To Allow an OpenSSO Enterprise User to Access the Host Manager Web Application (Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Apache Tomcat 6.0)

Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Apache Tomcat 6.0

To Allow an OpenSSO Enterprise User to Access the Host Manager Web Application

Change to the following directory for the Tomcat 6.0 version 3.0 instance:

$CATALINA_HOME/server/webapps/host-manager/WEB-INF

In the web.xml file, find the user and role information for the Host Manager web application role.

This role is defined in the <role-name> element under the <security-role> element.

Delete the Host Manager web application security role.

Create a new Host Manager web application security role using the user and group that you created in the OpenSSO Enterprise Console, as described in Creating OpenSSO Enterprise Users and Groups.

For example:
```
<security-role>
<role-name>id=host-manager,ou=group,dc=realm-name,dc=example,dc=com</role-name>
</security-role>
```

Replace the Host Manager web application role defined in the <role-name> element under the <auth-constraint> element with the contents of the <role-name> element as described in the previous step.

For example:
```
<auth-constraint>
<role-name>id=host-manager,ou=group,dc=realm-name,dc=example,dc=com</role-name>
</auth-constraint>
```

Save the web.xml file.

Restart the Tomcat 6.0 web container.

© 2010, Oracle Corporation and/or its affiliates