This section applies to agents for IBM Lotus Domino.
LTPA is an authentication mechanism used by IBM Lotus Domino that provides users with single sign-on (SSO) capabilities between LTPA-technology-supported servers. If a deployment consists of servers that support LTPA technology, the LTPA token that is set as a cookie in the browser by the IBM Lotus Domino instance can be shared among servers. Thus, users are not prompted to enter their credentials (user name and password) every time they access a server.
You can edit various properties in the web agent AMAgent.properties configuration file to configure the LTPA mechanism to work with Agent for IBM Lotus Domino 7.0 as illustrated in the following list of properties:
com.sun.am.policy.agents.config.domino.ltpa.enable
Explanation: This property controls whether Agent for IBM Lotus Domino 7.0 uses an LTPA token or not.
Possible Values: true and false.
Default Value: false.
com.sun.am.policy.agents.config.domino.ltpa.cookie_name
Explanation: This property provides the name of the cookie that contains the LTPA token.
Possible Values: ltpa-cookie-name, which represents the name of the cookie that contains the LTPA token.
Default Value: LtpaToken.
com.sun.am.policy.agents.config.domino.ltpa.config_name
Explanation: This property provides the configuration name that Agent for IBM Lotus Domino 7.0 uses in order to employ the LTPA token mechanism. This property is similar to the preceding property concerning the cookie name in that it uses the same default value. The value set for this property is passed as a parameter during SSO token validation.
Possible Values: ltpa-configuration-name, which represents the name of the configuration to which the LTPA token belongs.
Default Value: LtpaToken.
com.sun.am.policy.agents.config.domino.ltpa.org_name
Explanation: This property provides the organization name to which the LTPA token belongs.
Possible Values: ltpa-cookie-organization-name, which represents the organization to which the LTPA token belongs.
Default Value: Null.
com.sun.am.policy.agents.config.domino.checkNameDatabase
Explanation: This property is a flag that can be set to check whether or not the user exists in the IBM Lotus Domino 7.0 database. If the user exists, REMOTE_USER can then be set to the value specified in the database.
Possible Values: true and false.
Default Value: false.