On Tue, Jul 1, 2014 at 11:56 AM, Pavithra Madurangi <pavit...@wso2.com> wrote:
> As per the documentation [1], it's possible to use " > org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager" for both > read-only and read/write operations. > > So I used the configuration found at [2] (configuration for AD) and still > I was able to add users to AD. > Please note that following property is not there in the provided > configuration > <Property name="ReadOnly">true</Property> > > Then I added that property to user-mgt.xml and started the server again. > Still I can add uses to AD (which is wrong since I need read only user > store) > > What I need to get clarified is.. > > 1) IMO the information in documentation is not correct.. or am I missing > something? > @Samuel: Can you please correct the docs. AD should only be used for read-write. Clearly mention that if AD is to be used as read-only we need to use ReadOnlyLDAPUserStoreManager. > > 2) Can we make the "ActiveDirectoryUserStoreManager" read - only by > adding following property ? > <Property name="ReadOnly">true</Property> > > > 3) If above configuration is not correct, what is the recommended/correct > user store manager if we need to configure read only AD as primary user > store? > We use ReadOnlyLDAPUserStoreManager and it works fine.. Is it the right > way of configuring user store? > Yes. This is the right way of using it. > > [1] https://docs.wso2.com/display/IS500/Configuring+Primary+User+Stores > [2] > https://docs.wso2.com/display/IS500/Configuring+Primary+User+Stores#ConfiguringPrimaryUserStores-Read-onlymode > > Regards, > Pavithra > > -- > *Pavithra Madurangi* > Associate Technical Lead - QA. > WSO2 Inc.: http://wso2.com/ > Mobile: +94777207357 > > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Thanks & Regards, *Johann Dilantha Nallathamby* Associate Technical Lead & Product Lead of WSO2 Identity Server Integration Technologies Team WSO2, Inc. lean.enterprise.middleware Mobile - *+94777776950* Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
