Configuring SSO Through Communications Servers Trusted Circle Technology (Sun Java System Calendar Server 6 2005Q4 Administration Guide)

Sun Java System Calendar Server 6 2005Q4 Administration Guide

Configuring SSO Through Communications Servers Trusted Circle Technology

The following table shows the SSO configuration parameters with each parameter’s default value and description when the Communications Servers trusted circle technology.

Table E–13 SSO Configuration Parameters in the ics.conf File Using Communications Servers Trusted Circle Technology


Parameter	Default Value	Description
`sso.appid`	`"ics50"`	Unique application ID for this Calendar Server installation. Each trusted application must also have a unique application ID. For example: `sso.appid="ics50"`
`sso.appprefix`	`"ssogrp1"`	The prefix value to be used for formatting the SSO cookies. The same value needs to be used by all trusted applications, because only SSO cookies with this prefix will be recognized by Calendar Server. The application prefix must not end with a hyphen (`-`), because Calendar Server appends a hyphen to the value. For example: `sso.appprefix="ssogrp1"`
`sso.appid.url`		Verification URL for the value specified for `sso.appid`. For example: "sso.ics50.url="http://siroe.com:80/ default.html"
`sso.nnn.ip`	`sso.appid.ip`	IP address of the value specified for `sso.appid`. For example: `sso.ics50.ip=` `"123.12.456.123"`
`sso.cookiedomain`	`"."`	Causes the browser to send a cookie only to servers in the specified domain. The value must begin with a period (`.`). For example: `".sesta.com"`
`sso.enable`	"`1"`	Enables or disables SSO: `"1"` (default) enables SSO functions. `"0"` disables SSO functions. If this parameter is missing from `ics.conf`, Calendar Server ignores SSO functions.
`sso.singlesignoff`	`"true"`	If set to `"true"`, the server removes all SSO cookies for the user that match the value for sso.appprefix when the user logs out. If `"false"` the server removes only its SSO user cookie.
`sso.userdomain`	`" "`	Sets the domain used as part of the user's SSO authentication.
`sso.appid.url="verifyurl"`	`" "`	Specifies the verify URL values for peer SSO hosts. A parameter is required for each trusted peer. appid is the application ID of a peer SSO host whose SSO cookies are to be trusted. For Calendar Server, the `appid` is `ics50.` `verifyurl` identifies the URL of the trusted peer in the format: `"http://host:port/VerifySSO?"`. Do not omit the question mark (`?`) after `VerifySSO`. host is the URL of the host, and port is the port number for the host. For example, for Calendar Server on `sesta.com` with port number 8883: `sso.ics50.url=` `"http://sesta.com:8883/VerifySSO?"`