Configure the LDAP client certificate filter.
Procedure
- Using the WebSphere® Application
Server administrative console, click .
- In the User account repository section,
select Standalone LDAP registry from the Available
realm definitions list and click Configure.
- In the Additional Properties section,
click Advanced Lightweight Directory Access Protocol (LDAP)
user registry settings.
- Select CERTIFICATE_FILTER from the Certificate
map mode list.
- Enter an LDAP filter string in the Certificate
filter text field. The filter is used to map
attributes in the client certificate to entries in the LDAP directory. For example, the following filter maps the SubjectCN field
in the client certificate to the uid field in the
LDAP directory: uid=${SubjectCN}.
- Click Apply. Then, click Save.
- Repeat steps 1-6 to configure additional LDAP search filters,
as needed. For more information about configuring LDAP search filters,
see the WebSphere Application Server Information Center (V8.0, V8.5).