We need to send an HTTP header. The value that we need to send is not
contained in the object of the authenticated user but it can be obtained
with a prior search in another branch of the same user store (using
information of the authenticated user).
We could use the SDK ("policy extension can use external data sources
to Obtain the information"). But, there is a direct way to get the
attribute using an LDAP search, without using the SDK?. And if we have
to use the SDK, there is a way to prevent the LDAP connection?

cfmolina's Profile: https://forums.netiq.com/member.php?userid=2942
View this thread: https://forums.netiq.com/showthread.php?t=47507