Description:
How to configure a user directory connection that lets the Policy Server communicate with a CA Directory user store?
Solution:
This has been described in the r12 SP1 Policy Server Configuration guide in Chapter 7: "User Directories", section "How to Configure a CA Directory User Directory Connection".
However, there are some typos under section "To enable user store DSA parameters".
As per the document:
- Open the .dxc file for the user store DSA.
- Define the following at the bottom of the file:
#SiteMinder
mimic-netscape-for-siteminder = true;
concurrent-bind-user = true;
hold-ldap-connections = true;
- Save and close the .dxc file.
The user store DSA parameters are enabled."
It should be:
"To enable user store DSA parameters
- Open the .dxc file for the user store DSA.
- Define the following at the bottom of the file:
#SiteMinder
set mimic-netscape-for-siteminder = true;
set concurrent-bind-user = <DN>;
set hold-ldap-connections = true;
- Save and close the .dxc file.
Note: (DN is in x500 format. For example "<o acme><cn smadmin>")
The user store DSA parameters are enabled.