Federation Security Services GuideDeploying Federation without the FSS Sample ApplicationSet Up the Identity Provider › Set Up the IdP User Store

Previous Topic: Point the Policy Server to the IdP LDAP Policy Store

Next Topic: Enable Policy Server Trace Logging at the IdP

Set Up the IdP User Store

At the IdP, you must have a user store with users defined. The assertion generation can create assertions for these users.

In this deployment, the user store is a Sun ONE LDAP user directory. The Sun ONE Server Console is the tool used to add users to this user store.

To configure the user store

  1. Add the following users:
  2. Fill-in the attributes for Tuser1 and Tuser2 as follows:

Tuser1

Tuser2

userpassword: test   

userpassword: test

mail: Tuser1@idp.demo 

mail: Tuser2@idp.demo

Important! The email address must be the same in the Service Provider user store for the same users.

  1. Enable trace logging.

Copyright © 2010 CA. All rights reserved. Email CA about this topic