Question & Answer
Question
How do you configure WebSphere Portal to allow users to log in with any of several login properties when security is enabled for federated LDAP?
Answer
When configured for federated LDAP, WebSphere Portal relies on Virtual Member Manager (VMM) for authentication. Configure VMM to support multiple login properties by referencing the following procedure.
Note: Login properties' values should be unique across all repositories participating in a realm. Work with your LDAP administrator to ensure this requirement is met.
1. Back up <profile>/config/cells/<cell name>/wim/config/wimconfig.xml
2. Edit wimconfig.xml (on dmgr in cluster) so that each login property is defined:
<config:repositories xsi:type="config:LdapRepositoryType" ...
id="repositoryid" ...>
<config:loginProperties>uid</config:loginProperties>
<config:loginProperties>ibm-primaryEmail</config:loginProperties>
Notes:
a. Login properties are defined per-repository.
b. Login properties are VMM properties. If VMM properties map to a different name in LDAP, use the wp-query-attribute-config task to determine these mappings.
3. If clustered, synchronize the changes to all nodes.
4. Restart WebSphere Portal. If clustered, also restart the node agent and the deployment manager.
Related Information
[{"Product":{"code":"SSHRKX","label":"WebSphere Portal"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Security","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"6.1","Edition":"Enable;Extend;Server;Express","Line of Business":{"code":"LOB31","label":"WCE Watson Marketing and Commerce"}}]
Was this topic helpful?
Document Information
Modified date:
03 December 2021
UID
swg21426906