+

Search Tips   |   Advanced Search


Reusing group information

IBM WAS stores information about which groups a user belongs to. You can configure WebSphere Portal to reuse the information from the WAS security context instead of from the LDAP server. This function is also referred to as group assertion or WAS group assertion.

To reuse group information:

  1. Log on to the admin console.

  2. Navigate to Resources > Resource Environment > Resource Environment Providers.

  3. Choose the appropriate option(s) to meet your business needs when reusing group information:

    Option Description
    Reuse it for access control Perform the following steps to reuse group information for access control:

    1. Select the WP PACGroupManagementService resource environment provider.

    2. Select Custom properties.

    3. Click New.

    4. Enter accessControlGroupManagement.useWSSubject in the Name field.

    5. Enter true in the Value field.

    6. Click Apply.

    7. Click Save to save the changes to the master configuration.

    Reuse it for user management Perform the following steps to reuse group information for user management:

    1. Select the WP_PumaStoreService resource environment provider.

    2. Select Custom properties.

    3. Click New.

    4. Enter store.puma_default.filter.asertionFilter.classname in the Name field.

    5. Enter com.ibm.wps.um.AssertionFilter in the Value field.

    6. Click Apply.

    7. Click Save to save the changes to the master configuration.

  4. Log out of the admin console.

  5. Restart the WebSphere_Portal server.


Parent topic:

Users and groups