How can I migrate users from tomcat-users.xml to WAS LDAP (MS AD)?

0	Yasuyuki Tominaga (297●3●16) \| asked Dec 16 '15, 2:27 a.m. How can I migrate users from tomcat-users.xml to WAS LDAP (MS AD)?

Accepted answer

permanent link

Kohji Ohsawa (595●1●3●8) | answered Dec 16 '15, 2:33 a.m.
JAZZ DEVELOPER

Hi Tommy,

Typically, it can be done like below.

1. Export users to CSV with using repotools-jts -exportUsers.

See also http://www-01.ibm.com/support/knowledgecenter/SSCP65_5.0.2/com.ibm.jazz.

install.doc/topics/r_repotools_exportusers.html

2. Create JazzGroups (JazzAdmins, JazzProjectAdmins, JazzDWAdmins, JazzUsers, JazzGuests) in MS AD.

3. Convert CSV file to LDIF which can be imported to MS AD.

See also https://msdn.microsoft.com/ja-jp/library/Bb727091.aspx

4. Import LDIF file to MS AD.

5. Assign imported users to JazzGroups on MS AD.

6. Configure WAS to use MS AD as a user registry.

7. Run jts/setup to configure LDAP for JTS.

Hoping this works well for you.

Yasuyuki Tominaga selected this answer as the correct answer

Comments

Yasuyuki Tominaga commented Dec 16 '15, 5:20 a.m.

Thanks, this works in my test env!

permanent link

Ralph Schoon (61.8k●3●36●43) | answered Dec 16 '15, 2:44 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER

In case the users are already in MS AD and you need to change the ID's of the existing users you might want to consider reading this post: https://rsjazz.wordpress.com/2012/10/12/changing-the-jazz-user-id-using-the-rtc-plain-java-client-libraries/

Comments

Yasuyuki Tominaga commented Dec 16 '15, 5:51 a.m.

Thank you. This time the uses aren't already in MS AD, but I appreciate your nice article.