ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Comma removed when modifying an existing policy containing a comma in the LDAP filter in AdminUI
Article ID: 77172
CA Single Sign On Secure Proxy Server (SiteMinder)CA Single Sign On SOA Security Manager (SiteMinder)CA Single Sign-On
When we are editing a policy through AdminUI where LDAP user entries were added manually, if the LDAP Filter path contains any comma as attribute value, it is being removed after we save it.
For example: 1) We access AdminUI, and create a new Domain with an LDAP server, Realm, and Rule. 2) Create a Policy and select the Domain, set a Policy name, and on Users step click on Add Entry. 3) Select "Search any entry" on the drop down, and under condition we set: Role equals user,admin 4) Click Add button and LDAP Notation shows as: (role=user,admin) 5) Save changes, and then modify the policy. Edit the LDAP entry on Users tab, and note the notation has changed. 6) If we save changes without modifying anything, the object will be saved without the commas as well.
As workaround, we are creating the policies again from scratch, however this is causing us to dedicate additional time for these modifications, which are very common in our environment. How can we avoid the commas to be removed?
AdminUI R12.52 SP1
Upgrade the AdminUI to 12.52SP1CR09 :
Administrative UI removes the comma in a LDAP filter when a user selects to modify an existing policy.