Federation Security Services GuideDeploying Federation without the FSS Sample ApplicationSet Up the Service Provider › Set Up the SP User Store

Previous Topic: Point the Policy Server to the SP LDAP Policy Store

Next Topic: Enable Trace Logging for Federation Components at the SP

Set Up the SP User Store

At the SP, configure a user store and add user records for users that require assertions. When the user's assertion is presented during authentication, the Service Provider looks in the user store for the user record.

In this deployment, the Sun ONE LDAP user directory is the user store and the Sun ONE Server Console is the tool used to add users to the directory.

To configure the user store

  1. Add the following users:
  2. Fill-in the attributes for Tuser1 and Tuser2 as follows:

Tuser1

Tuser2

userpassword: customer 

userpassword: customer

mail: Tuser1@sp.demo  

mail: Tuser2@sp.demo

Important! The email address must be the same in the Identity Provider user store for the same users.

  1. Enable trace logging.

Copyright © 2010 CA. All rights reserved. Email CA about this topic