508 WebSphere Portal Express and Express Plus V5 for the IBM Eserver iSeries Server
Adding WebSphere Portal directory entries into LDAP
To configure WebSphere Portal authentication with LDAP, you have to create some
fundamental directory entries. You must to create at least one user and one users’ group,
which are used during authentication.
There are a couple of ways to create directory structure. We use Qshell LDAP commands.
Qshell commands do not give the possibility to work with a graphical interface, but do not
require you to install any additional software.
To add entries into the LDAP directory server structure, you can use a template LDIF file
which is already pre-prepared. You can find this file in the root directory of the WebSphere
Portal install CD.
1. Find the
PortalUsers.ldif file on the WebSphere Portal installation CD and copy it to your
2. Open the
PortalUsers.ldif file in any text editor.
3. This is an already pre-built file. You only have to change information about your company
entry. To to this, replace each
<yourco> string occurrence with the value that corresponds
to your company.
Figure B-10 shows a sample of the PortalUsers.ldif file used in this scenario.
Figure B-10 Sample LDIF file
4. Save the updated PortalUsers.ldif file and copy it into the integrated file system (IFS) of
your iSeries server.
5. To create directory entries based on your LDIF file:
a. Open a Qshell command prompt:
b. Run the ldapadd command as follows:
ldapadd -h host name -D cn=<ldap-admin-userid> -w <ldap-admin-password>
Attention: You have to change the LDIF file to match the suffix you added to the IBM
Directory Server. If the suffix that you added looks is similar to
each occurrence of the
<yourco> string with the krak string.
# Add lines according to this scheme that correspond to your suffix