IBM BLUE PAGE WAS 配置方法。
By:Roy.LiuLast updated:2011-05-30
bluepage是IBM内部的一套LDAP认证系统,基于Tivoli Directory Server的集群。
在bluepage中,用户使用的自定义类,叫ibmPerson, 用户组也是自定义的。用户常用user@cn.ibm.com这种格式登录各种业务系统。由于FileNet P8 4.5.1有个小bug,不支持用户名带@的,所以本配置同时配置了使用短名(user)登录。
下面是步骤:
WAS Console - > Security - > Global security
Select Standalone LDAP registry as current.
click configure button
on configure page, type user@cn.ibm.com as Primary administrative user name
select IBM Tivoli Directory Server as Type of LDAP Server
Host = bluepages.ibm.com
Port = 389
Base distinguished name(DN) : o=ibm.com
Click Advanced Lightweight Directory Access Protocol User registry setttings
User filter: (&(|(mail=%v)(notesShortName=%v)(primaryUserID=%v))(objectclass=ibmPerson))
Group filter: (&(cn=%v)(objectclass=groupOfUniqueNames))
User ID Map: ibmPerson:notesShortname;ibmPerson:mail;ibmPerson:primaryUserID
Group ID Map: groupOfUniqueNames:cn
Group member ID map: ibm-allGroups:uniqueMember
Save all.
现在就可以使用user@cn.ibm.com或者user两种方式登录WebShpere控制台了.
在bluepage中,用户使用的自定义类,叫ibmPerson, 用户组也是自定义的。用户常用user@cn.ibm.com这种格式登录各种业务系统。由于FileNet P8 4.5.1有个小bug,不支持用户名带@的,所以本配置同时配置了使用短名(user)登录。
下面是步骤:
WAS Console - > Security - > Global security
Select Standalone LDAP registry as current.
click configure button
on configure page, type user@cn.ibm.com as Primary administrative user name
select IBM Tivoli Directory Server as Type of LDAP Server
Host = bluepages.ibm.com
Port = 389
Base distinguished name(DN) : o=ibm.com
Click Advanced Lightweight Directory Access Protocol User registry setttings
User filter: (&(|(mail=%v)(notesShortName=%v)(primaryUserID=%v))(objectclass=ibmPerson))
Group filter: (&(cn=%v)(objectclass=groupOfUniqueNames))
User ID Map: ibmPerson:notesShortname;ibmPerson:mail;ibmPerson:primaryUserID
Group ID Map: groupOfUniqueNames:cn
Group member ID map: ibm-allGroups:uniqueMember
Save all.
现在就可以使用user@cn.ibm.com或者user两种方式登录WebShpere控制台了.
From:一号门
Previous:婚礼主持人
Next:filenet 常用命令
COMMENTS