Policy Server Authorization Failure Using Directory Mapping

Article Id: 19571

Status: Published

Updated On: 14-02-2018 07:49

Legacy Id: TEC602382

Products:

CA Single Sign On Secure Proxy Server (SiteMinder) , AXIOMATICS POLICY SERVER , CA Single Sign On SOA Security Manager (SiteMinder) , CA Single Sign-On , CA Single Sign-On

Issue/Introduction:

Description:

While using Directory Mapping, you may get an authorization failure and in the policy server traces you may see the following:

[10/11/2013][07:40:19.360][848][4964][SmAzMapping.cpp:752][Leave function CSmAzMapping::ProcessRealm][][][][CSmAzMapping::ProcessRealm][NULL][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][10/11/2013][07:40:19.360][848][4964][SmAzMapping.cpp:331][Failed to find any valid user using Identity Mapping][][][][CSmAzMapping::GetAzUser][][][][][][][][][][][][][][][][][][][
][][][][][][][][][][][][][][][][][][]

Solution:

You need to check you user directory definition and make sure that user attributes are correctly defined, especially the universal ID because you are using it for the Directory Mapping.

Environment:

Release:
Component: SMPLC