The user registry bridge is a read-only adapter that provides
an interface between federated repositories and an underlying user
registry implementation, which can be either a local operating system
user registry or a custom user registry implementation.
Use the search(DataObject) method and the ChangeControl DataObject to
query the federated repository for changed entities from a certain
checkpoint onwards.
Managing schemas
Use the following commands to manage federated repository data
model schemas:
The plug-in manager provides a framework that enables you to write
extensions to virtual member manager, to consume a variety of services
that can be added in the future.
Configuring LDAP attributes
Use the following new or enhanced commands (in addition to existing
commands) to manage the virtual member manager properties and LDAP
directory attributes in a federated repositories LDAP repository configuration:
Virtual member manager supports configuration of multiple LDAP
servers for fault tolerance and reliability.
Mapping user registry attributes in a realm
Use the following new commands to set or modify the mapping of
the user or group attribute for a user registry to a federated repository
property of a specified realm and to list these mappings.
Client certificate login support for file repository
You can enable support for client certificate login in a realm
configured with a single built-in file-based repository or a multiple
repository configuration that includes the file-based repository and
other repositories. The default configuration of the file based repository
ignores a certificate login request, returns an empty search result,
and does not display any error. To enable support for certificate
mapping in the file-based repository, install WebSphere Application
Server fixpack version 7.0.0.25 or higher, and follow the procedure
in the topic, Enabling client certificate login support for a file-based
repository in federated repositories