amazon

Tuesday, December 27, 2011

LDAP User Registry

7:08 AM    1 comment

Enabling and configuring WAS security

Follow these steps to configure WebSphere Application Server security. For versions prior to WebSphere Application Server V6, refer to the section following these tasks.
  1. Click the Server tab to open the Server view.
  2. Right-click the server name (after it has been started) and select Run Administrative console.
  3. Expand Security and click Global security to open the Configuration page.
  4. Click LDAP under User registries on the right side of the page.
  5. Enter the following values for LDAP security:
  •  Server User ID - enter a user ID registered for LDAP that WAS will use to access the LDAP server
  •  Server User Password - enter the password
  •  Type - select SecureWay
  •  Host - enter the host name. You should use the full domain name.
  •  Port - use the default port of 389
  •  Base Distinguished Name (DN) - enter the base distinguished name of the directory service. (For example, dc=mysystem, dc=mycompany, dc=com.) This indicates the starting point where LDAP searches the directory service.
  •  Click Ok.
  1.  6 .Enter the following values for the general properties on the Global security page:
  •  Uncheck Enforce Jav
  •  Check Enable global security.
  • a 2 security.
  • · Select Lightweight Directory Access Protocol (LDAP) user registry from the Active user registry list.
  1. 7. Click Apply.
  2. 8. Save the changes and close the WAS Administrative Console.
  3. 9. Restart the server.

1 comment:

  1. UnknownMarch 5, 2013 at 12:35 AM

    Hi Vamsi,
    Thanks for the information and it is useful.
    I have followed the step as you mentioned but i can see some of the SSLException statement in the logs as below.could you help in this to resolve the exception

    [1/27/13 21:28:01:796 AST] 0000004f SSLHandshakeE E SSLC0008E: Unable to initialize SSL connection. Unauthorized access was denied or security settings have expired. Exception is javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
    at java.lang.Throwable.(Throwable.java:67)
    at com.ibm.jsse2.b.a(b.java:40)
    at com.ibm.jsse2.qc.a(qc.java:41)
    at com.ibm.jsse2.qc.unwrap(qc.java:102)
    at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:17)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.readyInbound(SSLConnectionLink.java:534)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.ready(SSLConnectionLink.java:294)
    at com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.sendToDiscriminators(NewConnectionInitialReadCallback.java:214)
    at com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.complete(NewConnectionInitialReadCallback.java:113)
    at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)

    ReplyDelete

Subscribe to: Post Comments (Atom)