You create the policy store schema so the directory server can function as a policy store and store SiteMinder objects.
To create the Policy Store schema
Specifies the Directory Server installation path.
Note: The netegrity.dxc file is installed with the Policy Server in policy_server_home\eTrust. The etrust.dxc file is installed with the Policy Server in siteminder_home\xps\db.
Specifies the policy server installation path.
Note: The etrust_schema.txt file is installed with the Policy Server in policy_server_home\xps\db. The schema.txt file is installed with the Policy Server in siteminder_home\eTrust.
Note: The default.dxg schema file is located in DXHOME\config\schema\default.dxg.
Example: copy the default.dxg schema file and rename the copy to smdsa.dxg
#CA Schema
source "netegrity.dxc";
source "etrust.dxc";
Represents the name of the DSA you created using the dxnewdsa utility.
Note: the DSA's DXI file is located in DXHOME\config\servers.
# cache configuration set max-cache-size = 100; set cache-index = all-attributes; set cache-attrs = all-attributes; set cache-load-all = true; set lookup-cache = true; set ignore-name-bindings = true;
# cache configuration set max-cache-size = 100; set cache-attrs = all-attributes; set cache-load-all = true; set ignore-name-bindings = true;
Note: The max-cache-size entry is the total cache size in MB. Adjust this value based on the total memory available on the CA Directory server and overall size of the policy store.
Note: The default DXC file is located in DXHOME\dxserver\config\limits.
# size limits set max-users = 1000; set credits = 5; set max-local-ops = 1000; set max-dsp-ops = 1000; set max-op-size = 1000; set multi-write-queue = 20000;
# size limits set max-users = 1000; set credits = 5; set max-local-ops = 1000; set max-op-size = 1000; set multi-write-queue = 20000;
Note: Editing the size limits settings prevents cache size errors from appearing in your CA Directory log files.
dxserver stop DSA_Name dxserver start DSA_Name
Specifies the name of the DSA.
The policy store schema is created.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |