Configure a property extension database on Windows
You can configure a property extension database (previously referred to as a lookaside database) to store attributes that the LDAP directory does not or cannot store, but which you want to include in the portal user registry. This situation often occurs when you are using an LDAP directory that does not allow schema extensions for new attributes to support portal applications. When you configure a property extension database, you effectively extend the user registry to make new attributes available as part of the portal user profile. However, it is generally preferable to store all user attributes in the main user registry. You should perform this task only if you cannot add new attributes to LDAP directory. This topic explains how to configure property extensions in a single server environment and in a clustered environment.
Configure portal security with main user registry before configuring property extension database. Your property extension database configuration becomes unavailable if you perform the steps in this task on the out-of-the-box security configuration then configure portal security with main user registry.
To configure a property extension database, do the following:Due to a limitation with the Virtual Member Manager (VMM), there are no tasks that let you update attributes. To change an attribute, first remove the attribute then add it again. For this reason, ensure you spell all attributes correctly and use caution when adding attributes to property extension database.
The VMM database schema has a limit of 36 characters on the repository ID column. For this reason, use a repository ID that is 36 characters or less.
If you configured property extension database on the out-of-the-box security configuration and then configured LDAP user registry, the properties that you added to the property extension, before configuring LDAP user registry, will not be available. Run the wp-add-la-property task, described above, to add the property to the configuration.
- This task requires server connections. Perform the following as appropriate:
- In a standalone environment, ensure the server1 and WebSphere_Portal servers are running.
- In a clustered environment, stop all application servers on the system including server1 and WebSphere_Portal then start the nodeagent and dmgr servers.
- Install the required Enterprise Archive (.ear) file on WAS.
Environment Steps Standalone
- Open a command prompt.
cd WP_PROFILE/ConfigEngine
- Run the ConfigEngine.bat wp-la-install-ear -DWasPassword=foo
Cluster You can find the dmgr_server_name value in the WAS console under
- Open a command prompt on the primary node.
cd WP_PROFILE/ConfigEngine
ConfigEngine.bat wp-la-install-ear -DWasPassword=dmgr_password -DServerName=dmgr_server_name -DNodeName=node_nameSystem administrator -> Deployment Manager -> Configuration tab -> General Properties -> Name. You can find the node_name value in the WAS console under
System administrator -> Deployment Manager -> Runtime tab -> General Properties -> Node Name.
- Stop and restart the appropriate servers to propagate the changes.
- Set up a new database, including creating a new user with appropriate database privileges for accessing the database:
Instructions for setting up databases: Refer to the appropriate documentation for the type of database you want to set up.
Consulting database administrator: The task of setting up a new database is typically performed by a database administrator. However, the following steps are provided for reference in the event you are creating a stand-alone database for testing or demonstration purposes. Consult database administrator before proceeding with the following steps if you plan to create a database for a production environment.
Database Steps DB2® Create a DB2 database:
- Install DB2.
- Enter the following database tuning commands:
db2 "CREATE DB dbname using codeset UTF-8 territory us PAGESIZE 8192" db2 "UPDATE DB CFG FOR dbname USING applheapsz 4096" db2 "UPDATE DB CFG FOR dbname USING app_ctl_heap_sz 1024" db2 "UPDATE DB CFG FOR dbname USING stmtheap 32768" db2 "UPDATE DB CFG FOR dbname USING dbheap 2400" db2 "UPDATE DB CFG FOR dbname USING locklist 1000" db2 "UPDATE DB CFG FOR dbname USING logfilsiz 4000" db2 "UPDATE DB CFG FOR dbname USING logprimary 12" db2 "UPDATE DB CFG FOR dbname USING logsecond 20" db2 "UPDATE DB CFG FOR dbname USING logbufsz 32" db2 "UPDATE DB CFG FOR dbname USING avg_appls 5" db2 "UPDATE DB CFG FOR dbname USING locktimeout 30" db2 "UPDATE DB CFG FOR dbname using AUTO_MAINT off"
Oracle Create an Oracle database:
- Install Oracle using UNICODE Database and National character sets such as UTF8, AL32UTF8, or AL16UTF16.
- Configure the database in Dedicated Server Mode.
- Enter the recommended initial buffer pool sizes or set them according to business needs:
- db_block_size = 8192
- db_cache_size = 300M
- db_files = 1024
- log_buffer = 65536
- open_cursors = 1500
- pga_aggregate_target = 200M
- pre_page_sga = true
- processes = 300
- shared_pool_size = 200M
SQL Server Create an SQL Server database: Install SQL Server with the appropriate portal database collation so that tempdb collation setting matches the collation you use for the property extension database. The tempdb collation is inherited from the master database, which you set when you install SQL Server.
- Install SQL Server.
- Set Collation to case-sensitive.
- Define the DbDriver and DbLibrary parameter values:
- Edit wkplc_dbtype.properties file, located in the WP_PROFILE/ConfigEngine/properties directory.
- Enter a value for the following parameters under the appropriate database type properties heading:
db_type.DbDriver
db_type.DbLibrary
- Save changes.
Limitation: The WAS UserManagement component (VMM) requires access to the following database libraries to use the VMM database functions such as Property Extension and database user registry, however, if the Portal is using the DB2 Type 2 driver, due to functional limitations, VMM must use the DB2 Type 4 driver; see Configure a JDBC provider and datasource for federated repositories for additional information:
DB2 Type 2 driver: db2java.zip
Perform the following steps add the library paths to the VMM_JDBC_CLASSPATH variable:
DB2 Type 4 driver: db2jcc.jar;db2jcc_license_cu.jar
DB2 for z/OSType 2 driver: db2java.zip
DB2 for z/OS Type 4 driver: db2jcc.jar;db2jcc_license_cisuz.jar;db2jcc_javax.jar
Oracle: ojdbc14.jar
SQL Server JDBC driver provided by Microsoft: sqljdbc.jar
SQL Server JDBC driver provided by DataDirect: sqlserver.jar;base.jar;util.jarCopy the above library files into the appserver/lib directory. Then stop and restart the server1 and WebSphere_Portal servers to load the library files. In a clustered environment, also stop and restart the Deployment Manager and the nodeagents.
- Logon to the WAS console.
- Click Environment -> WebSphere Variables.
- Select scope: cell.
- Select the VMM_JDBC_CLASSPATH variable or click New to create the variable if it does not exist.
- Enter the complete paths to the library files, separated by ';", in the Value field; for example, enter D:/IBM/SQLLIB/java/db2jcc.jar;D:/IBM/SQLLIB/java/db2jcc_license_cu.jar.
- Specify values for the datasource parameters in wp_add_LA.properties.
- cd WP_PROFILE/ConfigEngine/config/helpers
- Locate and open wp_add_LA.properties with any text editor.
- Specify values for the following parameters:
la.JdbcProviderName
la.DbType
la.DbUrl
la.DbName
la.DataSourceName
la.DbUser
la.DbPassword
Add parameters for a clustered environment: Add the following parameters to the wp_add_LA.properties if you are setting up the property extension database on a clustered environment:la.schemaLocation=WAS_HOME/AppServer/etc/wim/setup
where WAS_HOME is the local path on dmgr node.la.laPropXML=WAS_HOME/AppServer/etc/wim/setup/wimlaproperties.xml
- Save and close wp_add_LA.properties.
- Change the value for the com.ibm.SOAP.requestTimeout parameter to 1000.
- cd WP_PROFILE/properties
- Locate and open soap.client.props with any text editor.
- Locate the com.ibm.SOAP.requestTimeout parameter and ensure the value is greater than 1000.
- Save and close soap.client.props.
- If you are performing this task in a single server environment, proceed to the next step. If you are performing this task in a clustered environment...
- Open a command line window.
- cd WP_PROFILE/ConfigEngine
- Run the following task to create the local Deployment Manager WebSphere variable used to access the database jars: ConfigEngine.bat wp-prep-vmm-db-secured-environment -DWasPassword=foo -DDbDomain=la -Ddb_type.DmgrDbLibrary=/path/to/DB/jars -DDmgrNodeName=dmgr_node_name
The db_type in db_type.DmgrDbLibrary should be set to the type of database you are using, for example db2. The /path/to/DB/jars should be one of the following options:
DB2 Type 2 driver: db2java.zip
DB2 Type 4 driver: db2jcc.jar;db2jcc_license_cu.jar
DB2 for z/OS Type 2 driver: db2java.zip
DB2 for z/OS Type 4 driver: db2jcc.jar;db2jcc_license_cisuz.jar;db2jcc_javax.jar
Oracle: ojdbc14.jar
SQL Server JDBC driver provided by Microsoft: sqljdbc.jar
SQL Server JDBC driver provided by DataDirect: sqlserver.jar;base.jar;util.jar
- Run the following task. Include each node name as a comma separated list in the command:
- Ensure you have specified the property value for la.DbType in the wp_add_LA.properties.
- Run the ConfigEngine.bat wp-node-prep-vmm-db-secured-environment -DWasPassword=foo -DDbDomain=la -DVmmNodeName=node_name,node_name,node_name -Ddb_type.NodeDbLibrary=/path/to/DB/jars task from the WP_PROFILE/ConfigEngine on each node to create the variable used to access the VMM database jars.
- Stop and restart all necessary servers to propagate changes.
- Add a property extension repository to the federated or stand-alone LDAP repository.
- Open a command line window.
- cd WP_PROFILE/ConfigEngine
- Run the following task: ConfigEngine.bat wp-configure-la-complete -DWasPassword=foo -DparentProperties=WP_PROFILE/ConfigEngine/config/helpers/wp_add_LA.properties
- Stop and restart the appropriate servers to propagate the changes.
- Specify values for the following parameters in wp_add_LA.properties.
Add several attributes: You must add attributes to the property extension database one at a time. Complete this step to specify the parameters for a specific attribute then complete the next step to run the task to add that attribute. Repeat both steps for each attribute you plan to add.
- cd WP_PROFILE/ConfigEngine/config/helpers
- Locate and open wp_add_LA.properties with any text editor.
- Specify values for the following parameters:
la.providerURL
Values for the dataType parameter: Available data types defined in com.ibm.websphere.wim.SchemaConstants:
la.propertyName
la.entityTypes
la.dataType
la.multiValuedA complete overview of valid dataType values can be found in the Configure a property extension repository in a federated repository configuration file. All constant values of DATA_TYPE_* fields are valid input for la.dataType.
- String
- Int
- Date
- AnySimpleType
- AnyURI
- Boolean
- Long
- Double
- Short
- Add the attribute to the property extension database.
- Open a command line window.
- cd WP_PROFILE/ConfigEngine
- Run the following task: ConfigEngine.bat wp-add-la-property -DWasPassword=foo -DparentProperties=WP_PROFILE/ConfigEngine/config/helpers/wp_add_LA.properties
The attributes become available in property extension database.
- Add the attributes to Web Content Manager if you use Web content user profiling and/or Category selection trees.
- Ensure you have specified a value for la.providerURL in wp_add_LA.properties.
- Open a command line window.
- cd WP_PROFILE/ConfigEngine
- Run the following task: ConfigEngine.bat add-wcm-la-attributes -DWasPassword=foo -DparentProperties=WP_PROFILE/ConfigEngine/config/helpers/wp_add_LA.properties.
Receiving an authentication prompt: This task makes an EJB call to WAS, which requires authentication. You may receive a prompt asking for authentication. Enter the appropriate WAS user ID and password.
- Stop and restart the appropriate servers to propagate the changes.
If you created clustered environment then performed the steps in this task, now run the update-jcr-admin task on the secondary node. See Enable LDAP security after cluster creation for instructions.
Parent
Update user registry on Windows
Related tasks
Start and stop servers, dmgrs, and node agents
Enable LDAP security after cluster creation
Updated step 2.