2 Replies Latest reply on Jan 5, 2013 3:31 PM by Faisal WebLogic Wonders

    LDAP in BEA 8.1 vs Oracle WLS 10.x -- need new IM product?

      I am not very knowledgeable about older BEA versions of Weblogic.

      I have an application that runs through BEA Weblogic v8.1 (SP6) and I am interested in migrating this
      critical app to Oracle Weblogic 10.x or even 12c.

      My question is about the use of LDAP in BEA WLS 8.1 VS Oracle WLS 10.x and beyond. Can I use the WLS 10.x
      supplied LDAP to run my application, or would I be better off using an add-on IM ? My current understanding is
      that Oracle doesn't recommend using the supplied WLS 10.x LDAP in production.

      (If this question belongs in a different forum, please advise).
        • 1. Re: LDAP in BEA 8.1 vs Oracle WLS 10.x -- need new IM product?
          Ravi Jegga
          Yes, you can use Default Embedded LDAP provided out of box with default weblogic domain. Yes, it is not recommended, but it should work fine. Now how complex and how much security data do you really have in this old LDAP that came with Weblogic. If all that worked fine in older 8.x SPxx, then it should work fine on WLS 10.x also. Most of the times all it has is the Users and the Groups and some basic meta data like some properties for each user etc.

          Worst case, instead of complex IM product, you can always use any other open source LDAP Production like Sun One AD or Open LDAP (with some license terms) and configure that with Weblogic and this is Totally supported in Production also.

          For not a huge security data, go with default LDAP that comes with Weblogic.

          Ravi Jegga
          • 2. Re: LDAP in BEA 8.1 vs Oracle WLS 10.x -- need new IM product?
            Faisal WebLogic Wonders
            It depends on the security requirement of your application.
            If your application has secured resources and the number of users to access them are huge.. then you should configure a third party ldap server, or use SQLAuthenticator ( if you want to keep users in DB)

            Weblogic Embedded ldap has default users for administration, deployment, monitoring.. purposes..