IBM Support

Users from non-default File repository are not listed for "Run As" roles for Web Application

Technote (troubleshooting)


When a new File repository is added with a non-empty value for the "baseDirectory" attribute and one tries to add the users in the repository to the "Run As" roles for a Web Application, the users are not found.

Diagnosing the problem

After adding a new File repository, users are not found

Resolving the problem

When adding a new File repository, the users in which will be used to set up the "Run As" roles for a Web Application, one should use the wsadmin scripting console instead of the WAS Administrative Console.
The Administrative Console does not allow one to create a File Repository with an empty "baseDirectory" attribute.

Following wsadmin commands should be executed :

$AdminTask createIdMgrFileRepository { -id <<RegistryId>> -messageDigestAlgorithm SHA-1 -fileName <<filename>> } The file would be an xml file and the name can be anything other than fileRegistry.xml.

$AdminTask addIdMgrRepositoryBaseEntry {-id <<RegistryId>> -name <<base entry>> }

$AdminTask addIdMgrRealmBaseEntry {-name <<realmName>> -baseEntry <<base entry>> }

$AdminConfig save

After running these commands, one should exit the wsadmin scripting console, stop and server restart is must to have changes to in effect.

Document information

More support for: WebSphere Application Server
Virtual Member Manager (VMM)

Software version: 6.1, 7.0, 8.0, 8.5

Operating system(s): AIX, HP-UX, IBM i, Linux, Solaris, Windows, z/OS

Software edition: Base, Express, Network Deployment

Reference #: 1589039

Modified date: 2015-08-07