|
|
|
The User Attributes tab of the User Directory Dialog allows you to specify attributes in the WinNT user directory that the Policy Server uses to store data for certain SiteMinder features.
You must use the Apply button in the User Directory Dialog to save your custom user directory before configuring user attributes. When you apply your changes, the Policy Server uses the shared library you specified in the Library field of the Directory Setup tab to determine which fields in the User Attributes tab are available for the custom directory.
The following fields may be available based on the library for your custom user directory connection:
Name of the attribute SiteMinder uses as the Universal ID. To try the sample for the Directory API, enter login.
The Universal ID can be passed to other applications that communicate with SiteMinder to maintain the identity of the user. This feature is mainly used as a bridge between SiteMinder and legacy applications that often use attributes other than a user name to identify the user.
Name of the user directory attribute that holds the disabled state of the user. To try the sample for the Directory API, enter disabled.
The attribute name you enter in this field must correspond to the location in the directory that contains the disabled flag.
Name of the user directory attribute that SiteMinder should use to authenticate a user’s password. To try the sample for the Directory API, enter password.
The attribute name you enter in this field must correspond to the location in the directory that contains user passwords. The attribute you choose must be of the type binary.
Name of the user directory attribute that SiteMinder can use for Password Services data.
SiteMinder’s Password Services feature requires a location in the user directory to store a history of user password information.
The attribute you choose for Password Data in the user directory must be of the type binary.
Name of the attribute in the user directory that contains the user’s anonymous ID.
For SiteMinder sites that allow anonymous login, users may access resources by authenticating with an anonymous ID established by an Anonymous authentication scheme. When a user logs in using the anonymous scheme, SiteMinder stores the specified DN as the value of the attribute specified in the Anonymous ID field.
Name of the attribute in the user directory that contains a response that SiteMinder can send back to a user.
This user directory attribute contains challenge and response information used in Password Services. For the example in step 6, this field indicates a user directory attribute that contains the hint users enter when they register a new user account. If users forget their passwords, SiteMinder uses the attribute specified in this field to determine the password hint that should be returned to the users.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |