Previous Topic: Install the IdP Web Agent Option PackNext Topic: Set up an Affiliate Domain at the IdP

Federation Security Services GuideDeploy Federation Using a Manual ConfigurationSet Up the Identity ProviderSpecify the User Store for the IdP Policy Server

Specify the User Store for the IdP Policy Server

The IdP user directory consists of user records for which the Identity Provider generates assertions.

The following steps specify how to configure a user directory in the FSS Administrative UI. The directory, named IdP LDAP, is the Sun ONE LDAP directory that contains the users Tuser1 and Tuser2.

To configure a user directory

  1. Log in to the FSS Administrative UI.
  2. Select the System tab.
  3. Select Edit, System Configuration, Create User Directory.

    The User Directory Properties dialog opens.

  4. Complete the following fields in the Directory Setup section:
    Name

    IDP LDAP

    In the Directory Setup section:

    NameSpace

    LDAP

    Server

    www.idp.demo:42088

  5. Complete the following field in the LDAP Search section:
    Root

    dc=idp,dc=demo

    Accept the defaults for the other values.

    Complete the following field in the LDAP User DN Lookup section:

    Start

    uid=

    End

    ,ou=People,dc=idp,dc=demo

  6. Click View Contents to verify you can view the contents of the directory.
  7. Click Submit.
  8. Set up an Affiliate Domain at the IdP.