Sun OpenSSO Enterprise Policy Agent 3.0 User's Guide for Web Agents

Setting the REMOTE_USER Server Variable

The property labeled User ID Parameter (Tab: OpenSSO Services, Name: com.sun.identity.agents.config.userid.param) allows you to configure the user ID parameter passed by the session or user profile information from OpenSSO Enterprise. The user ID value is used by the agent to set the value of the REMOTE_USER server variable. By default, this parameter is set to UserToken and is fetched from session attributes.

It can be set to any other session attribute or profile attribute. The property labeled User ID Parameter Type (Tab: OpenSSO Services, Name: com.sun.identity.agents.config.userid.param.type) determines the location from which to retrieve the value: from user profiles or from session properties.


Note –

Be aware that when this value is fetched from session properties, you must write server-side plug-in code in order to add session attributes after authentication.


Example 1: This example lists the values that you can set the User ID Parameter property to for session attributes:

SESSION (this is default)

UserToken (UserId, Principal, or any other session attribute)

Example 2: This example lists the values that you can set the User ID Parameter property to for LDAP user profile attributes:

LDAP

cn (any profile attribute)