Previous Topic: Siemens DirX 6.0 D00 Directory Server

Next Topic: Import the Policy Store Data Definitions

Configure a DirX 6.0 D00 Directory Server as a Policy Store

You can configure a Siemens DirX 6.0 D00 Directory Server as a SiteMinder r12.0 SP2 policy store on a Windows 2000 SP4 Advanced Server.

To configure a Siemens DirX 6.0 D00 Directory Server as a policy store

  1. Install DirX 6.0 D00, and accept all of the defaults during installation.

    Note: If you do not have an existing database, install the sample database.

  2. Copy the following files from dir_config_home\dirx to

    DirX_install_path\scripts\security\Netegrity\SiteMinder:

  3. Copy the following files from dir_config_home\xps\dirx to

    DirX_install_path\scripts\security\Netegrity\SiteMinder:

  4. Rename the following files:
  5. Copy the following files to DirX_install_path\client\conf:
  6. Rename dirxabbr-ext.SiteMinderR12sp2 to dirxabbr-ext.SiteMinder.
  7. Stop and restart the DirX service.
  8. Edit GlobalVar.tcl to update the global variables that the DirX scripts reference.

    Default values:

  9. Run setup.bat, and check the resulting log file, setup.log, for errors.
  10. Rebind to the DSA using the DirXmanage tool.

    Note: Watch for errors.

  11. Create the base tree structure using the DirXmanage tool:
    1. Under o=PQR, create ou=Netegrity.
    2. Under ou=Netegrity, create ou=SiteMinder.
    3. Under ou=SiteMinder, create ou=PolicySvr4.

    The policy store schema is created for r12.0 SP2.

  12. Navigate to policy_server_home\bin.
  13. Run the following command:
    $ smobjimport -ipolicy_server_home\db\smdif\smpolicy.smdif -v
    

    The base policy store data is imported from the file smpolicy.smdif.

    Note: To import data from an existing policy store, see the section on migrating policy store data in the Policy Server Installation Guide.

  14. Run the following command:
    smobjimport -ipolicy_server_home\db\smdif\ampolicy.smdif
    -dsiteminder_super_user_name -wsiteminder_super_user_password -f -v -l -c
    

    smobjimport imports the policy store objects. These objects are automatically imported to the appropriate locations.

    Note: Importing ampolicy.smdif makes available Federation Security Services, Web Service Variables, and eTelligent Rules functionality that is separately licensed from SiteMinder. If you intend on using the latter functionality, contact your CA account representative for more information on licensing.

  15. Run the following command:
    smreg -su password
    

    The administrator's password is set.

  16. Point the Policy Server to the DirX Directory Server by using the Data tab on the Policy Server Management Console.

    Sample values:

    The DirX Directory Server is configured as a policy store.

Note: You can now import the policy store data definitions.


Copyright © 2010 CA. All rights reserved. Email CA about this topic