To enable administrator proxy authentication for the Address Book, Calendar, and Mail channels, you use the Sun Java System Portal Server administration console to access the SSO Adapter templates. Then you need to access the Sun Java System communication servers. Specifically, you need to:
Edit SSO Adapter Templates.
In the SSO Adapter Templates, you edit the strings that apply to the Address Book, Calendar, and Mail channels. One of the distinguishing factors of the strings is the protocol used:
The Address Book channel uses the LDAP protocol
The Calendar channel uses the HTTP protocol
The Mail channel uses the IMAP or POP protocol.
Access Sun Java System Sun Java System Messaging Server to enable proxy authentication for the Address Book and Mail channels.
Access Sun Java System Calendar Server to enable proxy authentication for the Calendar channel.
From an Internet browser, log into the Sun Java System Portal Server administration console at http://hostname:port /psconsole, for example http://psserver.company22.example.com:80/psconsole
Click the Service Configuration tab to display the list of configurable services in the navigation pane.
Select SSO Adapter to display the page for configuring the SSO Adapter in the data pane.
Click the string for the channel that you want to enable with administrator proxy authentication.
Click in the configuration description field.
Delete and key in the necessary information for administrator proxy authentication:
Overview of How to Configure Proxy Authentication describes the properties that need to be edited in the SSO Adapter Template to enable support for administrator proxy authentication.
Property |
Value |
Description |
---|---|---|
true | false |
The value associated with this attribute is a flag to indicate if proxy authentication is enabled or not. If true, the SSO Adapter and Application Adapter perform proxy authentication. For example, &enableProxyAuth=true |
|
(configurable) |
The value associated with this attribute is the administrator’s user name. For example, &proxyAdminUid=ServiceAdmin |
|
(configurable) |
The value associated with this attribute is the administrator’s user password. For example, &proxyAdminPassword=mailpwd |
|
(configurable) |
The value associated with this attribute is the user’s naming attribute. This value is mapped to an attribute on the user’s record (the user’s entry in the directory). A typical record has several attributes, including the User ID (uid) and employee number. By default, the naming attribute is set to uid. For example, By editing the SSO Adapter template, you can map the naming attribute to another attribute, such as employee number. |
|
The preceding four properties appear in the SSO Adapter template string again. You can set the configuration of the properties to default or merge. In the following examples, they are all set to default. | ||
Property |
Value |
Example |
default |
&default=enableProxyAuth |
|
default |
&default=proxyAdminUid |
|
default |
&default=proxyAdminPassword |
|
default |
&default=userAttribute |
Log in to the Sun Java System Messaging Server software host and become super user.
Type the following code:
MessagingServer-base /msg-instance-name /configutil -o service.http.allowadminproxy -v yes
Restart the Sun Java System Messaging Server.
See the Sun Java System Messaging Server Administrator’s Guide for detailed instructions on running configutil and restarting the server.
Log in to the Sun Java System Calendar Server software host and become super user.
Open the following file with the editor of your choice:
CalendarServer-base/cal/bin/config/ics.conf
Set the following attribute as shown:
Restart the calendar server.
See the Calendar Server Administrator’s Guide for detailed instructions on restarting the server.