Previous Topic: Critical Path inJoin Directory Server v4.2

Next Topic: Import the Policy Store Data Definitions

Configure an inJoin Directory Server as a Policy Store

You can configure a Critical Path inJoin Directory Server (IDS) as a policy store using the Critical Path's iCon GUI.

To configure a Critical Path inJoin Directory Server (IDS) as a policy store

  1. Start the DSA.
  2. Navigate to policy_server_home\bin on the machine where the Policy Server is installed.
  3. Run the following command:
    ldapmodify -hhost -pport -dAdminDN -wAdminPW -c
    -fdir_config_home\criticalpath\IDS_Add_Schema_R12sp2.ldif
    

    Note: ldapmodify requires version 4.2 of the Critical Path inJoin Directory Server.

  4. Reload the schema, or verify that the schema has been updated.
  5. Run the following command:
    ldapmodify -hhost -pport -dAdminDN -wAdminPW -c
    -fdir_config_home\xps\criticalpath\CriticalPath.ldif
    
  6. Reload the schema, or verify that the schema has been updated.
  7. Go to dsa, comms, LDAP, change the "paging mode" option to "always", and restart the DSA.

    The policy store schema is created for r12.0 SP2.

  8. Manually create the following root nodes using Critical Path's iCon DIT administrator interface:
  9. Run the following command:
    smobjimport -ipolicy_server_home/db/smdif/smpolicy.smdif -v
    

    The base policy store data is imported from the file smpolicy.smdif.

  10. Run the following command:
    smobjimport -ipolicy_server_home\db\smdif\ampolicy.smdif
    -dsiteminder_super_user_name -wsiteminder_super_user_password -f -v -l -c
    

    smobjimport imports the policy store objects. These objects are automatically imported to the appropriate locations.

    Note: Importing ampolicy.smdif makes available Federation Security Services, Web Service Variables, and eTelligent Rules functionality that is separately licensed from SiteMinder. If you intend on using the latter functionality, contact your CA account representative for more information on licensing.

    The Critical Path inJoin Directory Server (IDS) is configured as a policy store.

Note: You can now import the policy store data definitions.


Copyright © 2010 CA. All rights reserved. Email CA about this topic