As per the documentation [1], it's possible to use " org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager" for both read-only and read/write operations.
So I used the configuration found at [2] (configuration for AD) and still I was able to add users to AD. Please note that following property is not there in the provided configuration <Property name="ReadOnly">true</Property> Then I added that property to user-mgt.xml and started the server again. Still I can add uses to AD (which is wrong since I need read only user store) What I need to get clarified is.. 1) IMO the information in documentation is not correct.. or am I missing something? 2) Can we make the "ActiveDirectoryUserStoreManager" read - only by adding following property ? <Property name="ReadOnly">true</Property> 3) If above configuration is not correct, what is the recommended/correct user store manager if we need to configure read only AD as primary user store? We use ReadOnlyLDAPUserStoreManager and it works fine.. Is it the right way of configuring user store? [1] https://docs.wso2.com/display/IS500/Configuring+Primary+User+Stores [2] https://docs.wso2.com/display/IS500/Configuring+Primary+User+Stores#ConfiguringPrimaryUserStores-Read-onlymode Regards, Pavithra -- *Pavithra Madurangi* Associate Technical Lead - QA. WSO2 Inc.: http://wso2.com/ Mobile: +94777207357
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
