Installation and Upgrade Guides › Directory Configuration Guide › CA LDAP Server for z/OS › How to Upgrade a 6.x Policy Store › Configure a Connection from the Policy Server to CA LDAP Server for z/OS

Configure a Connection from the Policy Server to CA LDAP Server for z/OS

To configure a connection from the Policy Server to the CA LDAP Server for z/OS, create a new user directory object in the Administrative UI.

To configure a connection from the Policy Server to the CA LDAP Server

1. Click Infrastructure, Directory, User Directory, Create User Directory.

   The Create User Directory pane opens.

   Note: You can click Help for a description of fields, controls, and their respective requirements.

2. Type the name and a description of the new User Directory object in the fields on the General group box.
3. Select LDAP from the Namespace list, and type the IP address and port number in the Server field on the Directory Setup group box.

   Note: Load balancing and failover are not supported for this LDAP server.

4. Select the Require Credentials check box, type the full DN and password of the administrator in the fields on the Administrator Credentials group box, and specify whether the directory connection uses SSL.

   Note: This step is required, because TSS does not allow anonymous binds to the user store.

5. Type the values in the fields on the LDAP Search group box, specifying a value of 100 seconds in the Max Time field.

   Note: This value is required, because the Policy Server takes more time when retrieving data from this LDAP Server.

6. Type the values in the fields on the LDAP UserDN Lookup group box.
7. (Optional) Specify the user directory profile attributes that are reserved for SiteMinder's use in the fields on the User Attributes group box.
8. (Optional) Click Create on the Attribute Mapping List group box.

   The Create Attribute Mapping pane opens.

9. Click Submit.

   The Create User Directory task is submitted for processing.