Specifying the global ID attribute for users and groups
Decide if you will accept the default identifiers used by your LDAP directory server or create a custom attribute to be used as the global unique identifier (GUID) for each user. This identifier is unique across the organization and is used for synchronizing names in the LDAP directory with names in the Profiles database.
- IBM® Tivoli® Directory Server:
ibm-entryUUID
- Microsoft™ Active Directory:
objectGUID
If you are using Active Directory, remember that the samAccountName attribute has a 20 character limit; other IDs used by IBM® Connections have a 256 character limit.
- IBM® Domino® Enterprise Server:
dominoUNID
Note: If the bind ID for the Domino® LDAP does not have sufficient manager access to the Domino® directory, the Virtual Member Manager (VMM) does not return the correct attribute type for the Domino® schema query; DN is returned as the VMM ID. To override VMM's default ID setting, add the following line to the <config:attributeConfiguration> section of the wimconfig.xml file:<config:externalIdAttributes
name="dominoUNID"/>
- Sun Java™ System Directory
Server:
nsuniqueid
- eNovell Directory Server:
GUID
- Custom ID:
If your organization already uses a unique identifier for each user and group, you can configure IBM® Connections to use that identifier. For more information, see the Optional: Specifying a custom ID attribute for users or groups topic.
- AIX®
- /usr/IBM/WebSphere/AppServer/profiles/profile_name/config/cells/cell_name/wim/config
- Linux™
- /opt/IBM/WebSphere/AppServer/profiles/profile_name/config/cells/cell_name/wim/config
- Microsoft™ Windows™
- drive:\IBM\WebSphere\AppServer\profiles\profile_name\config\cells\cell_name\wim\config