Installation and Upgrade Guides › Policy Server Installation Guide › Installing the Policy Server on Windows › Install the Policy Server › Configure an LDAP Policy Store › Configure ADAM/AD LDS as a Policy Store

Configure ADAM/AD LDS as a Policy Store

To use the Policy Server installer to configure ADAM or AD LDS as a policy store

1. Be sure that you have met the prerequisites for configuring ADAM/AD LDS as a policy store.
2. When prompted by the installer to configure the policy store, enter the following information and click Next:

   IP address

   Specifies the IP Address of the directory server host system.

   Port number

   Specifies the port on which the directory server instance is listening.

   Root DN

   Specifies the root DN location of the application partition in the directory server where the policy store schema must be installed.

   Example: dc=netegrity,dc=com

   Admin DN

   Specifies the full domain name, including the guid value, of the directory server administrator.

   Example: CN=user1,CN=People,CN=Configuration,CN={guid}

   Admin password

   Specifies the password of the directory server administrator.

3. In the next Policy Store dialog, specify if a different LDAP user account is to administer the policy store.

   By default, SiteMinder uses the LDAP administrator account to administer the policy store. You have the option to have the policy store administered through a different LDAP user account. The complete DN for the user is required to configure SiteMinder this way.

   Note: This user must have all the necessary privileges to modify attributes and change passwords.

   • If you do not want to use a different LDAP account, click Next.
   • If you want to use a different LDAP account, do the following:
     1. Select Use different LDAP user.
     2. Enter the DN of the LDAP user.
     3. Enter and confirm the password for the specified account.
     4. Click Next.

     Example: uid=SMAdmin, ou=people, o=security.com.

4. In the next Policy Store dialog, select Initialize LDAP instance only if you are initializing a new LDAP instance and click Next.
5. For the SiteMinder super user password, complete the following:
   1. Enter a password for the SiteMinder super user account. The pre–defined SiteMinder super user account has maximum SiteMinder privileges. The password can be from 6 to 24 characters in length.

      Note: The password is case–insensitive, except when the password is stored in an Oracle policy store.

   2. Re–enter the password.

      Important! Take note of the password. You use this password to log into the Policy Server User Interface for the first–time. You can change the password using the Policy Server Management Console.

      Note: We recommend that you do not use this account for day–to–day operations. Instead, use this account to access the Policy Server User Interface for the first–time to create another SiteMinder administrator with system–wide privileges. For more information about the Policy Server Management Console, see the Policy Server Management Guide.

   3. Click Next.
6. Review the settings in the Pre–Configuration Summary and click Install.

   The installation program begins copying files to your system. The installation can take a few minutes.

7. Click Done to complete the installation and reboot the system.

   If there were problems during the installation, you can find the installation log files in siteminder_home\install_config_info.

   siteminder_home

   Specifies the Policy Server installation path.

   The file names are:

   • CA_SiteMinder_Policy_Server_v6.0_SP6_InstallLog.log
   • nete-ps-details.log

     The nete-ps-details.log file lets you determine the status of the policy store.

8. (Optional) Access the Policy Server User Interface.

More Information:

Access the Policy Server User Interface