To Enable the J2EE Policy Agent to Run in SSO Only Mode

1. Access https://lb4.sp-example.com:1081/opensso/console from a web browser.

2. Log in to the OpenSSO Enterprise console as the administrator.

   User Name:

   amadmin

   Password:

   ossoadmin

3. Under the Access Control tab, click / (Top Level Realm).

4. Click the Agents tab.

5. Click the J2EE tab.

   j2eeagent-1 is displayed under the Agent table.

6. Click j2eeagent-1.

   The j2eeagent-1 properties page is displayed.

7. Click the General link on the j2eeagent-1 properties page.

8. Remove the existing value of the Agent Filter Mode property.

   This value is displayed in the Current Values text box.

9. Add the following values to the New Value text boxes and click Add.

   Map Key

   agentsample

   Corresponding Map Value

   SSO_ONLY

10. Click Save.

11. Log out of the OpenSSO Enterprise console and close the browser.

12. Log in to the pr1.sp-example.com host machine as root user.

13. Restart the WebLogic administration server and managed instance.

    # cd /usr/local/bea/user_projects/domains/pr1/bin # ./stopManagedWebLogic.sh ApplicationServer-1 t3://localhost:7001 # ./stopWebLogic.sh # ./startWebLogic.sh # ./startManagedWebLogic.sh ApplicationServer-1 t3://localhost:7001

14. Log out of the pr1.sp-example.com host machine.

15. Verify the configurations with the following sub procedure.

    1. Close and reopen the browser application.

    2. Access http://pr1.sp-example.com:1081/agentsample from a web browser.

    3. Log in to the OpenSSO Enterprise console as the administrator.

       User Name:

       spuser

       Password:

       spuser

       The user is redirected to the service provider console for authentication.

    4. Close the browser.