Symantec Access Management

 View Only

Tech Tip : CA Single Sign-On : ODSEE Policy Store : Error occurred during "SearchExt" for "(&(objectClass=xpsObject)(|(xpsCategory=2)(xpsCategory=3)))", text: Insufficient access 

Apr 21, 2017 07:41 AM

Question:

We have configured our Policy Store in ODSEE with a non-Directory Manager account, and we are getting this error when the Policy Server starts:[SmLdapBulkSearch.cpp:730][InitReadsVLV][ERROR][sm-xpsxps-01080]Error occurred during "SearchExt" for "(&(objectClass=xpsObject)(|(xpsCategory=2)(xpsCategory=3)))", text: Insufficient access]

 

What could be causing this error?

Environment:

Policy Server : R12.52 SP1
Policy Store : ODSEE 11.1.1.7.0

Answer:

After Sun/Oracle DSEE 6.x, cn=config branch is not under root DN, and it is considered as a separated branch. Then, for non-Directory Manager users, you need to add an additional ACI to grant read access to cn=config, as the user needs permission to browse VLV indexes.

 

Additional Information:

Statistics
0 Favorited
0 Views
0 Files
0 Shares
0 Downloads

Tags and Keywords

Related Entries and Links

No Related Resource entered.