How to verify LDAP parameters for Jazz Team server configuration

Technote (FAQ)


Question

How can I tell if the given LDAP parameters are accurate to complete the Jazz Team server LDAP configuration? This technote provides instructions of how to use a third party LDAP browser to perform these types of checking.

Cause

The Jazz Team Server relies on the user registry to provide basic information about users and groups. When configuring the Jazz Team server to use a LDAP server to act as the user registry, you will be asked to provide a list of parameters (properties) such as Base User DN, Base Group DN, Group Name property and Group Member property, to complete the setup.

Usually you will collect these parameters from your LDAP Administrator. In the case that you are not sure if the value of these given parameters are accurate, or you are getting errors/warnings indicating some of the value is incorrect during the setup, you can use a third party LDAP browser to verify their accuracy.


Answer

This technote is based on third party software named: Softerra LDAP Browser. You can always choose a different LDAP browser to achieve the same results.

Disclaimer

IBM is not providing program services of any kind for this program. Making use of the Information provided in this technote is done at the user's own risk.

  1. Download Softerra LDAP Browser from the following download site:

    http://www.softerra.com/download.htm

  2. Follow the instruction to install it to one of your computer
  3. Launch Softerra and verify the given value of the set of parameters following the steps below:
    1. To verify the LDAP Registry Location, User Name, Password, Base User DN, you can create a profile for your LDAP server follow the instruction under the help menu of Softerra, input the above parameters in the profile creation wizard accordingly as the following:

      Host: Extract the host name from LDAP Registry Location parameter, for example: ldapserver.mycompany.com
      Port: Extract the port number from LDAP Registry Location parameter, for example 389
      Base DN: key in the value of the Base User DN parameter
      User DN: User Name
      Password: Password




      Save the profile and connect to your LDAP server by double clicking on the profile. If you can connect, that means the value of the above giving LDAP parameters are accurate. Otherwise, base on the errors you get, contact your LDAP Administrator to follow up.




    2. To verify value of the User Property Names Mapping property.

      The default value for this property is: userId=uid,name=cn,emailAddress=mail. That assumes your LDAP user record has the attributes of uid, cn and mail representing userID, common name and emailAddress. To verify these attributes exist in your LDAP user record, follow the steps below to search for your own LDAP ID, then examine all the attributes there to ensure the above given attributes exist.
    3. From Softerra LDAP browser, click on Tools, Directory Search




    4. Type in the value of the Base User DN property into the Search DN box
    5. Replace: (objectclass=*) with (cn=your common name) in the Filter box
    6. Click on the Search button
    7. It should find your LDAP user record, double click to open it, and you should see all the attributes within the record. Verify the above attributes exist.






  4. Verify the value of the Base Group DN property. To verify the value of the Base Group DN property, follow the steps below to search for your LDAP group that is mapped to any of the Jazz role:
    1. From Softerra LDAP browser, click on Tools, Directory Search
    2. Type in the value of Base Group DN in the Search DN box
    3. Replace (objectclass=*) with (cn=your ldap group) in the Filter box
    4. If the group can be found, that means the Base Group DN has correct value



  5. Verify the value of the Group Name property. The default value of Group Name is cn. That assumes your LDAP group record has an attribute named cn represent the name of the group. To verify this attribute exist, follow the steps in step 4 above to search for your LDAP group, open it to verify the cn attribute exist.



  6. Verify Group Member property. The default value of Group Member property is members. That assumes your LDAP group record has an attribute named members representing member of the group. To verify this attribute exist, follow the steps in session C above to search for your LDAP group, open it to verify the members attribute exist.



    Click here for complete instruction of configuring LDAP to work with Jazz Team server

    For more information about Softerra Tool, check out: http://www.ldapbrowser.com/

    For other alternative LDAP browser tools, check out the following:

    JExplorer - http://www.jxplorer.org/

    Apache Directory Studio: http://directory.apache.org/studio/

Leverage the Jazz Community

The Jazz based products have an active community that can provide you with additional resources. Browse and contribute to the User forums, contribute to the Team Blog and review the Team wiki.
Refer to technote 1319600 for details and links.


Cross reference information
Segment Product Component Platform Version Edition
Software Development Rational Project Conductor Team Server AIX, Linux, Solaris, Windows 1.0
Software Development Rational Quality Manager Team Server AIX 1.0, 1.0.1, 2.0, 2.0.1, 3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6, 4.0, 4.0.0.1, 4.0.0.2, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5
Software Development Rational Requirements Composer Team Server 1.0, 2.0, 3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6, 4.0, 4.0.0.1, 4.0.0.2, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5

Rate this page:

(0 users)Average rating

Document information


More support for:

Rational Team Concert
Team Server

Software version:

2.0, 2.0.0.1, 2.0.0.2, 3.0, 3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6, 4.0, 4.0.0.1, 4.0.0.2, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5

Operating system(s):

AIX, Linux, Solaris, Windows

Reference #:

1445366

Modified date:

2014-01-27

Translate my page

Machine Translation

Content navigation