Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 1 of 36
Implementing IBM Security Directory Server (SDS) to be used to test and demonstration
LDAP integration with Netcool products
Alaa Farrag (farragegibmcom)
Revision 10
Date 03-07-2016
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 2 of 36
Contents 1 Introduction 3
2 Required Packages 3
3 Install IBM Installation Manager V184 using root user 3
4 Install IBM Security Directory Server 64 7
5 Create SDS default instance 15
6 Initial configuration of SDS instance 18
7 Configure DASH to authenticate using SDS LDAP 23
8 Configure DASH to use SDS repository when creating new usersgroups 29
9 Create the default webGUI users (will be created now in SDS LDAP) 35
10 Important Administration commands 36
11 References 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 3 of 36
1 Introduction
The aim of this document is to describe how to in install and configure IBM Security Directory Server (SDS) to be used when testing or demonstrating LDAP integration with IBM Netcool products (especially when single sign-on SSO is needed)
Normally in production environments the customer will have his own LDAP implementation and in this case Netcool specialist will only need to focus on the LDAP integration part
IBM SDS is used to be known as TDS (Tivoli Directory server)
2 Required Packages IBM Security Directory Server V64 Client-Server ISO without ent (CN487ML) (sds64-linux-x86-64iso) IBM Installation Manager 184 httpwww-01ibmcomsupportdocviewwssuid=swg24040291 OS Version RHEL 64 64bit Install OS prerequisites packages [rootnoi14 ~] yum install libstdc++so6 [rootnoi14 ~] yum install pam-111-13el6i686 [rootnoi14 ~] yum install sg3_utils [rootnoi14 ~] yum install gcc-c++ Note you can use db2prereqcheck script packed with db2 installable image (included in SDS iso image) to validate db2 prerequisites mediaibm_db2db2prereqcheck
3 Install IBM Installation Manager V184 using root user [rootnoi14 ~] cd srcIM [rootnoi14 IM] unzip agentinstallerlinuxgtkx86_64_18400120160217_1716zip [rootnoi14 IM] install
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 4 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 5 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 2 of 36
Contents 1 Introduction 3
2 Required Packages 3
3 Install IBM Installation Manager V184 using root user 3
4 Install IBM Security Directory Server 64 7
5 Create SDS default instance 15
6 Initial configuration of SDS instance 18
7 Configure DASH to authenticate using SDS LDAP 23
8 Configure DASH to use SDS repository when creating new usersgroups 29
9 Create the default webGUI users (will be created now in SDS LDAP) 35
10 Important Administration commands 36
11 References 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 3 of 36
1 Introduction
The aim of this document is to describe how to in install and configure IBM Security Directory Server (SDS) to be used when testing or demonstrating LDAP integration with IBM Netcool products (especially when single sign-on SSO is needed)
Normally in production environments the customer will have his own LDAP implementation and in this case Netcool specialist will only need to focus on the LDAP integration part
IBM SDS is used to be known as TDS (Tivoli Directory server)
2 Required Packages IBM Security Directory Server V64 Client-Server ISO without ent (CN487ML) (sds64-linux-x86-64iso) IBM Installation Manager 184 httpwww-01ibmcomsupportdocviewwssuid=swg24040291 OS Version RHEL 64 64bit Install OS prerequisites packages [rootnoi14 ~] yum install libstdc++so6 [rootnoi14 ~] yum install pam-111-13el6i686 [rootnoi14 ~] yum install sg3_utils [rootnoi14 ~] yum install gcc-c++ Note you can use db2prereqcheck script packed with db2 installable image (included in SDS iso image) to validate db2 prerequisites mediaibm_db2db2prereqcheck
3 Install IBM Installation Manager V184 using root user [rootnoi14 ~] cd srcIM [rootnoi14 IM] unzip agentinstallerlinuxgtkx86_64_18400120160217_1716zip [rootnoi14 IM] install
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 4 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 5 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 3 of 36
1 Introduction
The aim of this document is to describe how to in install and configure IBM Security Directory Server (SDS) to be used when testing or demonstrating LDAP integration with IBM Netcool products (especially when single sign-on SSO is needed)
Normally in production environments the customer will have his own LDAP implementation and in this case Netcool specialist will only need to focus on the LDAP integration part
IBM SDS is used to be known as TDS (Tivoli Directory server)
2 Required Packages IBM Security Directory Server V64 Client-Server ISO without ent (CN487ML) (sds64-linux-x86-64iso) IBM Installation Manager 184 httpwww-01ibmcomsupportdocviewwssuid=swg24040291 OS Version RHEL 64 64bit Install OS prerequisites packages [rootnoi14 ~] yum install libstdc++so6 [rootnoi14 ~] yum install pam-111-13el6i686 [rootnoi14 ~] yum install sg3_utils [rootnoi14 ~] yum install gcc-c++ Note you can use db2prereqcheck script packed with db2 installable image (included in SDS iso image) to validate db2 prerequisites mediaibm_db2db2prereqcheck
3 Install IBM Installation Manager V184 using root user [rootnoi14 ~] cd srcIM [rootnoi14 IM] unzip agentinstallerlinuxgtkx86_64_18400120160217_1716zip [rootnoi14 IM] install
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 4 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 5 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 4 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 5 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 5 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 6 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 7 of 36
4 Install IBM Security Directory Server 64 Login as root and Mount SDS iso image [rootnoi14 ~] cd srcSDS [rootnoi14 SDS] mount -o loop sds64-linux-x86-64iso media Start IBM Installation Manager using the following command [rootnoi14 SDS] optIBMInstallationManagereclipseIBMIM Add SDS repository mediaibm_sdsrepositoryconfig as shown in the below screen capture
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 8 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 9 of 36
Install SDS as shown in the following screen captures
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 10 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 11 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 12 of 36
Note GSKit is required only if SSL based LDAP operations are needed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 13 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 14 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 15 of 36
5 Create SDS default instance [rootnoi14 ~] optibmldapV64sbinidsxinst
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 16 of 36
Note and set instance owner password encryption seed amp admin DN password In this example object00 is used for all the passwords and netcool12345 is used as encryption seed
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 17 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 18 of 36
6 Initial configuration of SDS instance Create Suffix and base DN Add a new suffix [rootnoi14 ~] optibmldapV64sbinidscfgsuf -I dsrdbm01 -s dc=demodc=ibmdc=com Start the direcotry server [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Add a new base DN Create a file with the following content [rootnoi14 ~] cat tmpdccomldif dndc=demodc=ibmdc=com objectclassdomain Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpdccomldif Add netcool_users organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 19 of 36
dn ou=netcool_usersdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_users Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Add netcool_groups organization unit Create a file with the following content [rootnoi14 ~] cat tmpouldif dn ou=netcool_groupsdc=demodc=ibmdc=com objectClass top objectClass organizationalUnit ou netcool_groups Add the file content to the directory server using the following command [rootnoi14 ~] optibmldapV64binidsldapadd -D cn=root -w object00 -p 389 -f tmpouldif Access SDS using Apache LDAP studio Download and install Apache LDAP studio from the following URL httpdirectoryapacheorgstudio
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 20 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 21 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 22 of 36
You can browse the SDS LDAP instance through Apache LDAP Studio to ensure the configuration has been applied successfully as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 23 of 36
7 Configure DASH to authenticate using SDS LDAP Login as netcool user (user used to install JazzSMDASH) Backup the websphere security file as per the following cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV1 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select manage usersmanage groups and remove the default webGUI users and groups (they will be recreated after making the necessary LDAP configuration) ncoadmin ncouser Netcool_Omnibus_Admin Netcool_Omnibus_User Remove Objectserver authentication repository as shown below
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 24 of 36
Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 25 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 26 of 36
Logout the websphere administration console Retart the JazzSMDASH server Backup the websphere security file again as per the following [netcoolnoi14 ~]$ cp optIBMJazzSMprofileconfigcellsJazzSMNode01Cellwimconfigwimconfigxml optIBMJazzSMprofileconfigcellsJazzSMNode01CellwimconfigwimconfigxmlbkpV2 Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Select Global security configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 27 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 28 of 36
Click OK and save
Click ok and save The following shows repositories after configuration
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 29 of 36
8 Configure DASH to use SDS repository when creating new usersgroups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 30 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 31 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 32 of 36
Configure DASH to use the configured LDAP server to create new users and groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 33 of 36
Enable access to the DASH (using smadmin filebased user) when the LDAP server is not available
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 34 of 36
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 35 of 36
Save the configuration and restart the DASH server as per the following [CLI]$ optIBMJazzSMprofilebinstopServersh server1 -username smadmin -password object00
Ensure all java processes associated with DASH have been stopped
[CLI]$ optIBMJazzSMprofilebinstartServersh server1
9 Create the default webGUI users (will be created now in SDS LDAP)
Launch websphere administration console and login using smadmin httpsdashdemoibmcom16316ibmconsole Create the following groups
(1) Netcool_Omnibus_Admin (2) Netcool_Omnibus_User
Create the following users
(1) ncoadmin member in Netcool_OMNIbus_Admin Netcool_OMNIbus_User Public groups (2) ncouser member in Netcool_OMNIbus_User Public groups
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
Document Implementing IBM (SDS) to be used to test and demonstration LDAP integration with Netcool Page 36 of 36
Launch DASH and login using smadmin httpsdashdemoibmcom16311ibmconsole
Assign the following roles to each group
(1) Netcool_OMNIbus_Admin [ncw_user ncw_gauges_editor ncw_admin ncw_dashboard_editor netcool_rw]
(2) Netcool_OMNIbus_User[ncw_user netcool_ro] Note you can customize the roles of each group to match your needs
10 Important Administration commands Start SDS instance login as root and start the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 Stop SDS instance login as root and stop the directory server using the following command [rootnoi14 ~] optibmldapV64sbinibmslapd -I dsrdbm01 -k
11 References IBM Security Directory Server 64 installation guide httpswwwibmcomsupportknowledgecenterSSVJJU_640comibmIBMDSdoc_64ds_ig_homehtml IBM Security Directory Server 64 prerequisites report httpwww-969ibmcomsoftwarereportscompatibilityclarity-reportsreporthtmlsoftwareReqsForProductdeliverableId=1404412255415amposPlatforms=LinuxampduComponentIds=S003|S001|S002|S004|A006|A007|A008|A005ampmandatoryCapIds=30|12|9|13|25|32|26
