Modify the Web Policy Agents properties.
As a root user, log into the Protected Resource 3 host.
Add the transient attribute to the property com.sun.am.policy.am.login.url.
# cd /etc/opt/SUNWam/agents/es6/config/ _opt_SUNWwbsvr_https-ProtectedResource-3.siroe.com # vi AMAgent.properties com.sun.am.policy.am.login.url = https://LoadBalancer-9.siroe.com:3443/federation/ saml2/jsp/spSSOInit.jsp?metaAlias=sp&idpEntityID= loadbalancer-3.example.com&NameIDFormat=transient |
Modify the following properties:
com.sun.am.policy.agents.config.session.attribute.fetch.mode=HTTP_HEADER com.sun.am.policy.agents.config.session.attribute.map= EmailAddress|EmailAddress,Telephone|Telephone |
Save the file.
Restart the Protected Resource 3 host.
# cd /opt/SUNWwbsvr/https-ProtectedResource-3.siroe.com # ./stop; ./start |
As a root user, log into the Protected Resource 4 host.
Add the transient NameID format to the property com.sun.am.policy.am.login.url.
# cd /etc/opt/SUNWam/agents/e6/config/ _opt_SUNWwbsvr_https-ProtectedResource-4.siroe.com # vi AMAgent.properties com.sun.am.policy.am.login.url = https://LoadBalancer-9.siroe.com:3443/federation/ saml2/jsp/spSSOInit.jsp?metaAlias=sp&idpEntityID= loadbalancer-4.example.com&NameIDFormat=transient |
Modify the following properties:
com.sun.am.policy.agents.config.session.attribute.fetch.mode=HTTP_HEADER com.sun.am.policy.agents.config.session.attribute.map= EmailAddress|EmailAddress,Telephone|Telephone |
Save the file.
Restart the Protected Resource 4 host.
# cd /opt/SUNWwbsvr/https-ProtectedResource-4.siroe.com # ./stop; ./start |