Adding a custom map property for a custom TAI for SPNEGO

If you are using a custom trust association interceptor (TAI), you must add a new custom map property in WebSphere.
If you are using a custom user domain group instead of nexjusers, ensure that you have provided your group name as the authGroup security property value in your environment file. For more information, see Creating a user domain group for NexJ applications.
To add a custom map property for a custom TAI:
  1. Log in to WebSphere Integrated Solutions Console.
  2. Navigate to Security > Global security.
  3. Expand the Web and SIP security section and click Trust association.
  4. In the Additional Properties section, click the Interceptors link.
  5. Click the nexj.core.container.platform.websphere.WebSphereAuthenticationTAI link.
  6. Add a new custom property that is named map and has a value that uses the following format: 
    LDAPGroup->LDAPGroup Full DN
    For example, the map property is equivalent to:
    Example Server Administrators->CN=Example Server Administrators,OU=_Tech Roles,OU=Role Groups,OU=Security,OU=AU,DC=test,DC=abc,DC=com
  7. Click OK.
  8. Click Save to save the changes to the configuration.
  9. Restart the WebSphere Application Server deployment manager for the changes to take effect.
You have configured your custom TAI.