Policy Server Guides › Policy Server Configuration Guide › User Directories › How to Configure OpenLDAP Server User Directory Connections
How to Configure OpenLDAP Server User Directory Connections
You can use OpenLDAP Server as a user store. Complete the following steps to create the user directory connection:
- Create a user store.
- Configure the OpenLDAP Server user directory connection.
Create a User Store
You can use an OpenLDAP directory server as a user store
To create a user store
- Use an LDIF file to create ou=People under the root DN.
- Create users under the organizational unit.
Configure OpenLDAP Directory Server User Directory Connections
You can configure a user directory connection that lets the Policy Server communicate with an OpenLDAP Server user store.
Follow these steps:
- Click Infrastructure, Directory.
Objects related to user directories appear on the left.
- Click User Directories.
The User Directories screen appears.
- Click Create User Directory.
The Create User Directory screen appears and displays the required settings to configure an LDAP connection.
Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.
- Complete the required connection information in the General and Directory Setup areas.
Note: If the Policy Server is operating in FIPS mode and the directory connection is to use a secure SSL connection when communicating with the Policy Server, the certificates used by the Policy Server and the directory store must be FIPS compliant.
- Configure the LDAP search and LDAP user DN lookup settings in the LDAP Settings area.
- Do the following in the Administrator Credentials area:
- Select the Require Credentials option.
- Enter the credentials of an administrator account.
- (Optional) Specify the user directory profile attributes that are reserved for CA SiteMinder® use in the User Attributes area.
- (Optional) Click Create in the Attribute Mapping List area to configure user attribute mapping.
- Click Submit.
The user directory connection is created.
More information:
LDAP Load Balancing and Failover
Define an Attribute Mapping
Copyright © 2013 CA.
All rights reserved.
|
|