Troubleshooting single sign-on problems with Lotus Domino

Troubleshooting single sign-on problems with Lotus Domino

Troubleshoot problems when using single sign-on (SSO) with IBM Lotus Domino Directory.
When you configured Domino Directory as the LDAP directory, you might have entered no value for the Distinguished name of a base entry in this repository attribute because Domino Directory contains flat groups. However, SSO does not work correctly with this configuration.
To resolve this problem, configure the Virtual Member Manager component of WAS to use Domino Directory flat groups:

Open the wimconfig.xml file in a text editor. The file is stored in...

Option Description

AIX /usr/IBM/WebSphere/AppServer/profiles/<profile_name>/config/cells/ <cell_name>/wim/config
Linux /opt/IBM/WebSphere/AppServer/profiles/<profile_name>/config/cells/ <cell_name>/wim/config
Windows C:\IBM\WebSphere\AppServer\profiles\<profile_name>\config\cells\ <cell_name>\wim\config

Replace the <config:baseEntries name="o=example" nameInRepository="o=example"/> string with the following string: <config:baseEntries name="" nameInRepository=""/>.

Replace the <config:participatingBaseEntries name="o=example"/> string with the following string: <config:participatingBaseEntries name=""/>.

Save and close the wimconfig.xml file.

Restart the dmgr.

Parent topic:
Troubleshooting tips

Related:

Enable single sign-on for Domino

Option	Description
AIX	/usr/IBM/WebSphere/AppServer/profiles/<profile_name>/config/cells/ <cell_name>/wim/config
Linux	/opt/IBM/WebSphere/AppServer/profiles/<profile_name>/config/cells/ <cell_name>/wim/config
Windows	C:\IBM\WebSphere\AppServer\profiles\<profile_name>\config\cells\ <cell_name>\wim\config