JBoss Application Server 4.2.3 and later supports programmatic web logins, which allows the agent to programmatically authenticate against the JBoss Application Server web container. This feature uses the org.jboss.web.tomcat.security.login.WebAuthentication class. For more information, see http://community.jboss.org/wiki/WebAuthentication.
The JBoss Application Server 4.x/5.x agent uses the com.sun.identity.agents.config.jboss.webauth.available property to enable or disable this feature. The default is false.
For the JBoss Application Server 4.x/5.x agent, set this property depending on the agent configuration:
If the agent configuration is local, set the property in the agent's OpenSSOAgentConfiguration.properties file.
If the agent configuration is centralized, set the property in the OpenSSO Enterprise Administration Console, as follows.
Log in to the OpenSSO Enterprise Administration Console.
Click Access Control, realm-name, Agents, J2EE, and then the name of the JBoss Application Server 4.x/5.xJBoss Application Server 4.x/5.x agent.
Enable programmatic web logins, depending on your version of OpenSSO Enterprise:
For OpenSSO Enterprise 8.0 RTM, under the JBoss Application Server 4.x/5.x agent profile name, click Advanced, and then Custom Properties. Add the following property and click Save.
com.sun.identity.agents.config.jboss.webauth.available=true
In later builds of OpenSSO Enterprise 8.0, under the JBoss Application Server 4.x/5.x agent profile name, click Advanced and then JBoss Application Server. Check Enabled for Web Authentication Available and then click Save.
The com.sun.identity.agents.config.jboss.webauth.available property is hot-swappable, so you do not need to restart the OpenSSO Enterprise web container for the value to take effect.