IBM Sterling Ideas

formerly Watson Supply Chain

Submit new product ideas for IBM Sterling solutions. Before you submit, please review existing ideas; if an idea close to yours already exists, it's better to add comments or vote on the existing idea. We will review your ideas and use them to help prioritize our product development. Best of all, the portal will automatically update you when the status of your idea has been changed. Order Management, Store Engagement, Watson Order Optimizer, Inventory Visibility, CPQ and Call Center are now part of Watson Supply Chain

Connect with IBM experts and your peers on the Supply Chain Collaboration Community and the Order Management Interest Group

Bind the account to LDAP without Principal account for search

The Principal account is used to search the DN of the userid and then verify the password by bind directly.


If the full DN of userid is known in LDAP, B2B integrator should allow we define the people LDAP group (i.e. LDAP tree) without principal account. As a result, userid can login to the SI with LDAP bind directly.


There is a security concern because principal account could not change the password automatically and periodically. We need to restart the SI and change the password immediately after password reset. It will also introduce additional admin work.  

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Dec 12 2019
  • Needs review
How will this idea be used?

Remove the principal account in order to enhance the security.

What is your industry? Banking
What is the idea priority? High
DeveloperWorks ID
Link to original RFE
  • Attach files