Configuring LDAP Session Store in Policy Server without Smconsole
Article ID: 244630
Updated On:
Products
SITEMINDER
Issue/Introduction
Trying to setup a new Session Store using CA Directory DSA as per documentation (1).
All the changes on DSA have been applied, is there a way to configure the Policy Server to use the Session Store by the command line instead of smconsole?
XPSConfig works, but the LdapSessionAdminPassword to bind with Session Store DSA is missing.
AdminName, RootDN, and Server details but without "password" information it won't connect with Session Store.
XPSConfig:
92-LdapSessionAdminName Type: String Scope: Managed
Desc: LDAP session server
administrator's username.
Current Value:""
93-LdapSessionMaxConnections Type: Numeric Scope: Managed
Desc: The maximal number of connections
to Session Server.
Current Value:"10"
94-LdapSessionRootDn Type: String Scope: Managed
Desc: LDAP session server root DN.
Current Value:""
95-LdapSessionServer Type: String Scope: Managed
Desc: LDAP session server address.
Current Value:""
96-LdapSessionServerEnabled Type: Logical Scope: Managed
Desc: Indicates whether LDAP session
server is enabled.
Current Value:"FALSE"
97-LdapSessionUseSSL Type: Logical Scope: Managed
Desc: Indicates whether LDAP session
server uses an SSL connection.
Current Value:"FALSE"
Resolution
Follow the below steps to make this parameter visible in XPSConfig tools.
- Navigate to <SiteMInder home>\xps\dd\SmObjects.xdd file, and search for the parameter "LdapSessionAdminPassword" that has an attribute Visible=no. Change the value of this parameter to Visible=yes and save the SmObjects.xdd file.
- Stop the Policy Server;
- Run XPSDDinstall SmObjects.xdd;
- Start the Policy Server;
- Run the XPSConfig command and the parameter will get visible to input the LDAP Session Store password;
Additional Information
Feedback
Yes
No
Powered by
