Symantec Access Management

Hi ,

I am trying to install siteminder.

Version : 12.52

Windows server : 2008

Java version : 1.7.0_45 32 bit

• I was able to install policy server. It is up and running.
• I am trying to create policy store from wizard C:\Program Files (x86)\CA\siteminder\install_config_info\ ca-ps-config.exe

Test LDAP Connection is working fine.

But I am getting below error under ca-ps-details.log while executing smldapsetup lmod command.

COMMAND: "C:\Program Files (x86)\CA\siteminder\bin\smldapsetup" ldgen -fsmldap.ldif

RETURN: 0

STDOUT: --------------- Verifying LDAP settings ---------------

STDERR:

***

***

COMMAND: "C:\Program Files (x86)\CA\siteminder\bin\smldapsetup" ldmod -fsmldap.ldif

RETURN: 64

STDOUT: --------------- Verifying LDAP settings ---------------

LDAPError: 64. LDAP error 64. Naming violation

Unable to create policy store branch under root DN

STDERR:

***

***

COMMAND: "C:\Users\sysadmin\AppData\Local\Temp\2\454328.tmp\smreg"  -su ******

RETURN: -1

STDOUT: The super user could not be saved in the policy store.

Failed to create the super user account.

Please help.

Thanks,

Ketaki

Hi Vijay,

I have copied smreg.exe to <siteminder_home>\bin folder and then ran smreg -su <password>.

It is giving below error :

My question is while creating policy store I am getting below error :

C:\Program Files (x86)\CA\siteminder\bin>smldapsetup ldmod -fsmldap.ldif

--------------- Verifying LDAP settings --------------- 

LDAPError: 64. LDAP error 64. Naming violation

Unable to create policy store branch under root DN

Is it something to do with permissions for the AD user with which I am trying to create policy store. The AD user that I am using is already part of Administrators group. Do I need to give some extra privileges or change any configurations to this AD user?

Thanks,

Ketaki