cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

LDAP access: Change Unique ID

Former Member

on ‎09-29-2004 3:59 PM

0 Kudos

Hi,

currently our EP6SP2Patch4Hf5 Portal is connected via the default dataSourceConfiguration_ads_readonly_db.xml file to our LDAP. As the unique ID something liked USER.CORP_LDAP.cn=lastname, firstname, ou=users,dc=mydomain,dc=com is used. In our LDAP there are plenty other entries and I would like to use the Email Adress as the unique ID.

Does anyone know how I can tell the portal (probably by creating a new dataSourceConfiguration file) to use this LDAP entry for the unique ID instead of the one I am currently using?

Thanks for any help,

Holger.

Message was edited by: Holger Bruchelt

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎06-06-2005 1:43 PM
0 Kudos

Please understand all the implications of 777640. KMC has dependencies on the full dn of a user and when you change the unique ID you break personalization and KM links. This is fine to do on a newly installed system and in the special cases described in the note - but please read and understand the whole note prior to implementing it.

Nick

Show replies
Show replies
Former Member
‎09-30-2004 8:45 PM
0 Kudos

Hi Holger,

Please have a look at OSS note 777640.

Herve

Show replies
Show replies
Former Member
‎10-01-2004 12:54 PM
0 Kudos

Thanks for that information. I will try to apply this note!

Holger.

Former Member
‎10-06-2004 12:39 PM
0 Kudos

Hi Herve,

hopefully you are still watching this thread. Unfortunately I was not able to implement this note. Whenever I added the settings

ume.ldap.unique_user_attribute=...

ume.ldap.unique_uacc_attribute=...

I was not able to log on to the portal anymore.

Were you able to change these settings successfully? Could you post an example?

Best regards,

Holger.

Former Member
‎10-18-2004 6:05 PM
0 Kudos

Holger.. did you ever get this to work .. I will soon be doing the same..

Former Member
‎10-19-2004 8:01 AM
0 Kudos

Hi John,

there are two notes which deals with that problem:

777640, 718383

We finally got it working with SP2 Patch 4 (it does not work with Patch 3). And you cannot use any field from the ADS (we wanted to use the objectGUID which is the only real unique and constant key in the ADS, but the portal can't handel that).

So we ended up using the Email (userPrinipcalName).

One thing which concerns me: in note 718383 it says "For productive systems the user management data sources must not be changed"

I have an OSS call open to clarify this question.

One last thing: as soon as you change these settings all users lose their role and group assignment. We exported this information first and then did a complete reimport of the assignment.

Hope this helps,

Holger.

martin_eberle
Explorer
‎06-06-2005 1:33 PM
0 Kudos

Hi Holger

How did you export your setting (I assume you mean the assignments of user-role and user-group)?

Thanks Martin

Ask a Question