LDAP User change in Websphere App Server
Hi all,
We need to change the user account that is used to connect to LDAP from CLM.
I know we need to make the change in the LDAP settings under security in WebSphere, but does a change also need to be made in the advanced properties under jts/admin or is this pulled through from WebSphere? Or anywhere else for that matter?
Can the change to the user be made while the server is up and runnning or does it need to be shut down/restarted for the changes to take effect?
Thanks,
Matt
2 answers
After changing the LDAP access account in WAS, you need to restart WAS for it to take effect. When users then try to log on to CLM applications hosted on that WAS, the new settings will be used.
You will also need to change the LDAP access account in jts/admin > Advanced Properties, which is used for synchronizing the users between LDAP and JTS. Without doing so, users can be authenticated but not synchronized. I don't think you need to restart JTS for the new setting to take effect.
If you make the changes in JTS, then WAS, and finally restart WAS, all will be good.
You will also need to change the LDAP access account in jts/admin > Advanced Properties, which is used for synchronizing the users between LDAP and JTS. Without doing so, users can be authenticated but not synchronized. I don't think you need to restart JTS for the new setting to take effect.
If you make the changes in JTS, then WAS, and finally restart WAS, all will be good.
Comments
Sumant Renukarya
Jun 06 '14, 6:33 a.m.Hi Matt