Access https://osso-1.example.com:1081/opensso/console from a web browser.
Log in to the OpenSSO Enterprise console as the administrator.
amadmin
ossoadmin
Under the Access Control tab, click / (Top Level Realm).
Click the Agents tab.
Click the J2EE tab.
j2eeagent-1 is displayed under the Agent table.
Click j2eeagent-1.
The j2eeagent-1 properties page is displayed.
Click the Application tab.
The Application properties page is displayed.
Provide the following information.
Enter the following and click Add.
/agentsample/authentication/login.html
Enter each of the following and click Add.
/agentsample/public/*
/agentsample/images/*
/agentsample/styles/*
/agentsample/index.html
/agentsample
Enter each of the following and click Add.
Map Key: agentsample
Corresponding Map Value: /agentsample/authentication/accessdenied.html
Click Save.
The j2eeagent-1 properties page is displayed.
Map the attributes from the OpenSSO Enterprise embedded data store to those used by the Application Server with the following sub procedure.
From the j2eeagent-1 properties page, click Back to Main Page.
Click the Subjects tab.
Click the Group tab.
Click Employee-Group in the list of Groups.
Copy and save id=Employee-Group,ou=group,dc=opensso,dc=java,dc=net, the value of the Universal ID attribute.
Click Back to Subjects.
You are returned to the Group tab.
Click Manager-Group in the list of Groups.
Copy and save id=Manager-Group,ou=group,dc=opensso,dc=java,dc=net, the value of the Universal ID attribute.
Click Back to Subjects.
Click the Agents tab.
Click the J2EE tab.
j2eeagent-1 is displayed under the Agent table.
Click j2eeagent-1.
The j2eeagent-1 properties page is displayed.
Click the Application tab.
The Application properties page is displayed.
Provide the identifiers previously saved as the manager and employee map keys and corresponding map values for Privileged Attribute Mapping and click Save.
Map Key: [id=Manager-Group,ou=group,dc=opensso,dc=java,dc=net] Corresponding Map Value: am_manager_role |
Map Key: [id=Employee-Group,ou=group,dc=opensso,dc=java,dc=net] Corresponding Map Value: am_employee_role |
Log out of the OpenSSO Enterprise console.