Configuring WCS with LDAP

Posted by Unknown on
WCS supports federated repository configuration while integrating with LDAP, this means you can potentially make use of more than one LDAP server for authenticating Admin and Site users.
WCS uses the underlying WebSphere Member Manager(WMM), the WAS User Registry component for LDAP interaction.

Why do we need LDAP for WCS?
1. An oragnization maintains the internal employee details in an existing LDAP server and you have a requirement to authenicate WCS Admin tools with coporate LDAP server.
2. WCS needs to participate in SSO with other non WCS / non WAS applications.
3. You want to decouple WCS member management component partially from WCS to an independent external storage system.

Are LDAP servers efficient when compared to database?
1. LDAP servers usually have an embedded database within them, Most of the popular LDAP servers in the market make use of Berkeley DB, although some of them support use of more popular databases as backend DB.
2. LDAP is a special type of database which is optimized of READ or SEARCH operations as they are optimized for fast look up  authentication and can support 100's and millions of transactions with a response time of less than 10 milliseconds.
3. LDAP servers have come a long way of evolution and they can now support very complex / distributed and high availability architecture with near zero downtime, It is beyond the scope of this blog to write about all such advantages, do refer to your product documentation or resources on the internet.

What is the overhead of LDAP on WCS?

1. Let's put it straight, Federation is not cheap, they come at a cost, LDAP interaction adds only a negligible overhead on server side processing time, When you look at the cost of Federation traffic which may at times involve interaction/redirects between multiple systems to achieve SSO, they typically add up to the total response time on the browser.

2. Once WCS is configured with LDAP it is not easy to re-configure it to make use of WCS DB for authentication, you essentially have a single point of failure, so if LDAP communication is down site users can not login to the site to perform checkout, although this should not impact Browse and guest checkout behavior, hence it is very important that the LDAP arhictecture should support high availability with near zero downtime.

What are the choices of the LDAP server out there?

I will refrain from talking about commercial ones, Apart from the commercial counterparts there are two very popular open source LDAP servers available as of today
Java Based:
http://opends.java.net/
http://directory.apache.org/

Native Code:
http://www.openldap.org/

What about the instructions?

The instructions in this document are for OpenDS and WCS V7, but you should be able to follow similar configuration steps for any other LDAP servers which are LDAP V3 complaint

https://docs.google.com/document/d/1l_tvc0TQiIqyWTxvda5t4p171CxGk9skA-VvQ8epOhc/edit


29 comments:

  1. Introduction
    http://www.21cssindia.com/courses/ldap-online-training-103.html
    LDAP - Overview
    A brief History of LDAP - LDAP Overview - LDAP vs. Database - LDAP Usage Summary
    LDAP Data (Object) Model - Object Tree Structure - Attributes - Object Classes
    Employees to learn at their own pace and maintain control of learning “where, when and how” with boundless access 24/7by 21st Century Software Solutions. contact@21cssindia.com ---- Call Us +919000444287

    ReplyDelete
  2. Thank you very much, your blog commenting lists are great help to me in building inbound links to my blog by Hybris Training

    ReplyDelete
  3. An excellent job opportunity in Hybris Training for JAVA professionals who are seeking for job or looking to change to latest and advanced technologies.

    ReplyDelete
  4. This comment has been removed by the author.

    ReplyDelete
  5. This comment has been removed by the author.

    ReplyDelete
  6. This comment has been removed by the author.

    ReplyDelete
  7. Thank you very much, your blog commenting lists are great help to me.By Visualpath Hybris Training

    ReplyDelete
  8. Thanks for sharing your info. I really appreciate your efforts and I will be waiting for your further write TSM Training

    ReplyDelete
  9. Hello Hari

    We are trying to integrate WCS with OpenLDAP only for the Commerce Accelerator . Is there any way where we can update or create the Usergroup in ldap on basis of Roles the user has in WCS .

    For instance create a group "Site Admin" in ldap for a user who is already present in wcs with role of "Site Admin" while we sync the user details from wcs to ldap .

    Thanks

    ReplyDelete
  10. Excellent analysis , Speaking of which , if your business has been looking for a GSA Pre-Lease Building Security Plan , my family filled out and esigned a sample version here http://pdf.ac/aszy0Z.

    ReplyDelete
  11. I have seen your post .I listed some jobs on Devops so please visit my link ....https://www.perfectprofile.net/search-jobs/devops-jobs-in-hyderabad/

    ReplyDelete
  12. Exclusive post. Thanks for sharing.
    I would like to share my website with you which about OrangeHRM LDAP Integeration Module

    ReplyDelete
  13. I really appreciate information shared above. It’s of great help. I am very happy to read your post. It is really very helpful for us and I have gathered some important information from this blog.
    grepthor

    ReplyDelete
  14. This is the exact information I am been searching for, Thanks for sharing the required infos with the clear update and required points. To appreciate this I like to share some useful information regarding Microsoft Azure which is latest and newest,

    Regards,
    Ramya

    Azure Training in Chennai
    Azure Training Center in Chennai
    Best Azure Training in Chennai
    Azure Devops Training in Chenna
    Azure Training Institute in Chennai
    Azure Training in Chennai OMR
    Azure Training in Chennai Velachery
    Azure Online Training
    Azure Training in Credo Systemz
    DevOps Training in Credo Systemz

    ReplyDelete
  15. This comment has been removed by the author.

    ReplyDelete
  16. Great Post with lots of useful informations. Excellent blog very much interesting...
    SAP Training in Chennai | AWS Training in Chennai | SAP Training | AWS Training

    ReplyDelete

  17. Thanks for sharing,got lot of useful information.Keep Updating more.If one want to learn depth Data science training institute in btm layout is the best course to start with.

    ReplyDelete
  18. Blogs and articles are popular forms LookMovie Alternatives in 2023 of written content that provide information, opinions, and insights on various topics.

    ReplyDelete

  19. While configuring WCS with LDAP for seamless integration, remember to prioritize your well-being. Explore Dentists In Delhi to ensure a healthy smile while navigating the technical intricacies. Your dental health matters as much as your system configurations.

    ReplyDelete
  20. Configuring WCS (Wireless Control System) with LDAP (Lightweight Directory Access Protocol) streamlines network management by integrating user authentication and access control. This enhances security and simplifies administration. Just as a dinosaur statue commands attention with its presence, WCS-LDAP integration ensures efficient network operations, leaving room for admiration of other aspects of your IT infrastructure.

    ReplyDelete