Deregistering users and groups

WebSphere Portal server stores users and groups that exists in the user registry as entries in the database. When you delete an user using WebSPhere Portal's Manage Users and Groups portlet or xmlaccess script such as DeleteUser.xml file listed below the user gets deleted from both the User Registry such as LDAP as well as the database entry also gets deleted. But in most of the cases portal server has read-only access to the LDAP and organizations have some other tool that allow adding or deleting users from LDAP. When a user is deleted from the LDAP directly, his database entry does not get deleted and the customizations related to that user do not get deleted either.

Perform the following steps to remove the users and groups from the database

  • Export all the users from portal server using the following xmlaccess script

    <request
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:noNamespaceSchemaLocation="PortalConfig_1.4.xsd"
    type="export" export-users="true">

    <portal action="locate">
    <user objectid="*" action="export"/>
    <group objectid="*" action="export"/>
    </portal>
    </request>


  • Verify that the users listed in the result really exists in the LDAP. If not then create a deleteuser.xml xmlaccess file like this

    <request
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:noNamespaceSchemaLocation="PortalConfig_1.4.xsd"
    type="update" create-oids="true">

    <portal action="locate">
    <user action="delete" name="deaduser"/>
    </portal>
    </request>

    Execute this script to delete deaduser from the portal database



Note: After deleting these entries with the modified XML script, all customization is lost for the deleted users and groups.
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)