Oracle database as Policy Store configuration without smconsole
Article ID: 383694
Updated On:
Products
SITEMINDER
Issue/Introduction
Running Policy Server, how to configure ODBC Policy and Session Store without the smconsole?
Resolution
Use the command XPSConfig to bring the configuration as per the smconsole.
In both cases, edit manually the system_odbc.ini file as per documentation (1)(2).
Use XPSConfig to configure the section that should be set in the smconsole.
To illustrate on a Linux Policy Server:
# XPSConfig
[XPSConfig - XPS Version 12.8.0800.2892]
Log output: /{home_policy_server}/log/XPSConfig.2024-11-21_161637.log
PRODUCTS MENU*************************************************************CA
CDS - CertificateDataStore 12 Parameters
EPM - Enterprise Policy Management 3 Parameters
FED - Federation 5 Parameters
SM - SiteMinder 171 Parameters
XPS - Extensible Policy Store 26 Parameters
-------------------------------------------------------------------
X - xTrace
-------------------------------------------------------------------
Q - Quit
-------------------------------------------------------------------
Enter Option (id or X or Q): SM
[...omitted for brevity...]
+++ for Session Store:
35-DbSessionAdminName Type: String Scope: Managed
Desc: ODBC session store database
administrator's username.
Current Value:""
36-DbSessionAdminPassword Type: String Scope: Managed
Desc: ODBC session store database
administrator's password.
Current Value:(sensitive)
37-DbSessionDataSource Type: String Scope: Managed
Desc: The ODBC data source used by ODBC
session store.
Current Value:"SiteMinder Session Data Source"
38-DbSessionMaxConnections Type: Numeric Scope: Managed
Desc: The maximal number of connections
to ODBC session store.
Current Value:"16"
39-DbSessionServerEnabled Type: Logical Scope: Managed
Desc: Indicates whether ODBC session
server is enabled.
Current Value:"FALSE"
145-SessionServerNamespace Type: String Scope: Managed
Desc: The session server namespace.
Current Value:"LDAP:"
+++ for Policy Store
24-DbKeyUseDefault Type: Logical Scope: Managed
Desc: Indicates whether ODBC key store
uses the ODBC object store
settings.
Current Value:"FALSE"
30-DbObjAdminName Type: String Scope: Managed
Desc: ODBC object store database
administrator's username.
Current Value:"joe"
31-DbObjAdminPassword Type: String Scope: Managed
Desc: ODBC object store database
administrator's password.
Current Value:(sensitive)
32-DbObjDataSource Type: String Scope: Managed
Desc: The ODBC data source used by ODBC
object store.
130-ObjStoreNamespace Type: String Scope: Managed
Desc: The object store namespace.
Current Value:"LDAP:"
Note:
When configuring the Policy Store, specify if the Key Store will be in the Policy Store or separate instance.
For that, configure the above setting of 24-DbKeyUseDefault.
If the Key Store is in separate instance, then configure also the following:
20-DbKeyAdminName Type: String Scope: Managed
Desc: ODBC key store database
administrator's username.
Current Value:""
21-DbKeyAdminPassword Type: String Scope: Managed
Desc: ODBC key store database
administrator's password.
Current Value:(sensitive)
22-DbKeyDataSource Type: String Scope: Managed
Desc: The ODBC data source used by ODBC
key store.
Current Value:"SiteMinder Keys Data Source"
23-DbKeyMaxConnections Type: Numeric Scope: Managed
Desc: The maximal number of connections
to ODBC key store.
Current Value:"5"
Additional Information
Feedback
Yes
No
Powered by
