Previous Topic: Configure Multiple User DirectoriesNext Topic: Configure SLO for SharePoint 2013

Agent for SharePoint GuideAdvanced Configuration OptionsConfigure Multiple User DirectoriesDisable Client Loopback

Disable Client Loopback

The CA SiteMinder® Agent for SharePoint has a client loopback feature that lets you create policies in your SharePoint environment using directory attribute values that do not yet exist.

For example, suppose that your directory server contains an attribute named employeeType, and the employeeType attribute uses one of the following values for each user:

For example, suppose you want to create an attribute value for the employeeType attribute named Vendor in your directory servers to use with SharePoint.

If a different group in your organization manages the directory servers, that task is beyond your control. The Claims Provider creates placeholders for the new attribute values using the loopback feature.

In this example, use the loopback feature so that the Vendor attribute value exists in your SharePoint environment it appears in the directory servers. New attribute values let you create SharePoint policies whenever you want, without waiting for your administrator to add the actual attribute values to your directory.

If you do not need to add attributes using the SharePoint people picker before they exist in your user directories, disable the client loopback feature. Leaving client loopback enabled when the directory attributes exist returns duplicates in the SharePoint people picker.

Follow these steps:

  1. Log in to your SharePoint central administration server.
  2. Click Start, All Programs, Microsoft SharePoint 2010 Products, SharePoint 2010 Management Shell.

    The management shell command-line window opens.

  3. Navigate to the following directory: 
    C:\Program Files\CA\SharePointClaimsProvider\scripts
  4. Enter the following command: 
    .\Set-SMClaimProviderConfiguration.ps1 -DisableLoopBackSearch

    Loopback search is disabled.

Add Users to Your Web Applications

Add your users to SharePoint and assign permission levels depending on their roles. Permission levels allow users to perform a set of related tasks.

Follow these steps:

  1. From your SharePoint central administration server, click, Start SharePoint 2010 Central Administration from Start, Programs, Microsoft SharePoint 2010 Products.

    The Central Administration home page appears.

  2. Click Manage web applications, in the Application Management section.

    The Web Applications Management page appears with a list of available web applications.

  3. Click the web application name for which you want to add users.

    The buttons on the ribbon become available.

  4. Click User Policy on the ribbon.

    The Policy for Web Application dialog appears.

  5. Click Add Users.

    The Select Zone dialog appears.

  6. Verify that the Zone you want appears in the drop-down list, and then Click Next.

    The Add Users dialog appears.

  7. Click the Browse button, in the Choose Users section, below the Users text box.

    The Select People and Groups – Webpage Dialog appears.

  8. Browse and select the user group to search for the user.

    The right pane displays the search results with the list of users.

  9. Select the user and click Add.

    SharePoint adds the selected user.

  10. (Optional) Repeat steps 8 and 9 to select additional users.
  11. Click OK.

    The Add Users dialog appears and displays the selected users.

  12. Select the required permissions for the users, in the Choose Permissions section.
  13. Click Finish.

    SharePoint adds the selected users and assigns the selected permissions to the users.