Previous Topic: Key and Certificate Management for FederationNext Topic: Creating Affiliate Domains


User Directory Configuration for Federation

Directory connections resolve how CA SiteMinder® establishes a context for user identities. The software uses these connections to verify user identities and to retrieve the user attributes that are a part of the user record.

The asserting party determines which users it can create assertions for by authenticating each user against a user directory. At the relying party, when the assertion is presented during authentication, the relying party looks in the user directory for the user record.

Configure user directories before you select users for federated transactions. To configure user directories, see the Policy Server Configuration Guide.

Note: If you plan to use an ODBC database in your federated configuration, set up the SQL query scheme and valid SQL queries before selecting an ODBC database as a user directory.