test

Sun Java System Access Manager Policy Agent 2.2 Guide for BEA WebLogic Server/Portal 10

Configuring the Agent Authentication Provider for the WebLogic Server/Portal 10 Agent

This section is specific to WebLogic Server 10. For instructions specific to WebLogic Portal 10, see To Configure the Agent Authentication Provider Specifically for WebLogic Portal 10.

Using security service provider API exposed by WebLogic Server/Portal 10, the agent plugs its custom security Authenticator into the container. Once the Agent Authenticator is configured, all requests call it. You only need to set the Agent Authenticator once per WebLogic domain. For more information about security providers, seehttp://e-docs.bea.com/wls/docs100/dvspisec/intro.html.

The authentication provider can be added by using the WebLogic Server/Portal 10 Administration Console. The information provided in this section serves to facilitate the configuration of the Agent Authentication Provider and is in no means a substitute for the information provided in WebLogic Server/Portal documentation. For a detailed discussion on WebLogic Authentication providers, search for the proper WebLogic documentation at http://www.bea.com.

ProcedureTo Configure the Agent Authentication Provider Specifically for WebLogic Server 10

This task description is specific to WebLogic Server 10. For the task description specific to WebLogic Portal 10, see Portal: Configuring the Agent Authentication Provider on Agent for WebLogic Portal 10.

  1. Log in to the WebLogic Server 10 Administration Console.

  2. In the left pane, under Domain Structure and under the host name of the server you are configuring, click Security realms.

  3. In the right pane, click the name of the realm you are configuring.

  4. Click Providers.

  5. Click the Authentication tab.

  6. In the left pane, click Lock & Edit.

  7. In the right pane, click New.

  8. Specify Type as AgentAuthenticator.

  9. Specify Name with a name of your choice.

  10. Click OK.

  11. Click the newly created policy agent authentication provider.

  12. Change the control flag value to OPTIONAL.

  13. Click Save.

  14. Click Providers.

    The Authentication Providers Table appears.

  15. Click Default Authenticator.

  16. Change the control flag to OPTIONAL.

  17. Click Save.

  18. In the left pane, click Activate changes.

  19. After you are finished, restart WebLogic Server for the changes to take effect.

The Default Security Realm

If you choose to create a new security realm instead of using the default security realm to configure the agent, ensure that the control flag value for the Agent Authenticator and any additional authentication providers are set to OPTIONAL.