Define the Same User Directory Connection in Multiple Policy Stores

Policy Server Guides › Policy Server Configuration Guide › User Directories › Define the Same User Directory Connection in Multiple Policy Stores

Define the Same User Directory Connection in Multiple Policy Stores

Every Policy Server connects to a policy store. You can configure multiple Policy Servers to point to a single policy store. The objects that you add and modify are stored in the policy store that is associated with the Policy Server. As shown in the following figure, your environment can contain multiple independent policy stores for maintaining Policy Server data.

Graphic showing multiple Policy Servers connected to the same user store

The Policy Servers for myorg1 are connected to Policy Store A. The Policy Servers for myorg2 are connected to Policy Store B. However, both organizations require data from User Store A.

Follow these steps:

Open the Administrative UI associated with one of the policy stores in your deployment.
Configure a user directory connection.
When defining the user directory connection, note the value that you supply in the Name field.
Open the Administrative UI associated with another policy store in your deployment.
Configure the same user directory connection.
When defining the user directory connection, use the same Name that you used in step 2.
Repeat this process for all independent policy stores in your deployment that access the same user store.
You can use the same user directory name when defining the connections to the user store in each independent policy store,.Single sign-on is available for users who access resources that are protected by policies in the different policy stores.

More information:

How to Configure a CA Directory User Directory Connection