmAttribute="cn"/>

      <mapping name="UserId" wmmAttribute="cn"/>

      <commonschema>

      <ldap>
2. Restart the server after make the above changes.

3. Restart WebSphere_Portal.
 
 
 

Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.
Rate this page
Please take a moment to complete this form to help us better serve you.
This material provides me with the information I need.




This material is clear and easy to understand.




Did the information help you to achieve your goal?
What updates, improvements, or related information would you like to see in this document?
Your response will be used to improve our document content. Requests for assistance, if applicable, should be submitted through your normal support channel as we cannot respond from this site.
Input the verification number to submit feedback:
Document information
 Product categories:
 Software
 Organizational Productivity, Portals & Collaboration
 Learning Software
 Workplace Collaborative Learning
 Operating system(s):
  AIX, Linux, Solaris, Windows
 Software version:
  2.7
 Reference #:
  1291702
 IBM Group:
 Software Group
 Modified date:
 2008-05-06

Translate My Page
 
 

Rate this page

Help us improve this page. Your response will be used to improve our document content. Requests for assistance, if applicable, should be submitted through your normal support channel as we cannot respond from this site.