Active Directory

 

---

WebSphere Portal has been tested to support Active Directory. See the WebSphere Portal requirements for supported versions. perform special configuration steps to enable Active Directory to work with WebSphere Portal. Use the following topics as a guide to configuring your directory server.

• Create a new user as the portal administrator

• Active Directory and SSL

• Example of the Active Directory structure

 

Before you begin

Active Directory should be installed and configured before you install WebSphere Portal.

 

Create a new user as the portal administrator

Use the following steps as a guide if the portal administrative user does not exist in the directory.

1. Use the Windows administrative tools to create a new user to be the first portal administrative user.

2. Set the password for the new portal administrative user you created.

3. Activate the portal administrative user account using the Windows administrative tools.

4. Use the installation program to install WebSphere Portal. Enter the attributes specific to your Active Directory settings.

 

Active Directory and SSL

If you set up WebSphere Portal with Active Directory as the user registry, configure Active Directory with SSL enabled. If you use Active Directory without SSL enabled, you cannot set passwords in sign up or user creation correctly. You would need to manually reset passwords on Active Directory. However, it is recommended that you first get LDAP (non-SSL) successfully working before setting up LDAP over SSL. This allows you to verify that the directory is responding to LDAP requests before setting it up for SSL.

 

Example of the Active Directory structure

The following schema is an example for Active Directory and is referenced throughout the documentation for consistency. The example below is designed to help you determine the appropriate values when configuring WebSphere Portal to work with your specific directory layout. The values shown match the default values for this LDAP. If you have an existing schema that varies from this example, replace the example values with your values. For instance, cn is shown as the group prefix; replace cn with the group prefix for your schema.

LDAP suffix="dc=yourco,dc=com" user prefix="cn" user suffix="cn=users" group prefix="cn" group suffix="cn=users" Portal administrator DN="cn=wpsadmin,cn=users,dc=yourco,dc=com" Portal administrator group="cn=wpsadmins,cn=users,dc=yourco,dc=com"

 

Next steps

You have completed this step. Continue to the next step by choosing the following topic:

• LDAP user registry
• Plan
• Install Active Directory
• Set up Active Directory over SSL
• Configure for Active Directory without realm support
• Configure for Active Directory with realm support
• Verifying

• Set up LDAP over SSL to Active Directory

 

WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.

 

IBM is a trademark of the IBM Corporation in the United States, other countries, or both.