Managing LDAP users in the console

To create or manage users in the console that are defined in your LDAP repository, in the WebSphere Application Server administrative console specify the supported entity types.

1. Log in to the Dashboard Application Services Hub.
2. In the navigation pane, click Settings > Websphere Admin Console and click Launch Websphere Admin Console.
3. In the WebSphere Application Server administrative console, select Security > Global security.
4. From the Available realm definitions list, select Federated repositories and click Configure.
5. In the Additional Properties area, click Supported entity types, to view a list of predefined entity types.
6. Click the name of a predefined entity type to change its configuration.
7. In the Base entry for the default parent field, provide the distinguished name of a base entry in the repository. This entry determines the default location in the repository where entities of this type are placed on write operations by user and group management.
8. In the Relative Distinguished Name properties field, provide the relative distinguished name (RDN) properties for the specified entity type.

   Possible values are cn for Group, uid or cn for PersonAccount, and o, ou, dc, and cn for OrgContainer.

   Delimit multiple properties for the OrgContainer entity with a semicolon (;).

9. Click OK to return to the Supported entity types page.
10. In the Messages area of the Global security page, click the Save link and log out of the WebSphere Application Server console.
11. For the changes to take effect, stop, and restart the Jazz™ for Service Management application server. In a load balanced environment, you must stop and restart each Jazz for Service Management application server instance.
12. Stop and restart the server.