Previous Topic: How to Configure a Domino User Directory as a User StoreNext Topic: How to Configure a Novell eDirectory LDAP Directory Connection

Policy Server GuidesPolicy Server Configuration GuideUser DirectoriesHow to Configure a Domino User Directory as a User StoreConfigure Domino Directory Connections

Configure Domino Directory Connections

You can configure a user directory connection that lets the Policy Server communicate with a Domino user store.

Note: The following procedure assumes that you are creating an object. You can also copy the properties of an existing object to create an object. For more information, see Duplicate Policy Server Objects.

To configure the user directory connection

  1. Click Infrastructure, Directory.
  2. Click User Directory, Create User Directory.

    The Create User Directory pane opens.

    Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

  3. Select LDAP from the Namespace list.

    LDAP settings open.

  4. Complete the remaining required connection information on the General and Directory Setup group boxes.

    Note: If the Policy Server is operating in FIPS mode and the directory connection is to use a secure SSL connection when communicating with the Policy Server, the certificates used by the Policy Server and the directory store must be FIPS compliant.

  5. Type the LDAP Search and LDAP User DN Lookup settings in the fields on the LDAP Settings group box.

    Note: The value that you specify in the Root field must match the organization name that you assigned in Lotus Notes. The Root must also include a country, if you specified a country in Lotus Notes.

    Example: You have an organization called "myorg", which is located in the United States. The Search Root is specified as o=myorg,c=us.

    Note: The search strings that you specify in the User DN Lookup Start and End fields must adhere to proper LDAP notation, not the Lotus Notes shorthand notation. More information about search strings exists in LDAP Search Filters.

  6. (Optional) Click Configure to configure load balancing and failover.

    Note: More information about load balancing and failover, see LDAP Load Balancing and Failover.

  7. (Optional) Select Require Credentials on the Administrator Credentials group box, and type the user name and password of an administrator's account on the user directory in the fields on the group box.
  8. (Optional) Specify the user directory profile attributes that are reserved for SiteMinder's use in the fields on the User Attributes group box.
  9. (Optional) Click Create on the Attribute Mapping List group box.

    The Create Attribute Mapping pane opens.

  10. Click Submit.

    The Create User Directory task is submitted for processing.

More information:

User Disambiguation in an LDAP Directory

LDAP Load Balancing and Failover

Directory Attributes Overview

Define an Attribute Mapping

How to Configure an LDAP User Directory Connection over SSL