Security policies must be configured in an LDAPv3-compliant directory. See Evaluating the System for Directory Management of Users.
You can use LdapServerName to configure automatic failover to a second directory containing duplicate security policies (recommended). See LdapServerName.