Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Can we remove functional users from LDAP?

We have accidentally added functional users to our LDAP registry.

For example: ccm_user now refers to a user in the LDAP domain.

As a consequence, our organization's password requirements now apply to our functional users, an undesired effect.

We are thinking of reverting this change,
  1) moving the users back into the JTS registry (may not be needed?) and
  2) removing them from LDAP.

Questions:
1. What would we need to do to accomplish this?
2. Any gotchas to look out for?

We have: Distributed CLM servers, WAS single sign-on and LDAP.

0 votes



2 answers

Permanent link
Hi Erik,

Your LDAP administrators can delete those functional users under User Management in Active Directory. Then you can archive them from JTS repository. However, you should check if those users are being used in friend relationships between CLM applications or they are assigned with OAuth Consumer keys for ETL jobs.

If your distributed environment do not use those functional users, they can be archived in JTS repository.

Regards,
Will

1 vote


Permanent link
The functional users do not need to present in any external user registries, such as LDAP or Tomcat User Management, as you don't use these user accounts interactively. Adding or removing these user accounts in the external user registry should not have any effects on the functioning of the application.
Note that archiving the functional users in JTS can too often cause unexpected behaviors, so I strongly suggest you leave them as is in JTS.

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 7,495
× 88

Question asked: Sep 21 '15, 6:27 a.m.

Question was seen: 4,840 times

Last updated: Sep 21 '15, 8:17 p.m.

Confirmation Cancel Confirm