This section describes how to configure the sample mail and calendar channels that appear in the sample portal desktop for proxy authentication.
To enable proxy authentication for the sample portal Calendar channel, you configure the SSO Adapter Service. You perform this configuration in the Identity Server console.
In your web browser, open the following URL:
http://evaluation_host/amconsole/index.html |
The Access Manager login page is displayed.
Type your user name (amadmin) and password (password).
Click Log In. The Access Manager console window is displayed.
Click the Service Configuration tab.
The Access Manager Services are displayed.
Scroll down in the left pane. Under Portal Server Configuration, locate SSO Adapter, and then click the arrow symbol that follows the name SSO Adapter.
The right pane displays the SSO Adapter Service properties. You see a display similar to Figure 8–2.
Edit the SUN-ONE-CALENDAR configuration properties. Do the following:
Locate the host property. Select it, and then click Change Type.
The right pane displays the Edit Property Types display.
Change the value of several properties from Merge to Default. Do the following:
Use the text fields to edit the values of the following properties:
Locate the enableProxyAuth property. Change the value to true.
Locate the proxyAdminUid property. Change the value to calmaster.
Locate the proxyAdminPassword property. Change the value to password.
Locate the host property. Change the value to evaluation_host.
Locate the port property. Change the value to 89.
Locate the clientPort property. Change the value to 89.
Click Save to apply your changes.
In the left pane, click the arrow symbol that follows the name SSO Adapter.
The right pane displays the SSO Adapter Service properties. You see a display similar to Figure 8–2 .
Edit the SUN-UWC-CALENDAR configuration properties. Do the following:
Locate the host property. Select it, and then click Change Type.
The right pane displays the Edit Property Types display.
Change the value of several properties from merge to default:
Use the text fields to edit the values of the following properties:
Locate the enableProxyAuth property. Change the value to true.
Locate the proxyAdminUid property. Change the value to calmaster.
Locate the proxyAdminPassword property. Change the value to password.
Locate the serverSSOEnabled property. Change the value to true.
Locate the host property. Change the value to evaluation_host.
Locate the port property. Change the value to 89.
Locate the clientHost property. Change the value to evaluation_host.
Locate the clientPort property. Change the value to 80.
Click Save to apply your changes.
You have configured the portal calendar channel for proxy authentication. You continue working in the Access Manager console.
To enable proxy authentication for the sample portal Mail channel, you configure the SSO Adapter Service. You perform this configuration in the Access Manager console.
In the left pane, click the arrow symbol that follows the name SSO Adapter.
The right pane displays the SSO Adapter Service properties. You see a display similar to Figure 8–2 .
Edit the SUN-ONE-MAIL configuration properties. Do the following:
Locate the host property. Select it, and then click Change Type.
The right pane displays the Edit Property Types display.
Change the value of several properties from merge to default:
Select the host property. Click Move to Default.
Select the port property. Click Move to Default.
Select the smtpServer property. Click Move to Default.
Select the clientPort property. Click Move to Default.
Select the smtpPort property. Click Move to Default.
Select the domain property. Click Move to Default.
Click Save. The right pane displays the list of SSO Adapter properties.
Use the text fields to edit the values of the following properties:
Locate the enableProxyAuth property. Change the value to true.
Locate the proxyAdminUid property. Change the value to admin.
Locate the proxyAdminPassword property. Change the value to password.
Locate the host property. Change the value to evaluation_host.
Locate the port property. Change the value to 143.
Locate the smtpServer property. Change the value to evaluation_host.
Locate the clientPort property. Change the value to 88.
Locate the smtpPort property. Change the value to 25.
Locate the domain property. Confirm that it is blank.
Locate the serverSSOENabled property. Change the value to true.
Click Save to apply your changes.
In the left pane, click the arrow symbol that follows the name SSO Adapter.
The right pane displays the SSO Adapter Service properties. You see a display similar to Figure 8–2 .
Edit the SUN-UWC-MAIL configuration properties. Do the following:
Locate the host property. Select it, and then click Change Type.
The right pane displays the Edit Property Types display.
Change the value of several properties from merge to default:
Select the host property. Click Move to Default.
Select the port property. Click Move to Default.
Select the smtpServer property. Click Move to Default.
Select the clientPort property. Click Move to Default.
Select the smtpPort property. Click Move to Default.
Select the domain property. Click Move to Default.
Click Save. The right pane redisplays the list of SUNW-UWC-MAIL adapter template properties.
Use the text fields to edit the values of the following properties:
Locate the enableProxyAuth property. Change the value to true.
Locate the proxyAdminUid property. Change the value to admin.
Locate the proxyAdminPassword property. Change the value to password.
Locate the host property. Change the value to evaluation_host.
Locate the port property. Change the value to 143.
Locate the smtpServer property. Change the value to evaluation_host.
Locate the clientPort property. Change the value to 88.
Locate the smtpPort property. Change the value to 25.
Locate the domain property. Confirm that it is blank
Locate the serverSSOENabled property. Change the value to true.
Click Save to apply your changes.
At a command line, change directory to the Web Server directory:
cd /opt/SUNWwbsvr/https-evaluation_host |
Run the command to restart Web Server:
./stop; ./start |
The startup process displays a series of startup messages. The startup process might take a few moments. When startup is complete, the following message is displayed:
startup: server started successfully |
Restarting Web Server restarts Portal Server and applies all of your configuration changes.
Return to the Access Manager console. Click the Identity Management tab.
In the View drop-down, select Services
The left pane displays a list of services
In the left pane, locate the Portal Desktop service. Click the arrow.
The right pane display Portal Desktop settings.
In the right pane, click Manage Channels and Containers.
The right pane displays a list of portal desktop channels.
In the right pane, locate MyFrontPageTabPanelContainer. Click it. (Do not click Edit Properties.)
The right pane displays the MyFrontPageTabPanelContainer channel properties.
In the right pane, locate the Ready for Use list.
Move the UWCMail and UWCCalendar channels from the Ready to Use list to the Available to End Users on the Content Page Visible on Portal Desktop list.
Move the UWCMail and UWCCalendar channels from the Available to End Users on the Content Page list to the Visible on Portal Desktop list.
Move the Mail and Calendar channels from the Visible on Portal Desktop list to the Available to End Users on the Content Page list.
Move the Mail and Calendar channels from the Available to End Users on the Content Page list to the Ready For Use list.
Click Save.
In the right pane, click Top.
The list of container channels is redisplayed.
In the right pane, locate JSPNativeContainer channel. Click it. (Do not click Edit Properties.)
The right pane displays the JSPNativeContainer channel properties.
In the right pane, locate the Ready for Use list.
Move the UWCMail and UWCCalendar channels from the Ready for Use list to the Available to End Users on the Content Page list.
Move the UWCMail and UWCCalendar channels from the Available to End Users on the Content Page list to the Visible on Portal Desktop list.
Move the Mail and Calendar channels from the Visible on Portal Desktop list to the Available to End Users on the Content Page list.
Move the Mail and Calendar channels from the Available to End Users on the Content Page list to the Ready For Use list.
Click Save.
In the right pane, click Top.
The list of container channels is redisplayed.
In the right pane, locate JSPRenderingContainer channel. Click it. (Do not click Edit Properties.)
The right pane displays the JSPRenderingContainer channel properties.
In the right pane, locate the Ready for Use list.
Move the UWCMail and UWCCalendar channels from the Ready for Use list to the Available to End Users on the Content Page Visible on Portal Desktop list.
Move the UWCMail and UWCCalendar channels from the Available to End Users on the Content Page list to the Visible on Portal Desktop list.
Move the Mail and Calendar channels from the Visible on Portal Desktop list to the Available to End Users on the Content Page list.
Move the Mail and Calendar channels from the Available to End Users on the Content Page list to the Ready For Use list.
Click Save.
Click Logout in the upper right corner of the window.
To configure Messaging Server for proxy authentication, you run configuration commands in the command line.
Change directory to the Messaging Server directory:
cd /opt/SUNWmsgsr/sbin |
Run the command to configure Messaging Server:
./configutil -o store.admins admin |
This command permits the admin user ID to manage the Messaging Server message store and access the user mailboxes.
Run the command to switch to the mail server root:
su mailsrv |
Run the command to configure Messaging Server:
./configutil -o service.http.allowadminproxy -v yes |
This command permits Messaging Server to authenticate proxy accounts.
Run the command to exit from the mail server root:
exit |
Run the command to stop Messaging Server.
./stop-msg |
Run the command to restart Messaging Server.
./start-msg |
The startup process displays a series of startup messages. The startup process might take a few moments. When startup is complete, the following message is displayed:
starting job-controller server |
You have configured Messaging Server to accept proxy authentication.
To configure Calendar Server to accept proxy authentication, you edit the Calendar Server configuration file with a text editor. You also run configuration commands in the command line.
Change directory to the Calendar Server directory:
cd /etc/opt/SUNWics5/config |
Open the ics.conf file in a text editor.
Find each of the following properties and make the changes described. In some cases this means changing the value and uncommenting the line. In other cases, it simply means uncommenting the line.
Locate the service.http.allowadminproxy property. Make sure it is uncommented. Make sure its value is set to yes:
service.http.allowadminproxy=”yes”
Locate the service.admin.calmaster.cred property. Make sure it is uncommented. Make sure its value is set to password.
service.admin.calmaster.cred=”password”
Locate the service.admin.calmaster.userid property. Make sure it is uncommented. Make sure its value is set to calmaster:
service.admin.calmaster.userid=”calmaster”
Save and close the ics.conf file.
Change directory to the Calendar Server directory.
cd /opt/SUNWics5/cal/sbin |
Run the command to stop Calendar Server.
./stop-cal |
Run the command to restart Calendar Server.
./start-cal |
The startup process displays a series of startup messages. The startup process might take a few moments. When startup is complete, the following message is displayed:
Calendar services were started. |
You have configured Calendar Server for proxy authentication.