security_domino.properties
######### ### ### WebSphere Portal 5.1 parent configuration file for: ### ### Configuring security with Lotus Domino Directory ### ### Do NOT enclose any value in quotes! ### Windows paths must use '/', not '\'. ### Windows long paths are OK. ### Properties are immutable. Once set, they cannot be overriden. ### ########## ########## ### ### How to use this file: ### ### 1. Edit this file to match your environment ### ### 2. Start appserver "server1" ### ### Stop appserver "WebSphere_Portal" ### ### 3. Change into the <wp_root>/config directory ### ### 4. Import the contents of this file into wpconfig.properties: ### ### on Windows: ### ### WPSconfig -DparentProperties="<full_path_to_this_file>" -DSaveParentProperties=true ### ### on other platforms ### ### ./WPSconfig.sh -DparentProperties=<full_path_to_this_file> -DSaveParentProperties=true ### ### 5. Test connections to directory: ### ### on Windows: ### ### WPSconfig validate-ldap ### ### on other platforms ### ### ./WPSconfig.sh validate-ldap ### ### 6a. If WAS security is enabled, run the following task: ### ### on Windows: ### ### WPSconfig secure-portal-ldap ### ### on other platforms ### ### ./WPSconfig.sh secure-portal-ldap ### ### 6b. or if WAS security is NOT enabled, run the following task: ### ### on Windows: ### ### WPSconfig enable-security-ldap ### ### on other platforms ### ### ./WPSconfig.sh enable-security-ldap ### ### 7. Stop appserver "server1" ### Start appserver "server1" ### Start appserver "WebSphere_Portal" ### ### WAS Properties - BEGIN ########## ### The user ID for WAS security authentication WasUserid=cn=wpsbind,o=yourco.com ### The password for WAS security authentication (LDAP and CUR) WasPassword= ### The name of the WebSphere Portal host ### ### A fully-qualified hostname is required to set up security and to communicate ### with the Portal after security is enabled. WpsHostName=<WpsHostName> ########## ### WAS Properties - END ########## ########## ### Portal Config Properties - BEGIN ########## ### The user ID for the WebSphere Portal Administrator PortalAdminId=cn=wpsadmin,o=yourco.com ### The short WebSphere Portal admin ID PortalAdminIdShort=wpsadmin ### The password for the WebSphere Portal Administrator PortalAdminPwd= ### The group ID for the WebSphere Portal Administrator group PortalAdminGroupId=cn=wpsadmins ### PortalAdminGroupIdShort: The WebSphere Portal admin group ID PortalAdminGroupIdShort=wpsadmins ########## ### Portal Config Properties - END ########## ### ### ### WebSphere Portal Security Configuration - BEGIN ### ### ### ### WebSphere Portal Security LTPA and SSO configuration ### ### Specifies the password to encrypt and decrypt the LTPA keys. LTPAPassword= ### Specifies the time period in minutes at which an LTPA token will expire. LTPATimeout=120 ### Specifies that Single Sign-On function is enabled ### only when requests are over HTTPS Secure Socket Layer (SSL) connections. SSORequiresSSL=false ### Specifies the domain name (.ibm.com, for example) for all Single Sign-on hosts. SSODomainName=<SSODomainName> ### ### General Global Security Settings ### ### Description: The values in this section should only be adapted by advanced users ### Specifies the user names to qualify with the security domain within which they reside. useDomainQualifiedUserNames=false ### Specifies the timeout value in seconds for security cache. cacheTimeout=600 ### Specifies that when the Issue permission warning is enabled, during application deployment ### and application start, the security run time emits a warning if applications are granted any custom permissions. issuePermissionWarning=true ### Specifies the active authentication protocol for RMI/IIOP requests when security is enabled. activeProtocol=BOTH ### Specifies the active authentication mechanism, when security is enabled. activeAuthMechanism=LTPA ### ### LDAP Properties Configuration - BEGIN ### ### To configure LDAP with an additional LookAside Database ### true - LDAP + Lookaside database ### false - only LDAP LookAside=false ### LDAP server hostname LDAPHostName=<LDAPHostName> ### The LDAP server port number ### For example, 389 for non-SSL or 636 for SSL LDAPPort=389 ### LDAPAdminUId: The LDAP administrator ID LDAPAdminUId=<LDAPAdminUId> ### The LDAP administrator password LDAPAdminPwd= ### The type of LDAP server to be used for WebSphere Portal LDAPServerType=DOMINO502 ### The user ID for LDAP Bind authentication LDAPBindID=cn=wpsbind,o=yourco.com ### The password for LDAP Bind authentication LDAPBindPassword= ### ### LDAP Properties Configuration - END ### ###### ### Advanced LDAP Configuration - BEGIN ###### ### The LDAP suffix appropriate for your LDAP server LDAPSuffix= ### The LDAP user prefix appropriate for your LDAP server LdapUserPrefix=cn ### The LDAP user suffix appropriate for your LDAP server LDAPUserSuffix=o=yourco.com ### The LDAP group prefix appropriate for your LDAP server LdapGroupPrefix=cn ### The LDAP group suffix appropriate for your LDAP server LDAPGroupSuffix= ### The LDAP user object class appropriate for your LDAP server LDAPUserObjectClass=inetOrgPerson ### The LDAP group object class appropriate for your LDAP server LDAPGroupObjectClass=groupOfNames ### The LDAP group member attribute name appropriate for your LDAP server LDAPGroupMember=member ### The LDAP user filter appropriate for your LDAP server (to work with default values in WMM) LDAPUserFilter=(&(|(cn=%v)(uid=%v))(objectclass=inetOrgPerson)) ### The LDAP group filter appropriate for your LDAP server (to work with default values in WMM) LDAPGroupFilter=(&(cn=%v)(|(objectclass=groupOfNames)(objectclass=groupOfUniqueNames))) ### LDAPGroupMinimumAttributes: This attribute is loaded for group search (performance issues) LDAPGroupMinimumAttributes= ### These attributes are loaded for user login (performance issues) LDAPUserBaseAttributes=givenName,sn,preferredLanguage ### These attributes are loaded for user search (performance issues) LDAPUserMinimumAttributes= ### Specifies the timeout value in seconds for an LDAP server to respond before aborting a request. LDAPsearchTimeout=120 ### Should set to true by default to reuse the LDAP connection. ### { false | true } LDAPreuseConnection=true ### Specifies that a case insensitive authorization check is performed. ### { false | true } LDAPIgnoreCase=true ### Specifies whether secure socket communications is enabled to the LDAP server. ### { false | true } ### Set to true if configuring LDAP over SSL LDAPsslEnabled=false ###### ### Advanced LDAP Configuration - END ###### ### The user ID for WMM system identification ### See LDAP examples below: ### IBM Directory Server: { uid=<wmmsystemid>,cn=users,dc=yourco,dc=com } ### Domino: { cn=<wmmsystemid>,o=yourco.com } ### Active Directory: { cn=<wmmsystemid>,cn=users,dc=yourco,dc=com } ### SunOne: { uid=<wmmsystemid>,ou=people,o=yourco.com } ### Novell eDirectory { uid=<wmmsystemid>,ou=people,o=yourco.com } WmmSystemId=<wmm_system_id_user> ### Password for WMM system identification WmmSystemIdPassword=<wmm_system_id_password> ### ### LDAP Properties - END ### ### ### ### WebSphere Portal Security Configuration - END ### ###WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.
IBM is a trademark of the IBM Corporation in the United States, other countries, or both.