Setting member and membership attributes for LDAP performance

Configure the group membership attribute for improved performance when searching for a group membership relationship. Every LDAP entry includes this attribute to indicate the groups to which the current entry belongs. If your LDAP server supports the group membership attribute, specify this attribute. If your LDAP server does not support the group membership attribute, the LDAP repository can search for groups by using the group member attributes, but performance might be slower.

Procedure

  1. On the deployment manager for the SIP Proxy/Registrar (this is usually the Sametime® System Console), log on to the WebSphere® Integrated Solutions console as the WebSphere administrator.
  2. Click Security > Global security.
  3. In the User account repository section, click Configure.
  4. In the list of repositories in the realm table, click the LDAP server identifier.
  5. In the Additional Properties section, click Group attribute definition.
  6. In the name of group membership attribute field, type the attribute name.
  7. Click OK.
  8. Save the change to the master configuration by clicking the Save link in the "Messages" box at the beginning of the page.