Was and Domino needed to share a user registry, Domino does not support custom user registry
One. Domino Aspect
Configure and start Lotus Domino's LDAP Service configuration and start Lotus Domino's LDAP Service
N Fields: mycompany.com
N LDAP domain name: ldap.mycompany.com
N LDAP Base dn:dc=mycompany,dc=com
and add the following users to LDAP:
N wasadmin/password:cn=wasadmin,dc=mycompany,dc=com
N wasbind/password:cn=wasbind,dc=mycompany,dc=com
N admin/password:cn=admin,dc=mycompany,dc=com
Two. was aspect
1. User registry, access to the console "security" → "global Security" → "User Registry" → "LDAP"
Server User id: cn=wasadmin,dc=mycompany,dc=com
Server user password: password
Type: Domino
Host: ldap.mycompany.com
PORT: 389
Basic proprietary Name: Dc=mycompany,dc=com
Binding proprietary Name: cn=wasbind,dc=mycompany,dc=com
Bind Password: password
2. Authentication mechanism
"Security" → "global Security" → "Authentication" → "Authentication mechanism" → "LTPA"
Password: password
Confirm Password: password
Its single sign-on configuration
Domain Name: mycompany.com
3. Enable global security
"Security" → "Global security", check the "Enable global security" option, remove "Mandatory java2 security", the Active Protocol Select "CSI and SAS", Activity authentication mechanism Select "Lightweight third party authentication (LTPA)", Active user Registry Select "Lightweight Directory Access Protocol (LDAP) User Registration Form "
4. Save the settings above. Add Console User: Wasdmin,admin,wasbind
5. Restart was, enter the console, "security" → "global Security" → "Authentication" → "Authentication mechanism" → "LTPA", fill in the key file name Ltpa.key, click "Generate Key", then click "Export Key", in the was directory appears ltpa.key file.