You may encounter a problem with WAM UI that is unable to create site minder domains. The smps and site minder trace files may show the following errors:
[08/28/2012][10:14:14.274][10:14:14][2336][3724][][XPS][][][][][][][][][][][][
][][][][][][][][][LogMessage:ERROR: Failed to get the DD Reference for an
Attribute, Attr = CA.SM::Domain.IMSEnvironmentsLink, Vendor = CA, Prod = SM,
Class = Domain]
[08/28/2012][10:14:14.274][10:14:14][2336][3724][][XPS][][][][][][][][][][][][
][][][][][][][][][LogMessage:ERROR: Failed to set the value for an Attribute,
Attr = CA.SM::Domain.IMSEnvironmentsLink, Vendor = CA, Prod = SM, Class =
Domain]
[08/28/2012][10:14:14.274][10:14:14][2336][3724][][XPS][][][][][][][][][][][][
][][][][][][][][][LogMessage:ERROR: Failed Create Operation]
[08/28/2012][10:14:14.274][10:14:14][2336][3724][][XPS][][][][][][][][][][][][
][][][][][][][][][LogMessage:ERROR: Cannot Process the Request.]
This situation is peculiar and will happen when using Site Minder 12.5. The policy store extensions of that version were updated. You can check Identity Manager 12.6 configuraiton guide -> page 308:
Import Data Definitions into the Policy Store
You can control the access of a user to application functions using SiteMinder policies. The Policy Server installation includes the required data definitions to allow this control. You import the IdmSmObjects.xdd
file from this location:
siteminder_home\xps\dd
siteminder_home is the Policy Server installation path.
The new extensions consist of this XDD file and require the creation of the new XPS objects.
The error above can happen if:
- Site Minder policy server was extended to support Identity Manager (running the IDM installer on the site minder machine)
- The IdmSmObjects.xdd was not imported.
In this situation Site Minder is expecting to find the objects/attributes related to the identity manager in the schema ( such as: Domain.IDMEnvironmentsLink above ) but won't find them and fail on the reference error above.
Make sure to run this IdmSmObjects.xdd as documented to overcome this error.
Yours,
Sagi Gabay
CA Technologies.