Release Notes › Policy Server Release Notes › Defects Fixed in SiteMinder Releases › Defects Fixed for 6.0 SP4 › State Attribute of the LDAP Schema Changed from "s" to "st" (46740)

State Attribute of the LDAP Schema Changed from "s" to "st" (46740)

When loaded into the LDAP Expression Editor or Certificate Mapping Dialogs, the "s" attribute is no longer labeled as "State". Now, it appears as "s". The Policy Server's LDAP Expression Editor honors unrecognized attributes and does not change them. As a result, opening an expression containing an "s" attribute does not cause the Policy Server to converted it to "st".

Now, you need to manually enter the "s" attribute, as it no longer appears in the LDAP Expression Editor Dialog's drop-down menus. You can do this by typing "s" into the first field of the "Condition" input instead of selecting "st (State)" from the drop-down menu. You cannot create new certificate mappings using the "s" attribute, as such a configuration would not work.

For certificate mappings, a third-party library translates the state attribute's OID in the certificate into the string "st", which until this fix, would not be recognized by the Policy Server.