Configuring CDSSO

The cross domain single sign-on (CDSSO) feature is configurable through three properties in the web agent AMAgent.properties configuration file. To turn this feature on or off, use the following property:

com.sun.am.policy.agents.config.cdsso.enable = true

By default, this property is set to false, and the feature is turned off. To turn on CDSSO, set this property to true.

Set the URL where CDC controller is installed by specifying the URL in the following property:

com.sun.am.policy.agents.config.cdcservlet.url

The following is an example of how this property could be set:

com.sun.am.policy.agents.config.cdcservlet.url = 
http://host1.eng.example.com:58080/amserver/cdcservlet

The third property, com.sun.am.policy.agents.config.cookie.domain.list allows you to specify a list of domains in which cookies have to be set in a CDSSO scenario. This property is used only if CDSSO is enabled. If you leave this property blank, then the fully qualified cookie domain for the web agent server will be used for setting the cookie domain. In such a case, it is a host cookie and not a domain cookie.

For more information on CDSSO, see Sun Java System Access Manager 7 2005Q4 Technical Overview