Installation and Upgrade Guides › Directory Configuration Guide › IBM Directory Server › IBM Directory Server as a Policy Store › How to Configure the Policy Store

How to Configure the Policy Store

To configure an IBM Directory Server as a policy store, complete the following steps:

1. Verify that you have met the IBM Directory Server prerequisites.
2. Verify that you have gathered the necessary information.
3. Point the Policy Server to the policy store.
4. Create the policy store schema.
5. Set the SiteMinder super user password.
6. Import the default policy store objects.
7. Import the policy store data definitions.
8. Restart the Policy Server.
9. Prepare for the Administrative UI registration.

Point the Policy Server to the Policy Store

You point the Policy Server to the policy store so the Policy Server can access the policy store.

Follow these steps:

1. Open the Policy Server Management Console.

   Important! If you are accessing this graphical user interface on Windows Server 2008, open the shortcut with Administrator permissions. Use Administrator permissions even if you are logged in to the system as an Administrator. For more information, see the release notes for your SiteMinder component.

2. Click the Data tab.
3. Select the following value from the Database list:

   Policy Store
   

4. Select the following value from the Storage list:

   LDAP
   

5. Configure the following settings in the LDAP Policy Store group box.
   • LDAP IP Address
   • Admin Username
   • Password
   • Confirm Password
   • DN

   Note: You can click Help for a description of fields, controls, and their respective requirements.

6. Click Apply.
7. Click Test LDAP Connection to verify that the Policy Server can access the policy store.
8. Select the following value from the Database list:

   Key Store
   

9. Select the following value from the Storage list:

   LDAP
   

10. Select the following option:

    Use Policy Store database
    

11. Click OK.

Create the Policy Store Schema

You create the policy store schema so the directory server can function as a policy store and store SiteMinder objects.

To create the policy store schema

1. Access the directory server using the IBM directory server configuration tool.
2. Navigate to policy_server_home\IBMDirectoryServer.

   policy_server_home

   Specifies the Policy Server installation path.

3. Use the IBM directory server configuration tool to add the V3.siteminderrelease schema file to the Manage Schema Files section of the schema configuration.

   release

   Specifies the SiteMinder release.

4. Navigate to policy_server_home\xps\db.
5. Locate the following file:

   IBMDirectoryServer.ldif

6. Use the IBM directory server configuration tool to add the file to the Manage Schema Files section of the schema configuration.
7. Restart the directory server.

   The policy store schema is created.