Warm tip: This article is reproduced from stackoverflow.com, please click
wso2 wso2is

WSO2 IS Create a secondary user store using internal LDAP

发布于 2020-04-20 10:51:39

I need to organize users in WSO2 IS 5.9 in several user stores (secondaries). Can I do this using the WSO2 IS internal LDAP? I do not have any other external user store (ldap, ad, ...)

About this way to organize users, is there another way to group users in the primary user store, so that I can use a specific user store/group with a defined service provider?

Questioner
fipries
Viewed
55
分享
Buddhima Udaranga 2020-02-05 19:39

About the first question, the answer is no. Internal embedded LDAP is the primary user store. You cannot use that as the secondary user store. Also, it is not recommended to use embedded LDAP in production. So it will be good to set up an external LDAP server so you can connect to that using identity server and make it the user store. [1]

About the second question, my suggestion is when creating an SP there is a hybrid role that creates automatically for that service provider. You can assign that role to users that you need to group based on the service provider. [2]

[1]. https://is.docs.wso2.com/en/5.9.0/setup/configuring-secondary-user-stores/

[2]. https://is.docs.wso2.com/en/5.9.0/learn/configuring-roles-and-permissions-for-a-service-provider/

Related issues

1
Create Service Provider with Oauth2 with SOAP
2
WSO2 Integration Studio doesn't work on MacOS BigSur
3
WSO2 identity server: phone fields using SCIM don't accept numbers
4
API for specific users WSO2 Api Manager
5
Trying to deploy new API to WSO2 server
6
Configuring CORS at WSO2 microintegrator with Integrator Studio
7
WSO2 API Manager download API Definition
8
Is it possible to use the $SYSTEM prefix in the <args> section of payloadFactory mediator?
9
WSO2 SSO always redirects to localhost:9443/samlsso
10
Can I use WSO2 Microgateway with any RestAPI or Publisher support without CLI?