Global security configuration applies to the security policy for all administrative functions and is used as a default security policy for user applications. Security domains can be defined to override and customize the security policies for user applications.
Login to WebSphere 7 admin console, navigate to Security –> Global Security.
Global security settings
2.Enable administrative security option.
3.Configure user account repository.
Select “Standalone LDAP Registry” from the drop down of “User Account Repository” à configure
4.Define the LDAP configuration details in the next page.
Specify the below properties.
Primary administrative user name: Specifies the name of a user with administrative privileges that is defined in your custom user registry
Type of LDAP Server: Since we are using Open DS for the illustration, select ‘Custom’ from the drop down.
Click on “Test Connection” button to check the ldap configuration settings. Save the changes
5.Modify the Advanced LDAP User Registry Settings.
Define the User Filter to use (objectclass=inetOrgPerson), since it resonates to the LDAP user registry objectclass settings.
6.Set the LDAP registry as Current realm definition.
7.Restart the WebSphere Application server.
8.Login into the admin console using the operator from the LDAP Server.
After the installation with WebSphere Application server one of the most common task is creating the profiles and federating it with Dmgr which comes as part of an L3/L4 job.
But, the most important and commonly performed task is administration of websphere environment. Unlike the installation or creation or configuration, administration is a Day-Day task which is most comfortable, if we are equipped with some of the commonly used HANDY commands provided by WebSphere Application server. This referenced article explains those most of these handy commands with syntax, when and how to use with an example:-
1) Backup config: Backup config command is used to take the backup of configuration information of your profiles in zip format. This command is mainly used when we want to upgrade, migrate or for anything where our profile configuration impacts.
4) genHistoryReport:It generates an HTML report of recent configuration changes done at profile level. This is generally used when we want to present client an audit report about the profile level environment (.i.e. changes done in my profile).
6) collector: Collector command generates complete information about websphere application server with reference to OS and its environment in JAR format containing information about property files, logs, etc. This method is deprecated in WAS7.0 and replanced by AutoPD
Syntax: DmgrProfile>bin>./ collector.sh
DmgrProfile>bin>./ collector.sh –profileName profile_name(with reference to profile)