Previous Topic: LDAP Referrals Handled by the LDAP SDK Layer

Next Topic: Handle LDAP Referrals on Bind Operations

Disable LDAP Referrals

If LDAP referrals are causing errors, you can disable all LDAP referrals. Note that disabling LDAP referrals will cause any referrals in your directory to return errors.

To disable LDAP referral handling for Policy Servers on Windows

  1. From the Windows Start menu, select Run.
  2. Enter regedit in the Run dialog box and click OK.
  3. In the Registry Editor, navigate to:
    HKEY_LOCAL_MACHINE\SOFTWARE\Netegrity\SiteMinder\
    CurrentVersion\Ds\LDAPProvider
    
  4. Modify the following registry value:

    Note: The value is shown in hexadecimal notation.

    "EnableReferrals"=dword:00000001
    

    Determines if any LDAP referrals are handled by the Policy Server. If set to 0, no LDAP referrals will be accepted by the Policy Server. If set to 1, the Policy Server accepts LDAP referrals.

    LDAP referrals are enabled by default. This setting may only be modified by editing the Registry.

  5. Restart the Policy Server.

To disable LDAP referral handling for a Policy Server on Solaris

  1. Navigate to:
    install_dir/siteminder/registry
    
  2. Open sm.registry in a text editor.
  3. Locate the following text in the file:
    HKEY_LOCAL_MACHINE\SOFTWARE\Netegrity\SiteMinder\
    CurrentVersion\Ds\LDAPProvider
    
  4. Locate the line that follows the line from step 3 and begins with:
    EnableReferrals
    
  5. Modify the value that comes just before the semicolon as follows.

    Note: The value must be converted to hexadecimal notation.

    Determines if any LDAP referrals are handled by the Policy Server. If set to 0, no LDAP referrals will be accepted by the Policy Server. If set to 1, the Policy Server accepts LDAP referrals.

  6. Restart the Policy Server.


Copyright © 2010 CA. All rights reserved. Email CA about this topic