Configuring SSO between WebSphere and Domino

Was and Domino needed to share a user registry, Domino does not support custom user registry

One. Domino Aspect

Configure and start Lotus Domino's LDAP Service configuration and start Lotus Domino's LDAP Service

N Fields: mycompany.com

N LDAP domain name: ldap.mycompany.com

N LDAP Base dn:dc=mycompany,dc=com

and add the following users to LDAP:

N wasadmin/password:cn=wasadmin,dc=mycompany,dc=com

N wasbind/password:cn=wasbind,dc=mycompany,dc=com

N admin/password:cn=admin,dc=mycompany,dc=com

Two. was aspect

1. User registry, access to the console "security" → "global Security" → "User Registry" → "LDAP"

Server User id: cn=wasadmin,dc=mycompany,dc=com

Server user password: password

Type: Domino

Host: ldap.mycompany.com

PORT: 389

Basic proprietary Name: Dc=mycompany,dc=com

Binding proprietary Name: cn=wasbind,dc=mycompany,dc=com

Bind Password: password

2. Authentication mechanism

"Security" → "global Security" → "Authentication" → "Authentication mechanism" → "LTPA"

Password: password

Confirm Password: password

Its single sign-on configuration

Domain Name: mycompany.com

3. Enable global security

"Security" → "Global security", check the "Enable global security" option, remove "Mandatory java2 security", the Active Protocol Select "CSI and SAS", Activity authentication mechanism Select "Lightweight third party authentication (LTPA)", Active user Registry Select "Lightweight Directory Access Protocol (LDAP) User Registration Form "

4. Save the settings above. Add Console User: Wasdmin,admin,wasbind

5. Restart was, enter the console, "security" → "global Security" → "Authentication" → "Authentication mechanism" → "LTPA", fill in the key file name Ltpa.key, click "Generate Key", then click "Export Key", in the was directory appears ltpa.key file.