Set a Domino LDAP server to allow anonymous access

Allow anonymous access to attributes on the Domino LDAP server is one of two ways to enable Collaborative Services to retrieve user information needed to support collaborative portlet features. To allow anonymous access, you modify a Configuration Settings document stored in the Domino Directory database (names.nsf) on the Domino LDAP server.

Perform the following steps:

  1. Use the Lotus DominoAdministrator client software to open the Domino Directory database (file name names.nsf) for the Domino LDAP server.

  2. Navigate to the view Server -> Configurations.

  3. Highlight Configurations and then open the Configuration Settings document. If a global configuration document does not exist, click Add Configuration to create a new configuration document and display Configuration Settings.

  4. On the Basics tab, for the option Use these settings as the default settings for all servers, click Yes.

      Select Yes causes the LDAP tab to appear.

  5. On the LDAP tab, click the button next to Select Attribute Types to open the LDAP Attribute Type Selection dialog box.

  6. From the Object Classes drop-down list, select *, and then click Display Attributes.

  7. From the Selectable Attribute Types box, select the following fields, and then click Add to add them the Queriable Attribute Types box.

    Option Description
    Item Comments
    AltFullName
    dominoCertificate
    dominoUNID Available only if the Lotus Domino server is release 6.5.4 or later, or, in earlier releases, if organization has customized the design of names.nsf to add the dominoUNID field as described in the WebSphere Portal 5.1 release notes.
    givenName
    HTTP-HostName Required for auto-detection of source mail files for Messaging.
    HTTP-Port Required for auto-detection of source mail files for Messaging.
    Location
    mail
    MailAddress
    MailDomain
    MailFile
    MailServer
    member
    NetAddresses
    PublicKey
    Sametime
    sn
    uid
    userCertificate

  8. Click OK to close the LDAP Attribute Type Selection dialog box, and return to the Configuration Settings document.

  9. Ensure that the Anonymous users can query field displays the attributes you added to the Queriable Attribute Types box in the previous step.

  10. Keep all other default LDAP settings in Configuration Settings.

      For background information on Domino Configuration Settings documents, see the Domino Administrator Help topic Configuration Settings document, and click the link ...create a Configuration Settings document.

  11. For the option Allow LDAP users write access, click Yes.

      This setting ensures that portal users can use the self-care and self-registration features of WebSphere Portal.

  12. Ensure that Automatically Full Text Index Domino Directory is set to Yes.

  13. Click Save and Close to close Configuration Settings.

  14. If you are using an existing user as the portal administrator, follow the steps in Update the Access Control List of the Domino Directory. If you are adding a new user to act as the portal administrator, follow the steps in Add portal administrators to the Domino Directory

If you use the Domino-WebSphere Portal Integration wizard, you do not perform this procedure, because the wizard sets the bind user instead. However, consider enabling the options Allow LDAP users write access and Automatically Full Text Index Domino Directory.


Parent

Give Collaboratives Services access to required fields for automatic mail detection

  Changed we recommend to "consider enabling." Reflected in .dita source...


+

Search Tips   |   Advanced Search