Installation guide
Before You Begin Installation
Chapter 1 Read This First 23
By default, some LDAP user attribute names and HTTP header names are set to
sample values.
To find the appropriate LDAP user attribute names, check the following XML file
on the machine where Sun ONE Identity Server is installed:
S1IS_Install_Dir/SUNWam/config/xml/amUser.xml
The attributes in this file could be either Identity Server user attributes or Identity
Server dynamic attributes. For explanation of these two types of user attributes,
refer Sun ONE Identity Server Administration Guide.
The attribute and HTTP header names that need to be forwarded must be
determined by the end-user applications on the web server that the agent is
protecting. After all, these applications are the consumers of the forwarded header
values (the forwarded information is used for the customization and
personalization of web pages).
#
# The policy attributes to be added to the HTTP header. The
# specification is of the format
# ldap_attribute_name|http_header_name[,...]. ldap_attribute_name
# is the attribute in data store to be fetched and
# http_header_name is the name of the header to which the value
# needs to be assigned.
#
# NOTE: In most cases, in a destination application where a
# "http_header_name" shows up as a request header, it will be
# prefixed by HTTP_, and all lower case letters will become upper
# case, and any - will become _; For example, "common-name" would
# become "HTTP_COMMON_NAME"
#
com.sun.am.policy.am.headerAttributes=cn|common-name,ou|organizational-unit
,o|organization,mail|email,employeenumber|employee-number,c|country
NOTE
The header attributes are available for all web servers except Lotus Domino (all
versions).