Sun OpenSSO Enterprise 8.0 Deployment Planning Guide

Setting Up and Configuring Single Sign-On Between Identity Manager and OpenSSO Enterprise

The following components are used in this deployment:

See the Chapter 1, Integrating Sun Identity Manager , in Sun OpenSSO Enterprise 8.0 Integration Guide for detailed installation steps. The following is a summary of high-level procedures you must complete to enable single sign-on between OpenSSO Enterprise and Identity Manager:

  1. Installing And Configuring MYSQL

    • Install MySQL.

    • Complete post-installation tasks.

  2. Installing And Configuring Identity Manager Application Server

    • Install Application Server.

    • Install Identity Manager on Application Server.

    • Complete post-installation configuration on Application Server.

  3. Create an OpenSSO Enterprise Realm Administrator in OpenSSO Enterprise.

  4. Create an OpenSSO Enterprise Realm Resource Object in Identity Manager.

  5. Provision identities from Identity Manager to OpenSSO Enterprise.

    • Provision a test user from Identity Manager into OpenSSO Enterprise.

    • Provision a test role from Identity Manager into OpenSSO Enterprise.

    • Provision an Admin-User from Identity Manager into OpenSSO Enterprise

    • Provision an Admin-Role from Identity Manager into OpenSSO Enterprise.

  6. Install and Configure the OpenSSO Enterprise Policy Agent on Identity Manager.

    • Complete pre-installation tasks for the OpenSSO Enterprise Policy Agent.

    • Install the OpenSSO Enterprise Policy Agent on the Identity Manager server.

    • Configure the OpenSSO Enterprise Policy Agent on the OpenSSO Enterprise Server.

    • Disable OpenSSO Enterprise Policy Agent protection of the Identity Manager server.

    • Configure the OpenSSO Enterprise Policy Agent on the Identity Manager server.

  7. Configure Identity Manager for single sign-on.

    • Configure Identity Manager Login Module Groups.

    • Configure the Identity Manager User Login Interface.

    • Configure the Identity Manager Admin Login Interface.

  8. Test single sign-on from OpenSSO Enterprise to Identity Manager.

    • Re-Enable OpenSSO Enterprise Policy Agent protection of the Identity Manager server.

    • Test end-user single sign-on between OpenSSO Enterprise and Identity Manager.

    • Test Admin-User single sign between OpenSSO Enterprise and Identity Manager.