This chapter first presents you with methods for disabling a web agent and then leads you through the uninstallation process. This chapter is organized as follows:
In certain situations, you might want to disable a web agent temporarily. You can disable this web agent in two ways. The first method applies to all web agents. The second method is more specific to this particular web agent. Furthermore, the second method requires you to remove the mapping. If you choose this method, and you later want to enable the agent, you need to add the mapping again.
This task requires you to reset the property that controls the not-enforced URI list in the web agent AMAgent.properties configuration file.
Reset the value of this property to the asterisk, “*,” as follows:
com.sun.am.policy.agents.config.notenforced_list = *
Restart Microsoft IIS 5.0.
Issue the following command:
PolicyAgent-base\iis\bin\IISadmin.vbs -a REMOVEFILTER -f AccessManagerAgent
where PolicyAgent-base represents the directory in which the web agent was originally installed. The following is an example of how the command would appear with the PolicyAgent-base place holder replaced with the default installation directory:
c:\Sun\Access_Manager\Agents\2.2\iis\bin\IISadmin.vbs -a REMOVEFILTER -f AccessManagerAgent
You can uninstall a web agent on a Windows system using the graphical user interface (GUI). First perform the pre-uninstallation steps if they apply.
The tasks presented in this pre-uninstallation section enable you to unconfigure Basic Authentication of Agent for Microsoft IIS 5.0.
This pre-uninstallation section only applies if the Basic Authentication filter was previously configured, as described starting in Preventing an Additional Authentication Prompt: Preparing to Install Agent for Microsoft IIS 5.0.
The tasks presented in this section are as follows:
The tasks presented in this section describe how to unconfigure previously performed configuration steps, as described in Preventing an Additional Authentication Prompt: Preparing to Install Agent for Microsoft IIS 5.0 and Configuring Agent for Microsoft IIS 5.0 for Basic Authentication.
This task requires the use of Access Manager Console and the Access Manager AMConfig.properties configuration file
Log in to Access Manager as amadmin.
With the Access Control tab selected, click the name of the realm you wish to configure.
Click the Authentication tab.
Click Advanced Properties.
The Advanced Properties button is in the General section.
Scroll down to the Authentication Post Processing Classes field.
In the Authentication Post Processing Classes field, remove the appropriate text depending upon the Access Manager version:
Remove the following: com.sun.identity.authentication.spi.ReplayPasswd
Remove the following: ReplayPasswd
Scroll up to click Save.
Click Log Out to log out of the Access Manager Console.
Remove the property com.sun.am.replaypasswd.key from the Access Manager AMConfig.properties configuration file as described in the following substeps.
Restart Access Manager.
This task is performed in Microsoft IIS 5.0 server.
Start the Internet Services Manager.
Right click the web site that is protected by the agent.
Select Properties from the drop-down list.
Select Directory Security.
Select Edit in Authentication and access control.
Uncheck the Basic Authentication box.
Check the box “Enable anonymous access.”
Click OK to save the changes.
Open the AMAgent.properties configuration file.
Remove the following properties and their corresponding values:
Save and close the AMAgent.properties configuration file.
Restart the Microsoft IIS 5.0 server.
To uninstall a web agent, you must run the uninstallation program.
In the Windows Start menu, choose Settings > Control Panel.
In the Control Panel, open Add/Remove Programs.
In the Add/Remove Programs window, choose Sun Java(tm) System Access Manager Policy Agent.
Click Next on Welcome panel.
Click Uninstall Now.
Click Exit after uninstallation is complete.
Restart the Microsoft IIS 5.0 instance from which you just uninstalled the agent.