Using LDAP syntax to create search filters that contain logic operators requires you to enable the LegacyCertMapping registry key. Enabling the registry key allows legacy behavior in certificate mapping, which ensures that users are authenticated using the specified LDAP search criteria.
KeyType: DWORD
Values: 0 (disabled) and 1 (enabled)
Default: 0
To enable the registry key on Windows
Note: If a value other than 0x1 is set, or the registry value does not exist, the registry key is disabled.
LegacyCertMapping is enabled, and LDAP search filter syntax can be used with custom mapping.
To enable the registry key on UNIX
HKEY_LOCAL_MACHINE\SOFTWARE\Netegrity\SiteMinder\CurrentVersion\ PolicyServer=XXXXX LegacyCertMapping=0X1 REG_DWORD
LegacyCertMapping is enabled, and LDAP search filter syntax can be used with custom mapping.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |