IBM Support

Policy Server Configuration requires secAuthority=Default suffix.



The following error message appears when trying to configure the Tivoli Access Manager for e-Business Policy Server, 2006-06-27-11:38:12.396-04:00I----- 0x16B480C9 IRAapi ERROR rgy ira ira_domain.c 1314 0x40509d80 HPDRG0201E Error code 0x20 was received from the LDAP server. Error text: "No such object".


HPDRG0201E Error code 0x20 was received from the LDAP server. Error text: "No such object"


The configuration process could not find the suffix in the user registry.

** Additional error displayed:

2006-06-27-11:38:12.400-04:00I----- 0x16B480CE IRAapi ERROR rgy ira ira_domain.c 301 0x40509d80 HPDRG0206E The secAuthority=Default suffix is required but was not found on the LDAP server. The requested operation cannot be performed.

Resolving The Problem

Add the suffix secAuthority=Default to the user registry before attempting configuration.

For Tivoli Directory Server 6.X, the commands are,

1. Stop IDS Server. (/opt/IBM/ldap/V6.3/sbin/ibmslapd -I <instance> -k)

2. /opt/IBM/ldap/V6.3/sbin/idscfgsuf -I <instance> -s secAuthority=Default

3. Start IDS Server. (/opt/IBM/ldap/V6.3/sbin/ibmslapd -I <instance>)

You can determine instance names by using the idsilist command. For example,

Directory server instance(s):

[{"Product":{"code":"SSPREK","label":"Tivoli Access Manager for e-business"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Base","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.0;6.1;6.1.1;7.0;8.0;8.0.1;9.0.1;","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Product Synonym


Document Information

Modified date:
16 June 2018