Installation and Upgrade GuidesDirectory Configuration GuideOracle Internet Directory Server › Create a SiteMinder 5.5 or 6.0 Policy Store in Oracle Internet Directory (OID) Directory Server

Previous Topic: Policy Store Schema Considerations

Next Topic: Connect to an OID User Directory

Create a SiteMinder 5.5 or 6.0 Policy Store in Oracle Internet Directory (OID) Directory Server

Important! Before running a SiteMinder utility or executable on Windows Server 2008, open the command line window with Administrator permissions. Open the command line window this way, even if your account has Administrator privileges. For more information, see the release notes for your SiteMinder component.

To create the required SiteMinder 5.5 or 6.0 policy store schema in OID Directory Server

  1. Create a domain in OID using the ODM by right-clicking Entry Management and selecting Create.
  2. In the Distinguished Name dialog:
    1. Click Add.
    2. Select the domain.
  3. Enter:
    1. dc=dcbok for the Distinguished Name value.
    2. dc for the dc value.
  4. Do the following:
    1. Create an organizational unit.
    2. Select the organizational unit.
    3. Enter ou=bok,dc=dcbok for Distinguished Name value and bok for the ou value.
  5. Point the Policy Server at the OID Directory Server that you plan to use as a policy store by following the instructions in the Policy Server Installation Guide.

    The following are sample values you can enter on the Data tab of the 6.0 Policy Server Management Console. You can use similar values for 5.5:

    Database

    Policy Store

    Storage

    LDAP

    LDAP IP Address

    192.168.122.18:389

    Admin Username

    oracleadmin

    Root DN

    ou=ps6,dc=CA

  6. Create the schema file, using the Policy Server’s smldapsetup utility. On the system where the Policy Server is installed, use the command prompt to go to <nete_ps_root>\bin. Run the following command: 
    smldapsetup ldgen -fpstoreschema.ldif
  7. Import the schema you created in to the policy store server by running the following command: 
    smldapsetup ldmod -fpstoreschema.ldif
  8. In OID, to confirm that you have performed the steps correctly, the base tree structure that holds the policy store data looks like the following:

  9. Confirm that the Policy Server is pointing to the OID policy store by using the Data tab of the Policy Server Management Console. For detailed instructions, see the Policy Server Management Guide.
  10. Import the base policy store data from the file smpolicy.smdif: 
    smobjimport -i<siteminder_installation>\db\smdif\smpolicy.smdif -v

    Note: When manually configuring a policy store on Windows, you can import one of the following:

    The file named smpolicy–secure provides additional security through enhanced default Web Agent configuration parameters.