Policy Server Authorization Failure Using Directory Mapping

book

Article ID: 19571

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

While using Directory Mapping, you may get an authorization failure and in the policy server traces you may see the following:

[10/11/2013][07:40:19.360][848][4964][SmAzMapping.cpp:752][Leave function CSmAzMapping::ProcessRealm][][][][CSmAzMapping::ProcessRealm][NULL][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][10/11/2013][07:40:19.360][848][4964][SmAzMapping.cpp:331][Failed to find any valid user using Identity Mapping][][][][CSmAzMapping::GetAzUser][][][][][][][][][][][][][][][][][][][
][][][][][][][][][][][][][][][][][][]

Solution:

You need to check you user directory definition and make sure that user attributes are correctly defined, especially the universal ID because you are using it for the Directory Mapping.

Environment

Release:
Component: SMPLC