test

Deployment Example 2: Federation Using SAML v2

13.9 Configuring the J2EE Policy Agents Load Balancer to Participate in SAMLv2 Protocols

Use the following as your checklist for configuring the J2EE Policy Agents load balancer to participate in SAMLv2 Protocols:

  1. Configure the J2EE Policy Agents load balancer to participate in SAMLv2 protocols.

  2. Verify that the J2EE Policy Agents load balancer uses SAMLv2 protocols.

ProcedureTo Configure the J2EE Policy Agents Load Balancer to Participate in SAMLv2 Protocols

  1. As a root user, log into the Protected Resource 3 host.

  2. Go to the following directory:


    /export/j2ee_agents/am_as81_agent/agent_001/config

  3. Make a backup of the AMagent.properties file, and then set the following properties:


    # vi AMagent.properties
com.sun.identity.agents.config.login.url[0] = 
https://LoadBalancer-9.siroe.com:3443/federation/saml2/
jsp/spSSOInit.jsp?metaAlias=/sp&idpEntitityID=loadbalancer-3.example.com
com.sun.identity.agents.config.redirect.param = RelayState

    Save the file.

  4. Restart Application Server 3.


    # cd /opt/SUNWappserver/appserver/bin
#./asadmin stop-domain
Domain domain1 stopped.
# ./asadmin start-domain --user admin --password 11111111
Starting Domain domain1, please wait.
Log redirected to /var/opt/SUNWappserver/domains/domain1/logs/server.log.

Domain domain1 started.

  5. As a root user, log into the Protected Resource 4 host.

  6. Go to the following directory:


    /export/j2ee_agents/am_as81_agent/agent_001/config

  7. Make a backup of the AMagent.properties file, and then set the following properties:


    # vi AMagent.properties
com.sun.identity.agents.config.login.url[0] = 
https://LoadBalancer-9.siroe.com:3443/federation/saml2/
jsp/spSSOInit.jsp?metaAlias=/sp&idpEntitityID=loadbalancer-3.example.com
com.sun.identity.agents.config.redirect.param = RelayState

    Save the file.

  8. Restart Application Server 4.


    # cd /opt/SUNWappserver/appserver/bin
#./asadmin stop-domain
Domain domain1 stopped.
# ./asadmin start-domain --user admin --password 11111111
Starting Domain domain1, please wait.
Log redirected to /var/opt/SUNWappserver/domains/domain1/logs/server.log.

Domain domain1 started.

ProcedureTo Verify that the J2EE Policy Agents Load Balancer Uses SAMLv2 Protocols

  1. Go to the following URL:


    https://LoadBalancer-10.siroe.com:4443/agentssample

    The Access Manager login is displayed.

  2. Log in to the Access Manager console using the following information:

    User Name:

    idp

    Password:

    idp

    The J2EE Policy Agent Sample Application welcome page is displayed.