Deploying nested groups in WAS for IBM Domino LDAP service provider

Deploying nested LDAP groups for an IBM Domino LDAP service provider involves specifying flat groups. in the WebSphere Application Server (WAS) wimconfig.xml file.

About this task

Note: This task also can be performed from the WebSphere Application Server (WAS) Integrated Solutions Console (ISC), but an error might occur because the ISC is unable to parse federated repositories configurations that contain a blank base entry.

Groups in Domino are flat groups, which reside in the root level of a LDAP directory and, unlike a hierarchical group, do not have a tree-like structure. To configure WebSphere Application Server to find Domino flat groups, you need to edit the WAS wimconfig.xml file as follows:

Procedure

  1. Locate the wimconfig.xml file and open it with your preferred editor.
    • Linux: /opt/IBM/WebSphere/AppServer/profiles/<profile_name>/config/ cells/<cell_name>/wim/config
    • AIX: /user/IBM/WebSphere/AppServer/profiles/<profile_name>/config/ cells/<cell_name>/wim/config
    • Windows: <drive>:\IBM\WebSphere\AppServer\profiles\<profile_name>\config\cells\ <cell_name>\wim\config
  2. Search for the line <config:baseEntries name="o=ORGX" nameInRepository="o=ORGX"/> and replace it with <config:baseEntries name="" nameInRepository=""/>.
  3. Search for the line <config:participatingBaseEntries name="o=ORGX"/> and replace it with <config:participatingBaseEntries name=""/> .
  4. Be sure the save your updates.