E
dit
A
ttach
P
rintable
r3 - 2017-08-07 - 17:09:07 - Main.ktessier
You are here:
TWiki
>
Deployment Web
>
DeploymentInstallingUpgradingAndMigrating
>
IBMQuickDeployer
>
IBMQuickDeployerSetupAndRun
>
IBMQuickDeployerChangeDefaultLDAPParameters
<div id="header-title" style="padding: 10px 15px; border-width:1px; border-style:solid; border-color:#FFD28C; background-image: url(<nop>https://jazz.net/wiki/pub/Deployment/WebPreferences/TLASE.jpg); background-size: cover; font-size:120%"> ---+!! IBM Quick Deployer change default LDAP parameters <img src="https://jazz.net/wiki/pub/Deployment/WebPreferences/updated.png" alt="updated.png" width="50" height="50" align="right"> %DKGRAY% %INCLUDE{"IBMQuickDeployerInsertAuthorBuildBasis"}% %ENDCOLOR%</div></sticky> <!-- Page contents top of page on right hand side in box --> <sticky><div style="float:right; border-width:1px; border-style:solid; border-color:#DFDFDF; background-color:#F6F6F6; margin:0 0 15px 15px; padding: 0 15px 0 15px;"> %TOC{title="Page contents"}% </div></sticky> <sticky><div style="margin:15px;"></sticky> Before you run the !UrbanCode Deploy *Install Applications* application process, you must set the default LDAP parameters. You can set these parameters when you run the [[IBMQuickDeployerInstallingIntoUCD][installer]] by entering the values in the ldap.properties file, which is included in the Quick Deployer package. Alternatively, you can set the parameters by running the *Change Default LDAP Parameters* application process. Once you have a working set of LDAP parameters, you can permanently change the default values by following the instructions in the [[IBMQuickDeployerModifyChangeDefaultLDAPParametersDefaults][Modify Change Default LDAP Parameters Defaults]] wiki page. ---++Change default LDAP parameters 1. Open application *Rational_QD_60x* and run process *Change Default LDAP Parameters* on the target environment <br/><br/><img src="%ATTACHURLPATH%/CDLP_1.png" alt="run process"><br/><br/> 1. If you fixed the component versions on the process you will not be prompted to choose versions. If offered to choose the component versions, then select Latest Available. <br/><br/><img src="%ATTACHURLPATH%/CDLP_2.png" alt="select Latest Available"><br/><br/> 1. Modify the process property default values to match your LDAP server. <br/><br/><font color="red">Note - When an LDAP property contains a comma separated list of values there can not be any spaces in or between the values in the list.</font> <br/><br/>More information about each property can be found at one of the following external sites * [[https://jazz.net/jazzdocs/index.jsp?topic=/com.ibm.team.install.doc/topics/c_plan_identity_management.html][Managing Jazz users with LDAP]] * [[http://www-01.ibm.com/support/knowledgecenter/SS7JFU_6.1.0/com.ibm.websphere.express.doc/info/exp/ae/tsec_ldap.html?cp=SS7JFU_6.1.0%2F1-7-9-9-0-1-0-2][Configuring WAS LDAP general registry settings]] * [[http://www-01.ibm.com/support/knowledgecenter/SS7JFU_6.1.0/com.ibm.websphere.express.doc/info/exp/ae/usec_advldap.html?cp=SS7JFU_6.1.0][Configuring WAS LDAP advanced registry settings]] <br/><br/>The properties are as follows * *LDAP Vendor* : TDS - IBM Tivoli Directory Server <br/> _Default_ : TDS * *LDAP Hostname* : The fully qualified hostname of the LDAP <br/> _Default_ : localhost * *LDAP Port* : The port to use to connect to LDAP <br/> _Default_ : 389 * *Group member ID map* : Specifies the LDAP filter that identifies user-to-group relationships. <br/> _Default_ : *:member * *User ID map* : Specifies the LDAP filter that maps the short name of a user to an LDAP entry <br/> _Default_ : *:uid * *User filter* : Specifies the LDAP user filter that searches the user registry for users <br/> _Default_ : (&(uid=%v)(objectclass=inetOrgPerson)) * *Group ID map* : Specifies the LDAP filter that maps the short name of a group to an LDAP entry <br/> _Default_ : *:cn * *Group filter* : Specifies the LDAP group filter that searches the user registry for groups <br/> _Default_ : (&(cn=%v)(objectclass=groupOfUniqueNames)) * *Bind distinguished name* : The bind DN is required if anonymous binds are not possible on the LDAP server to obtain user and group information. If the LDAP server is set up to use anonymous binds, leave this field blank. <br/> _Default_ : none * *Bind password* : the password corresponding to the bind DN <br/> _Default_ : none * *Base distinguished name* : The base DN indicates the starting point for searches in this LDAP directory server. <br/> _Default_ : ou=people,dc=jazz,dc=net * *LDAP Registry Location* : The location of the LDAP registry <br/> _Default_ : ldap://localhost:389 * *Base User DN* : Base distinguished name of users in the LDAP registry. <br/> _Default_ : ou=people,dc=jazz,dc=net * *Base Group DN* : Base distinguished name of the Jazz application groups in the LDAP registry <br/> _Default_ : ou=JazzGroups,dc=jazz,dc=net * *Jazz to LDAP Group Mapping* : Mapping between Jazz groups and LDAP groups. One Jazz group can be mapped to multiple LDAP groups. The LDAP groups must be separated by a semi colon. For example, !JazzAdmins=LDAPAdmins1;LDAPAdmins2 maps !JazzAdmins group to LDAPAdmins1 and LDAPAdmins2. <br/> _Default_ : !JazzAdmins=JazzAdmins, !JazzUsers=JazzUsers, !JazzProjectAdmins=JazzProjectAdmins, !JazzGuests=JazzGuests * *Group Name Property* : Property to represent the name of the Jazz groups in the LDAP registry. <br/> _Default_ : cn * *Group Member Property* : Property to represent the members of a group in the LDAP registry. <br/> _Default_ : members * *User Property Names Mapping* : Mapping of Jazz user property names to LDAP registry entry attribute names. The mapping should be represented as {contributorAttributeName1}={LDAPEntryAttributeName1}, {contributorAttributeName2}={LDAPEntryAttributeName2}... <br/> _Default_ : userId=uid,name=cn,emailAddress=mail * *findGroupsForUserQuery* : Query String to find Groups containing a User <br/> _Default_: member={USER-DN} * *LDAP Jazz Admins Group* : Map the Jazz Admins group to corresponding LDAP groups. <br/> _Default_: cn\=JazzAdmins,dc\=domain * *LDAP Jazz Users Group* : Map the Jazz Users group to corresponding LDAP groups. <br/> _Default_: cn\=JazzUsers,dc\=domain * *LDAP Jazz Guests Group* : Map the Jazz Guests group to corresponding LDAP groups. <br/> _Default_: cn\=JazzGuests,dc\=domain * *LDAP Jazz Project Admins Group* : Map the Jazz Project Admins group to corresponding LDAP groups. <br/> _Default_: cn\=JazzProjectAdmins,dc\=domain * *LDAP Registry User* : User name to access LDAP registry. Anonymous mode is used if user name and password are not specified. <br/> _Default_ : none * *LDAP Registry Password* : Password to access LDAP registry. Anonymous mode is used if user name and password are not specified. <br/> _Default_ : none <br/><br/> 1. Click on *Submit* and wait for the process to run to completion <br/><br/><img src="%ATTACHURLPATH%/CDLP_4.png" alt="wait for completion"><br/><br/> %INCLUDE{"IBMQuickDeployerInsertMiscellaneous"}% <sticky></div></sticky>
E
dit
|
A
ttach
|
P
rintable
|
V
iew topic
|
Backlinks:
We
b
,
A
l
l Webs
|
H
istory
: r3
<
r2
<
r1
|
M
ore topic actions
Deployment.IBMQuickDeployerChangeDefaultLDAPParameters moved from Deployment.IBMQuickDeployerChangeDefaultLDAPParametersV20 on 2017-07-28 - 21:17 by Main.ktessier
-
Deployment
Deployment web
Planning and design
Installing and upgrading
Migrating and evolving
Integrating
Administering
Monitoring
Troubleshooting
Community information and contribution guidelines
Create new topic
Topic list
Search
Advanced search
Notify
RSS
Atom
Changes
Statistics
Web preferences
NOTE: Please use the Sandbox web for testing
Status icon key:
To do
Under construction
New
Updated
Constant change
None - stable page
Smaller versions of status icons for inline text:
Copyright © by IBM and non-IBM contributing authors. All material on this collaboration platform is the property of the contributing authors.
Contributions are governed by our
Terms of Use.
Please read the following
disclaimer
.
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more
here
.