Question:
We are configuring an Active Directory as a User Store on our environment, and we want to use the AD Namespace features, so we have accessed AdminUI to configure it. When, following the documentation steps, we create the new User Directory, on the namespace definition we cannot select the AD Namespace, as we only see the following types:
LDAP:
ODBC:
Custom:
If we configure the directory as LDAP Namespace, it works fine, but we would like to use the AD namespace for some features. Why we cannot see the "AD:" option in AdminUI?
Environment:
Policy Server R12.7 on RHEL7
AdminUI R12.7 on RHEL7
Answer:
The AD Namespace only can be set when the AdminUI is pointing to a Windows Policy Server, as a Linux PS cannot use the AD Namespace features, so the option is hidden in the AdminUI. If you want to enable this feature, your Policy Servers need to be Windows OS based, so if you have a mixed OS environment, have this into account if you enable AD Namespace to avoid having Linux Policy Servers attending to requests for AD Namespace.
Additional Information:
https://docops.ca.com/ca-single-sign-on/12-7/en/configuring/policy-server-configuration/user-directories/user-directory-connections-overview/#UserDirectoryConnectionsOverview-ActiveDirectoryOverview
KB : KB000091884