From the Users/Groups dialog box, you can use the Manual Entry option to add users who can access the Service Provider resources.
To add a user by manual entry:
For each DN specified in the Entry field, you can select an action from the Action drop down list, as follows:
Search Users--the LDAP search is limited to matches in user entries.
Search Groups--the LDAP search is limited to matches in group entries.
Search Organizations--the LDAP search is limited to matches in organization entries.
Search Any Entry--the LDAP search is limited to matches in user, group, and organization entries.
Validate DN--the LDAP search locates this DN in the directory.
For an Microsoft SQL Server or Oracle, you can enter a SQL query instead. For example:
SELECT NAME FROM EMPLOYEE WHERE JOB =’MGR’;
The Policy Server performs the query as the database user specified in the Username field of the Credentials and Connection tab for the user directory. When constructing the SQL statement for the Manual Entry field, you need to be familiar with the database schema for the user directory. For example, if you are using the SmSampleUsers schema and want to add specific users, you could select a user entry from the SmUser table.
Note: For an LDAP directory, you can enter all in the Manual Entry field to add all directory entries to the Service Provider.
The FSS Administrative UI adds the user or query to the Current Members list.
|
Copyright © 2012 CA.
All rights reserved.
|
|