ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How delete PolicyStore schema in ActiveDirectory.

book

Article ID: 213328

calendar_today

Updated On:

Products

CA Single Sign On Federation (SiteMinder)

Issue/Introduction

PolicyStore configured in ActiveDirectory has following schema.


ou=Netegrity,rootdn
CN=smxxx,CN=Schema,CN=Configuration,rootDN
CN=xpsxxx,CN=Schema,CN=Configuration,rootDN


When we try to delete CN=smxxx and CN=xpsxxx from ADSIEdit, so the operation fails by "Access is denied".

Cause

This is by design for ActiveDirectory.

Environment

SiteMinder r12.8

Resolution

We can not delete PolicyStore schema in ActiveDirectory.