Adding Users by Manual Entry

Federation Security Services Guide › Configure SiteMinder as a SAML 1.x Producer › Select Users for Which the Producer Generates Assertions › Adding Users by Manual Entry

Adding Users by Manual Entry

From the Users/Groups dialog box, you can use the Manual Entry option to add users who should have access to a consumer.

To add a user by manual entry

In the Manual Entry group box, do one of the following:
- For LDAP directories, enter a valid DN in the Entry field. For each DN specified in the Entry field, you can select an action from the Action drop down list, as follows:
  Search Users--the LDAP search is limited to matches in user entries.
  
  Search Groups--the LDAP search is limited to matches in group entries.
  
  Search Organizations--the LDAP search is limited to matches in organization entries.
  
  Search Any Entry--the LDAP search is limited to matches in user, group, and organization entries.
  
  Validate DN--the LDAP search locates this DN in the directory.
- For Microsoft SQL Server, Oracle and WinNT directories, enter a user name in the Manual Entry field.
  For an Microsoft SQL Server or Oracle, you can enter a SQL query, instead. For example:
  
  SELECT NAME FROM EMPLOYEE WHERE JOB =’MGR’;
  
  The Policy Server performs the query as the database user specified in the Username field of the Credentials and Connection tab for the user directory. When constructing the SQL statement for the Manual Entry field, you need to be familiar with the database schema for the user directory. For example, if you are using the SmSampleUsers schema and want to add specific users, you could select from the SmUser table.
  
  Note: For an LDAP directory, you can enter all in the Manual Entry field to add all directory entries to the consumer.
Click Add to Current Members.
The FSS Administrative UI adds the user or query to the Current Members list.
Click OK to save your changes and return to the SiteMinder Affiliate dialog.