This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Using External User Stores (LDAP AD)

Owned by Former user (Deleted)
Last updated: Jul 12, 2012Version comment
1 min read

You can also connect an external user store (database) with WSO2 ESB. Such external stores are configured through the user-mgt.xml file which can be found in the repository/conf directory. Settings required to connect an LDAP based user store or an Active Directory based user store are provided in the default user-mgt.xml file. Uncomment the relevant entries in the file and update the required parameters.

Note

The ESB can have only one user store at any given moment. Hence when you want to connect to a different user store, you also need to comment out the default user store settings (JDBC user store manager) in the user-mgt.xml file.

Configuration settings for an LDAP based user store looks as follows.

<UserStoreManager class="org.wso2.carbon.user.core.ldap.LDAPUserStoreManager">
	<Property name="ConnectionURL">ldap://localhost:389</Property>
	<Property name="ConnectionName">uid=admin,ou=system</Property>
	<Property name="ConnectionPassword">admin123</Property>
	<Property name="UserSearchBase">ou=system</Property>
	<Property name="IsEmailUserName">false</Property>
	<Property name="UserNameListFilter">(objectClass=person)</Property>
	<Property name="UserNameAttribute">sAMAccountName</Property>
	<Property name="ReadLDAPGroups">true</Property>
	<Property name="GroupSearchFilter">(objectcategory=group)</Property>
	<Property name="GroupNameAttribute">cn</Property>
	<Property name="MemberOfAttribute">memberOf</Property>
</UserStoreManager>