Table of Contents
Advertisement
series of queries, one for each group, to determine whether the user is currently a member. If
membership is not what it should be, the TAI synthesizes a modification of the individual group
object.
In the reverse direction, a similar optimization is applied, in which updates to the groupMembership
back reference attribute are combined into a single joint LDAP modification.
Implementing the Trust Association Interceptor Module
The TAI module is implemented in eDirectory, WebSphere Application Server, and Novell Access
Manager
Configuring eDirectory
Use the following configuration for eDirectory:
Place all application groups inside a container. For example,
Create a wpstaibind user. For example, cn=wpstaibind,ou=Admins,ou=Services,o=MyOrg.
This user updates the LDAP groups for the TAI module. Assign the following rights to this
user:
Create and Modify rights to the ou=Groups,o=MP container.
Modify rights to the Membership attribute of all users under the user container.
Create a cn=wasadmins,ou=Groups,o=MyOrg group for all WebSphere Application Server
administrators.
NOTE: The exact location of WebSphere Portal Server groups can change to a specific
application container below the ou=Groups,o=MyOrg container.
Configuring the WebSphere Application Server
Copy the following files to the
r
ldap.ja
utilities.jar
r
roller.ja
NOTE: The
and
ldap.jar
LDAP Classes for Java
(http://developer.novell.com/wiki/index.php/LDAP_Classes_for_Java).
To configure and enable the TAI module: .
1 Log in to the WebSphere Application Server Admin Console and go to Security / Global
Security.
2 Select Authentication Mechanism > Authentication.
3 Select LTPA.
4 Select Trust Association.
5 Enable the enable trust association check box.
6 Click Apply to save the changes.
/usr/WebSphere/AppServer/lib
files are found in the Novell LDAP SDK, located at
utilities.jar
ou=Groups,o=MyOrg
folder:
Preparing the Applications and the J2EE Servers
77
Advertisement
Chapters
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Novell ACCESS MANAGER 3.1 SP2 - J2EE AGENT GUIDE 2010
Related Products for Novell ACCESS MANAGER 3.1 SP2 - J2EE AGENT GUIDE 2010
- NOVELL CLIENT FOR LINUX 2.0 SP2 - 03-2009
- NOVELL SENTINEL 6.1 SP2 - 02-2010
- NOVELL SP2 - S
- NOVELL BUSINESS CONTINUITY CLUSTERING 1.1 SP1 - 9-21-2010 ADMINISTRATION GUIDE FOR OPEN ENTERPRISE SERVER 1 SP2 LINUX
- NOVELL CLIENT FOR LINUX 2.0 SP1 - 08-2008
- NOVELL CLIENT FOR LINUX 2.0 SP3 - 11-2009
- NOVELL SUSE LINUX ENTERPRISE DESKTOP 11 SP1 - 8-18-2010 VIRTUALIZATION WITH ZEN
- NOVELL ZENWORKS 10 CONFIGURATION MANAGEMENT SP3 - NETWORK DISCOVERY DATABASE STRUCTURE
Need help?
Do you have a question about the ACCESS MANAGER 3.1 SP2 - J2EE AGENT GUIDE 2010 and is the answer not in the manual?