Changing user authentication from tomcat to ldap
i have done my jts setup using express setup. now i need to use ldap for user management..i have installed one ldap server and tried changing some settings in Advanced settings.But its not working. Where all i need to change the settings? i am able to browse my ldap server using softera.
while running repotool -SyncUser getting below error
The Jazz server is configured to use 'tomcat' user directory. User sy
nchronization is not supported by the configured user directory.
while running repotool -SyncUser getting below error
The Jazz server is configured to use 'tomcat' user directory. User sy
nchronization is not supported by the configured user directory.
2 answers
Hi Joe
You should have run a custom set-up than the express set-up to provide the LDAP details/parameters while running jts setup.
Now that you already have completed the jts setup, you need to login to jts/admin page, go to advanced properties, search for 'LDAPUserRegistryProvider' and update the parameters for LDAP as mentioned in the following link:
http://pic.dhe.ibm.com/infocenter/clmhelp/v4r0m5/index.jsp?re=1&topic=/com.ibm.jazz.install.doc/topics/c_plan_identity_management.html&scope=null
Comments
Joe
My bad..Did not see the fact that you have indeed made changes in the Advanced properties section.
Is the below property set to False? If you use external LDAP, I believe this needs to be set to false:
com.ibm.team.repository.service.jts.internal.userregistry.tomcat.TomcatUserRegistryProvider
Can you verify and retry?
Hi Sumant,
Thanks for the reply.
I changed the above mentioned value to false.still getting the below error. i tried restarting server also. which property sets default user registry?
CRJAZ1389E The Jazz server is configured to use 'tomcat' user directory. User sy
nchronization is not supported by the configured user directory.
Well, I did run into issues when trying to change from Tomcat user database to LDAP sometime ago. Since you have run express set-up, I believe it does not even let you re-run jts set-up again and to switch to custom set-up.
In my case then, I uninstalled and re-installed JTS and did re-run the jts set-up selecting custom set-up. That worked.
While I agree this is not a good approach, if it's feasible in your case and urgent you can try this.
Otherwise, I am looking to see what else files needs to be modified other than the ones in Advanced properties.
1 vote
If you haven't tried uninstalling and re-installing, you can try this:
1. Re-run jts/setp and select custom setup this time;
2. Go to 'setup User Registry' section; Here change from Tomcat user database to LDAP; Provide the details of your LDAP;
3. Click on Save Tomcat Config Files;
4. Then you will have to restart the Jazz Team Server and place these Tomcat Config Files in a specific location. Then the setup will be complete.
Please note, I haven't tried these complete steps yet (Have tried only till step 3) and was advised by one of my co-workers that these would be the steps.
If you can, reinstalling is probably the easiest method. Setup creates and configures a number of files for you.
If you can't re-install it can be configured manually using the following information in the information center.
http://pic.dhe.ibm.com/infocenter/clmhelp/v4r0m3/index.jsp?re=1&topic=/com.ibm.jazz.install.doc/topics/t_manually_config_tomcat_ldap.html&scope=null
If you can't re-install it can be configured manually using the following information in the information center.
http://pic.dhe.ibm.com/infocenter/clmhelp/v4r0m3/index.jsp?re=1&topic=/com.ibm.jazz.install.doc/topics/t_manually_config_tomcat_ldap.html&scope=null