test

Sun OpenSSO Enterprise 8.0 Integration Guide

ProcedureTo Configure the OpenSSO Enterprise Policy Agent On Identity Manager Server

  1. Modify the Identity Manager application descriptor.

    1. Go to the directory where the application descriptor is present. 


      # cd /opt/SUNWappserver91/domains/
domain1/applications/j2ee-modules/idm/WEB-INF

    2. Back up the file web.xml.

    3. Edit web.xml.

      • Change DOCTYPE as follows: 


        <web-app version="2.4" 
xmlns="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee 
  http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd">

      • Delete the single instance of <web-app> in the next line.

      • Add the following just before the first <filter> definition: 


        <filter>
  <filter-name>Agent</filter-name>
  <filter-class>com.sun.identity.agents.filter.AmAgentFilter</filter-class>
</filter>

<filter-mapping>
  <filter-name>Agent</filter-name>
  <url-pattern>/*</url-pattern>
  <dispatcher>REQUEST</dispatcher>
  <dispatcher>INCLUDE</dispatcher>
  <dispatcher>FORWARD</dispatcher>
  <dispatcher>ERROR</dispatcher>
</filter-mapping>

  2. Log in to the Application Server console.

  3. Navigate to Application Server > JVM Settings > Path Settings.

  4. Update the classpath suffix.

    Remove the following entries that you had added earlier: 


    /opt/SUNWappserver91/domains/domain1/applications/
j2ee-modules/idm/WEB-INF/lib/openssoclientsdk.jar

/opt/SUNWappserver91/domains/domain1/applications/j2ee-modules/
idm/WEB-INF/classes

    At this time, you can also physically delete the openssoclientsdk.jar file and the classes directory. They are no longer needed.

  5. Click Save.

    In the following steps, the recommended approach is to update the web.xml file (above), recreate the idm.war, and then redeploy the new idm.war file on the Application Server.

  6. Stop the Application Server. 


    # /opt/SUNWappserver91/bin/asadmin stop-domain domain1

  7. Delete the generated Identity Manager application files.

    They will be re-generated when you access the Identity Manager application. If you don't do this step, the changes that you made in the web.xml file may not go into effect.


    # cd /opt/SUNWappserver91/domains/domain1/generated/xml/j2ee-modules

# rm -rf idm

  8. Start the Application Server. 


    # /opt/SUNWappserver91/bin/asadmin start-domain domain1

    Watch for any errors in the Application Server server.log file.