Topic
3 replies Latest Post - ‏2013-02-04T08:42:16Z by mkluett
mkluett
mkluett
47 Posts
ACCEPTED ANSWER

Pinned topic Websphere error when using LDAP

‏2013-01-31T09:42:53Z |
Hello
in our environemtn we are using more then 1 LDAP server. Each LDAP server (type SUNONE) hosts specific users, so all users exist just once and are unique.
The configuration is of more then 1 LDAP repository is possible and they can be added to the fedarated repository successfully. And furthermore it is possible to search and address the users when using DASH, user roles.
BUT, when running "users and groups --> Manage users" in Websphere I get an error (see attached file) and the window for searching/creating users doesn't open.

We are using Websphere 8.5.0.0
Build Number: gm1218.01
Build Date: 5/1/12

Regards
Updated on 2013-02-04T08:42:16Z at 2013-02-04T08:42:16Z by mkluett
  • PaulCarroll
    PaulCarroll
    3 Posts
    ACCEPTED ANSWER

    Re: Websphere error when using LDAP

    ‏2013-02-01T21:45:26Z  in response to mkluett
    WAS's user repository search uses a timeout to prevent searches from taking too long, as described in this older WAS APAR: http://www-01.ibm.com/support/docview.wss?uid=swg1PK71724. The WAS Manage Users portlet is set to automatically query all users when loaded (verified in WAS 8.0 and 8.5.0.1), and with multiple LDAPs or with lots of users that could take longer than the default timeout. In that older APAR's case, the user management portlet was essentially displaying an empty result when the time limit was exceeded, rather than informing the user that timeout occurred. Now you are getting the timeout error, which would be appropriate if dismissing the error allowed you to continue and search with different search terms. Is this workaround possible?

    We are also reaching out to WAS support, and will contact you directly with details if an APAR is required.
    • PaulCarroll
      PaulCarroll
      3 Posts
      ACCEPTED ANSWER

      Re: Websphere error when using LDAP

      ‏2013-02-01T22:12:47Z  in response to PaulCarroll
      Michael, could you please check the file profiles\<profile>\config\cells\<cellname>\wim\config\wimconfig.xml and confirm that the 'searchTimeOut' value is the default '600000'?
  • mkluett
    mkluett
    47 Posts
    ACCEPTED ANSWER

    Re: Websphere error when using LDAP

    ‏2013-02-04T08:42:16Z  in response to mkluett
    Hello
    yes, the default "searchTimOut" value is 600000