Oracle® Adaptive Access Manager Installation and Configuration Guide Release 10g (10.1.4.5) Part Number E12050-03 |
|
|
View PDF |
For Adaptive Strong Authenticator (SOAP) and Native Integration (SOAP), the following properties must be configured in the bharosa_client.properties file:
Password Used for Testing
To modify the bharosa_client.properties file
Copy sample.bharosa_client.properties to bharosa_client.properties. The sample file is located under the oasa/WEB-INF/classes/ directory.
In bharosa_client.properties, update the appropriate property values as described in "Properties".
Note:
A trailing slash will cause an error when deploying Adaptive Strong Authenticator in WebLogic.Back up and secure the bharosa_client.properties file in case you should need to restore any customer specific customizations or upgrade to Adaptive Risk Manager software at a later date.
Properties to edit are documented below.
SOAP URL
Set the vcrypt.tracker.soap.url property.
For example,
vcrypt.tracker.soap.url=http://localhost:7001/oarm/services/
Image Path
Add the bharosa.image.dirlist property.
For example,
bharosa.image.dirlist=/bharosa_images/allpads/textpad/
Image URL
Set bharosa.authentipad.image.url as follows:
bharosa.authentipad.image.url=kbimage?action=kbimage&
Proxy Mode
Add the bharosa.uio.proxy.mode.flag property and set it to true or false.
When there is no proxy involved, set it to false.
SOAP Class
Set the vcrypt.common.util.vcryptsoap.impl.classname property.
Options are:
com.bharosa.vcrypt.common.impl.VCryptSOAPWeblogicImpl: Uses WebLogic implementation
com.bharosa.vcrypt.common.impl.VCryptSOAPAxisImpl: Uses Apache implementation
Password Used for Testing
Configure the password used for testing in the non-proxy mode. For example,
#Set the dummy password for testing in non-proxy mode. bharosa.uio.login.dummy.password=test
Configuration Value Encryption Properties
Ensure that you have the keystore and alias passwords properties set.
bharosa.cipher.encryption.algorithm.enum.DESede_config.keystorePassword=<base64 encoded keystore password> bharosa.cipher.encryption.algorithm.enum.DESede_config.aliasPassword=<based64 encoded password to the alias>
The encoded passwords are generated during the creation of system_config.keystore. Refer to Chapter 10, "Setting Up Encryption" for more information.
SOAP/Web Services Access
Ensure that you have the keystore and alias passwords and web service username properties set if you are using Web services.
vcrypt.soap.auth.keystorePassword=<base64 encoded keystore password> vcrypt.soap.auth.aliasPassword=<based64 encoded password to the alias> vcrypt.soap.auth.username=<user configured for accessing the soap services> vcrypt.soap.auth.keystoreFile=system_soap.keystore
The encoded passwords are generated during the creation of system_soap.keystore. Refer to Chapter 11, "Configuring SOAP/Web Services Access" for more information.
SOAP Authentication
To disable or enable, HTTP authentication for Adaptive Strong Authenticator, set the following property to true (enabled) or false (disabled).
vcrypt.soap.auth=
For information about disabling Web Services for Adaptive Strong Authenticator/Native Client, refer to Chapter 11, "Configuring SOAP/Web Services Access."
Case in Username
If you want the username to be in lowercase, set bharosa.uio.default.username.case.sensitive to false.