Problem

Cannot log into Adminui with SunOne/Oracle Directory Server as policy store.

Environment:  

Policy server version: 12.x, 12.51, 12.52, 12.52SP1, 12.52SP2

Operating System: ALL

Policy Store: SunOne or Oracle Directory Server

Cause: 

Indexes are missing resulting in slow communication between policy server and adminui which results in a timeout when logging into adminui.

Resolution/Workaround:

Indexes need to be added to the SunOne/Oracle Directory Server by running either the SunOneBrowse.ldif(SunOne) or OracleDirectoryBrowse.ldif(Oracle Directory) on your LDAP server.

These index files can be found under \CA\siteminder\xps\db\ on the policy server box.

Before running these, make sure you edit the areas of the file which indicate <Root DN>,

Substitute the full path of your DN in these areas, save the file, and run directly against your SunOne or Oracle Directory Server.

Also, there are additional instructions in the file itself based on the version of the directory you are using.

Please follow these instructions as well.

NOTE: In a replicated environment, this file needs to be run on each copy of the policy store as these indexes are not replicated.