Configuring for Access Manager Single Sign-On

This section describes how to configure the evaluation solution's mail and calendar services for Access Manager SSO.

To Configure Messaging Server for SSO

Steps

1. Change directory to the Messaging Server directory:

   cd /opt/SUNWmsgsr/sbin

2. Run the following variations of the Messaging Server configuration command:

   1. ./configutil -o local.webmail.sso.amnamingurl -v http://evaluation_host/amserver/namingservice

   2. ./configutil -o local.webmail.sso.uwcenabled -v 1

   3. ./configutil -o local.webmail.sso.uwclogouturl -v http://evaluation_host:80/uwc/base/UWCMain\?op=logout

   4. ./configutil -o local.webmail.sso.uwcport -v 80

   5. ./configutil -o local.webmail.sso.uwccontexturi -v “uwc”

   6. ./configutil -o local.webmail.sso.amcookiename -v iPlanetDirectoryPro

   7. ./configutil -o local.webmail.sso.uwchome -v http://evaluation_host/uwc

   8. ./configutil -o service.http.allowadminproxy -v yes

   9. ./configutil -o service.http.ipsecurity -v no

3. Run the command to stop Messaging Server:

   ./stop-msg

4. Run the command to restart Messaging Server:

   ./start-msg

   The startup process displays a series of startup messages. The startup process might take a few moments. When startup is complete, the following message is displayed:

   starting job-controller server

   You have configured Messaging Server for SSO.

To Configure Calendar Server for SSO

This section describes configuring Calendar Server for SSO.

Steps

1. Change directory to the Calendar Server configuration directory:

   cd /opt/SUNWics5/cal/config

2. Edit the ics.conf file.

   Find each of the following parameters and make the described changes. In some cases you change the value and uncomment the line. In other cases, you simply means uncomment the line.

   1. Find service.http.allowadminproxy. Set its value to yes.

   2. Find local.calendar.sso.amnamingurl. Uncomment the item and set its value to http://evaluation_host:80/amserver/namingservice.

   3. Find local.calendar.sso.singlesignoff. Uncomment the item. Leave its value set to yes.

   4. Find local.calendar.sso.amcoookiename. Uncomment the item. Leave its value set to iPlanetDirectoryPro.

   5. Find local.calendar.sso.logname. Uncomment the item. Leave its value set to am_sso.log.

   6. Find service.calendarsearch.ldap. Set its value to no.

   7. Find service.http.ipsecurity. Uncomment the item. Change its value to n.

   8. Find caldb.serveralarms. Confirm that its value is 1.

   9. Find caldb.serveralarms.dispatch. Confirm that its value is yes.

   10. Find caldb.serveralarms.url. Uncomment the item and confirm that its value isenp:///ics/customalarm.

   11. Find caldb.serveralarms.contenttype. Uncomment the item and set its value to text/calendar.

   12. Find caldb.serveralarms.dispatchtype. Confirm that its value is ens.

3. Save and close the ics.conf file.

4. Change directory to the Calendar Server directory:

   cd /opt/SUNWics5/cal/sbin

5. Run the command to stop Calendar Server:

   ./stop-cal

6. Run the command to restart Calendar Server:

   ./start-cal

   The startup process displays a series of startup messages. The startup process might take a few moments. When startup is complete, the following message is displayed:

   Calendar services were started.

   You have configured Calendar Server for SSO.