Allowing an OpenSSO Enterprise User to Access the Manager Web Application (Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Apache Tomcat 6.0)

Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Apache Tomcat 6.0

Allowing an OpenSSO Enterprise User to Access the Manager Web Application

In this task, you edit the Tomcat 6.0 version 3.0 Manager web.xml file to allow an OpenSSO Enterprise user to access the Manager web application.

To Allow an OpenSSO Enterprise User to Access the Manager Web Application

Change to the following directory for the Tomcat 6.0 version 3.0 instance:

$CATALINA_HOME/server/webapps/manager/WEB-INF

In the web.xml file, find the user and role information for the Manager role.

This role is defined in the <role-name> element under the <security-role> element.

Delete the Manager security role.

Create a new Manager security role using the user and group that you created in the OpenSSO Enterprise Console, as described in Creating OpenSSO Enterprise Users and Groups.

For example:
```
<security-role>
id=manager,ou=group,dc=realm-name,dc=example,dc=com
</security-role>
```

Replace the Manager role defined in the <role-name> element under the <auth-constraint> element with the contents of the <role-name> element as described in the previous step.

For example:
```
<auth-constraint>
<role-name>id=manager,ou=group,dc=realm-name,dc=example,dc=com</role-name>
</auth-constraint>
```

Save the web.xml file.

© 2010, Oracle Corporation and/or its affiliates