Configure existing Lawson identities for use with LDAPBIND (optional)

Use this procedure if you want to change the identities for the user lawson and other users who already have identities on the SSOP service on a federated system so that they are in the User Principal (UPN) format and designated to the ldapind service.

Performing this procedure is not required but you can perform it if you want all users to be in the UPN format.

Before this procedure is performed, an identity is stored as, for example, "lawson". After this procedure has been performed, an identity in the User Principal Name format is created.

  1. At the command prompt for your Lawson environment, type the command to start the ssoconfig utility.

    ssoconfig -c

  2. Enter the password for the ssoconfig utility.
  3. Type 5 to Manage Lawson Services and press Enter.
  4. Type 6 to Export service and identity info and press Enter.
  5. For Do you want to export all the services, type 2 (NO) and press Enter.
  6. For Enter the services name separate by comma to be exported, type ype the name of the service you created for ldapbind authentication, for example, LDAPBIND_SVC_LSF.
  7. For Do you want to export the identities, type ALL and press Enter.
  8. For Enter file name to save export as, type identities.xmland press Enter.
  9. For Choose format that Lawson Software should export credential information as, type 2 (Opaque) and press Enter.
  10. When the export is finished, type 11 to exit.
  11. Using a text editor, open identities.xml. Supply the appropriate values for RDID and USER in the example below.

    User Principal Name Example

    lawson@YourAuthenticatingDomain.com

    Make these changes for all users in the ldapbind service.

    <?xml version="1.0" encoding="ISO-8859-1"?>
<BATCH_LOAD FORMAT="Opaque" OVERRIDE="true">
    <IDENTITY SERVICENAME="YourLdapbindService">
        <RDID>lawson</RDID>
        <USER><![CDATA[lawson@YourAuthenticatingDomain.COM]]></USER>
    </IDENTITY>>
  12. Save the file as newidentities.xml.
  13. Import the new identities file. At the command prompt for your Lawson environment, type:

    ssoconfig -l <password> newidentities.xml

    where

    l is a lower case L

    <password> is the password for the ssoconfig utility.