Previous Topic: Configure NetWare

Next Topic: Special Access for the SiteMinder Administrator

Configure Anonymous LDAP Access on Novell eDirectory

In order for the Policy Server to interact with an Novell eDirectory, you must create an account with enough administrative privileges to allow access to the directory.

The easiest configuration is to generate an anonymous user on the LDAP server and make this the proxy user. The user should be assigned enough power to perform all functions necessary for SiteMinder on the LDAP server.

The instructions below assign administrator privileges to an anonymous user, although you can configure the user with more limited privileges. The effect of this is that any anonymous access to the LDAP directory will gain the same privileges you give to SiteMinder.

To configure anonymous LDAP access

  1. Create a user called LDAP_Anonymous.

    The following procedure is an example which may differ based on your version of Novell products.

    1. From the menu bar of the NW Admin tool, select Object, Create, User.
    2. Add the name LDAP_Anonymous.
    3. Do not assign a password.
    4. In the right frame, select Security Equal To and add the admin user (for example, Admin.transpolar).
    5. Click OK.
  2. Set up a proxy account:

    The following procedure is an example which may differ based on your version of Novell products.

    1. In the NW Admin tool, select LDAP Group.
    2. From the popup menu, select Details.
    3. Click Continue.
    4. In Proxy Username field, enter LDAP_Anonymous.
    5. In right frame, select Access Control and click Add.
    6. In the LDAP ACL Name field, enter LDAP_Anonymous.
    7. Select the LDAP Distinguished Name check box and enter cn=LDAP_Anonymous.
    8. Select the All Attributes and Object Rights check box.
    9. Click OK.
    10. In right frame, select Access Control and click Add.
    11. In box labeled LDAP ACL Name, enter Everyone.
    12. Select the Everything check box.
    13. Select the All Attributes and Object Rights check box.
    14. Click OK.
    15. Click OK.

      To continue configuring your Novell eDirectory for use with the Policy Server, see Configure a Novell eDirectory LDAP Connection in Policy Server User Interface.


Copyright © 2010 CA. All rights reserved. Email CA about this topic