To create or manage users in the console that are defined in your LDAP repository, in the WebSphere Application Server administrative console specify
the supported entity types.
About this task
To create or manage
LDAP users
in the
console:
Procedure
- Log in to the Dashboard Application Services Hub.
- In the navigation pane, click and
click Launch Websphere Admin Console.
- In the WebSphere Application Server administrative
console, select .
- From the Available realm definitions list,
select Federated repositories and click Configure.
- In the Additional Properties area, click Supported
entity types, to view a list of predefined entity types.
- Click the name of a predefined entity type to change its
configuration.
- In the Base entry for the default parent field,
provide the distinguished name of a base entry in the repository. This entry determines the default location in the repository
where entities of this type are placed on write operations by user
and group management.
- In the Relative Distinguished Name properties field,
provide the relative distinguished name (RDN) properties for the specified
entity type.
Possible values are cn for Group, uid or cn for PersonAccount,
and o, ou, dc,
and cn for OrgContainer.
Delimit
multiple properties for the OrgContainer entity
with a semicolon (;).
- Click OK to return to the Supported
entity types page.
- In the Messages area of the Global security page,
click the Save link and log out of the WebSphere Application Server console.
- For the changes to take effect, stop, and restart the Jazz™ for
Service Management application server. In a load balanced environment, you must stop
and restart each Jazz for
Service Management application server instance.
- Stop and restart the server.
Results
You can now manage your
LDAP repository
users in the
console through the menu items.
Note: When you add a new user, you should
check that the user ID you specify does not already exist in any of
the user repositories to avoid difficulties when the new user attempts
to log in.
Restriction: You cannot currently update
user IDs through the page that have been
created in Microsoft Active Directory repositories.