Configuring connection credentials

About this task

Use the following properties to set valid credentials for connecting to the LDAP server.
Note: Check that a successful connection to the LDAP browser can be established by using these credentials to verify that they are valid.

Procedure

  1. Edit the ldap.properties file.
  2. Configure the following properties.
    ldap.connectionName
    The user name that is used to authenticate to a read-only LDAP connection. If left not set, an anonymous connection is attempted. For example, administrator@mydomain.mycompany.com.
    ldap.connectionPassword
    The password that is used to establish a read-only LDAP connection. The password can be entered here in plain text or it can be encrypted.
    ldap.connectionPasswordEncrypted
    True
    The LDAP password is encrypted.
    False
    The LDAP password is not encrypted and entered as plain text.

    Use the following method to generate the encrypted password.

    In a Windows® system.

    1. Open a command prompt window and type 
      cd [installdir]\wlp\usr\servers\trcserver\apps\TRCAPP.ear\trc.war\
WEB-INF\lib
      where installdir is the IBM® BigFix® Remote Control server installation directory For example, 
      cd \Program Files\IBM\Tivoli\TRC\server\wlp\usr\servers\trcserver\
apps\TRCAPP.ear\trc.war\WEB-INF\lib
    2. Type the following command

      java -cp ./trc.jar com.ibm.uk.greenock.authentication.Encrypt <password>

      Where password is the LDAP password to be encrypted

      For example,

      java -cp ./trc.jar com.ibm.uk.greenock.authentication.Encrypt myPassw0rd

      Note: This command is all on one line with a space between jar and com.
    3. The following output from the command can be displayed.

      Encrypted Password : [encrypted password]

      Decrypted Password : [text version of password ]

      For example,

      Encrypted Password: 10|ydEBl67atSSbrAA=

      Decrypted Password: myPassw0rd

      Edit the ldap.properties file and set the ldap.connectionPassword property to the encrypted password value. The decrypted password is shown to verify that the encryption is valid.

    In a UNIX or Linux® system.

    1. Open a terminal window and type 
      [installdir]/wlp/usr/servers/trcserver/apps/TRCAPP.ear/trc.war/
WEB-INF/lib
      where installdir is the IBM BigFix Remote Control server installation directory
    2. Type the following command

      java -cp ./trc.jar com.ibm.uk.greenock.authentication.Encrypt <password>

    3. The output from the command is the following

      Encrypted Password : [encrypted password]

      Decrypted Password : [text version of password ]

    ldap.connectionURL
    The directory URL used to establish an LDAP connection. Type in the URL of your LDAP server. 
    ldap://myldapserver.mydomain.mycompany.com