It's all about the answers!

Ask a question
QuestionsTagsUsersBadges
Follow this question
Question details

×42,787

question asked: Aug 13 '08, 2:59 p.m.
question was seen: 5,966 times
last updated: Apr 25 '13, 1:24 a.m.

Related questions

FAQ - How this Forum works

Upgrading to Bluepages?

0
Millard Ellingsworth (2.5k12431) | asked Aug 13 '08, 2:59 p.m.
FORUM ADMINISTRATOR / JAZZ DEVELOPER
As a matter of expediency, we got started with the Tomcat based authentication -- but I'm getting tired of making users. :-) Can I switch to LDAP? What will happen with my current users? Can I hook them to their Blue Pages entry somehow? I don't need to double my user population nor do I want to lose existing relationships.

TIA...Millard

7 answers

Most liked answers ↑|Newest answers|Oldest answers

0
permanent link
Jason Bird (26) | answered Aug 13 '08, 8:59 p.m.
Hi Millard,

It all depends on whether or not your current user ids match those in
LDAP. If the user ids match, then you should be able to shut down the
server, reconfigure teamserver.properties for LDAP, start the server
back up and be golden. Users logging in will only see a change if their
LDAP password is different than their original Jazz password.

For users whose id does not match or who do not have a corresponding
LDAP entry, you'll have to archive the existing user then import the
correct user from the LDAP server. Those users would then login with
their LDAP userid/password.

See https://jazz.net/wiki/bin/view/Main/LDAP4Dummies if you need info on
setting up Jazz for ldap (especially with BluePages).


millarde wrote:
As a matter of expediency, we got started with the Tomcat based
authentication -- but I'm getting tired of making users. :-) Can I
switch to LDAP? What will happen with my current users? Can I hook
them to their Blue Pages entry somehow? I don't need to double my
user population nor do I want to lose existing relationships.

TIA...Millard



--
Jason Bird
Jazz Team
0
permanent link
Millard Ellingsworth (2.5k12431) | answered Aug 14 '08, 12:20 p.m.
FORUM ADMINISTRATOR / JAZZ DEVELOPER
> It all depends on whether or not your current user ids
> match those in LDAP.

As a convention, I used the intranet ID (without the @....ibm) as the user id. So if your intranet ID is BigBob@ca.ibm.com, your current Jazz userID in my system would be BigBob.

Does Blue Pages consider that the user id? Or would it be the whole thing?

Good thing you sent the LDAP for Dummies link. :wink:

Thanks for your help...Millard
0
permanent link
Matt Lavin (2.7k2) | answered Aug 14 '08, 1:55 p.m.
FORUM MODERATOR / JAZZ DEVELOPER
The most common attribute used by Bluepages/LDAP auth is the 'mail'
attribute, which contains the full e-mail of the user. There might be
other attributes available that could be used instead, but I'm not
familiar with those.

Matt Lavin
Jazz Server Team


millarde wrote:
It all depends on whether or not your current user ids
match those in LDAP.

As a convention, I used the intranet ID (without the @....ibm) as the
user id. So if your intranet ID is BigBob@ca.ibm.com, your current
Jazz userID in my system would be BigBob.

Does Blue Pages consider that the user id? Or would it be the whole
thing?

Good thing you sent the LDAP for Dummies link. :wink:

Thanks for your help...Millard
0
permanent link
Balaji Krish (1.8k12) | answered Aug 14 '08, 2:42 p.m.
JAZZ DEVELOPER
There is a primaryuserid field that maps to your short name but I am not sure whether you can use it for bluepages authentication.

--- Balaji
Jazz Server Team
0
permanent link
Haides Di (11) | answered Jun 12 '09, 8:34 a.m.
cool. that is I want

Hi Millard,

It all depends on whether or not your current user ids match those in
LDAP. If the user ids match, then you should be able to shut down the
server, reconfigure teamserver.properties for LDAP, start the server
back up and be golden. Users logging in will only see a change if their
LDAP password is different than their original Jazz password.

For users whose id does not match or who do not have a corresponding
LDAP entry, you'll have to archive the existing user then import the
correct user from the LDAP server. Those users would then login with
their LDAP userid/password.

See https://jazz.net/wiki/bin/view/Main/LDAP4Dummies if you need info on
setting up Jazz for ldap (especially with BluePages).


millarde wrote:
As a matter of expediency, we got started with the Tomcat based
authentication -- but I'm getting tired of making users. :-) Can I
switch to LDAP? What will happen with my current users? Can I hook
them to their Blue Pages entry somehow? I don't need to double my
user population nor do I want to lose existing relationships.

TIA...Millard



--
Jason Bird
Jazz Team
0
permanent link
Brian Wolfe (25613625) | answered Jun 12 '09, 12:03 p.m.
We did that and found that case sensitivity was an issue -- we had a number of people whose email address was in mixed case but their id in tomcat was all lower.

Passwords don't matter since the authentication is done by the external sytem.

We had to archive users who did not match and create new users for them based on the "right" email.

This was particularly a pain for people who have multiple email addresses.
0
permanent link
Harald Lahner (28810) | answered Apr 25 '13, 1:24 a.m.
The LDAP article name has changed. It is named LDAP4Newbies.

Your answer

Register or to post your answer.


Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.