Enable LDAP security after cluster creation

 

+
Search Tips   |   Advanced Search

 

We can change the type of security you are using after you have created the cluster. For example, you might want to switch from the database user registry security provided by default when you install IBM WebSphere Portal to security based on an LDAP user registry. To change the security configuration, complete the following steps:

1. Disable security.

   When disabling security, perform tasks only on the primary node in the cluster. Security changes are automatically propagated to other nodes in the cluster.

2. Enable security to use an LDAP user registry.
   1. Refer to LDAP user registry for details on configuring security with an LDAP user registry on the primary node, and follow the appropriate instructions depending on whether you want to use LDAP with or without realm support. When enabling security, perform tasks only on the primary node in the cluster. Security changes are automatically propagated to other nodes in the cluster.

   2. Update...

      portal_server_root/config/wpconfig.properties

      ...on each secondary node in the cluster with the same LDAP user registry information used configure the primary node.

   3. Complete the security configuration by running the enable-jcr-security configuration task on each secondary node.

      • Windows and UNIX:

        Run the following command from the portal_server_root/config directory:

        • Windows:

          WPSconfig.bat enable-jcr-security -DPortalAdminId=portal_admin_id

        • UNIX:

          ./WPSconfig.sh enable-jcr-security -DPortalAdminId=portal_admin_id

        ...where portal_admin_id is the fully qualified distinguished name (DN) of the portal administrator (for example, uid=wpsadmin,cn=users,dc=example,dc=com).

      • i5/OS:

        Run the following command from the portal_server_root/config directory:

        WPSconfig.sh -profileName profile_root enable-jcr-security -DPortalAdminId=portal_admin_id

        where
        • profile_root is the name of the WebSphere Application Server profile where WebSphere Portal is installed; for example, wp_profile.

        • portal_admin_id is the fully qualified distinguished name (DN) of the portal administrator (for example, uid=wpsadmin,cn=users,dc=example,dc=com

   4. Restart the cluster member on each secondary node.

 

Parent topic:

Setting up a cluster

 

Previous topic

Adding cluster members

 

---