User management functionality is provided by default in all WSO2 Carbon-based products and is configured in the <PRODUCT_HOME>/repository/conf/user-mgt.xml file. This file is shipped with user store manager configurations for all possible user store types (JDBC, read-only LDAP/Active Directory, read-write LDAP and read-write Active directory).
In order to configure an Active Directory user store you must first disable the existing embedded LDAP user store in the Identity Server. To do this, open the <IS_HOME>/repository/conf/identity/embedded-ldap.xml file and make the following change to the enable property.
| Code Block | ||
|---|---|---|
| ||
<EmbeddedLDAP>
<Property name="enable">false</Property>
.......................
</EmbeddedLDAP> |
The instructions given below explains how to configure a read-write Active Directory as the primary user store for the WSO2 server.
...