Creating WebLogic Portal 10 Users in OpenSSO Enterprise
Before configuring the agent, create the same users in OpenSSO Enterprise that exist in WebLogic Portal 10.
If the users in OpenSSO Enterprise have different names than the names in WebLogic Portal 10, you must configure user mapping, using either the OpenSSO Enterprise Console or the ssoadm utility.
To configure user mapping in the OpenSSO Enterprise Console:
-
Login to the Console as amadmin.
-
Under Access Control, realm-name, Agents, and J2EE, click the name of the agent profile you want to update.
The Console displays the Edit page for the agent profile.
-
Click Global and then User Mapping, and then set the following fields, depending on your requirements:
-
User Mapping Mode: Mechanism the agent uses to determine the user ID (HTTP_HEADER, PROFILE_ATTRIBUTE, SESSION_PROPERTY, or USER_ID)
-
User Attribute Name: Name of the attribute that contains the user ID. The corresponding property is com.sun.identity.agents.config.user.attribute.name.
-
User Principal Flag: Check Enabled to use the principal instead of only the user ID for authenticating the user. The corresponding property is com.sun.identity.agents.config.user.principal.
-
User Token Name: Session property name for the user ID of the authenticated user in the session. The corresponding property is com.sun.identity.agents.config.user.token.
-
-
Click Save.
To use the ssoadm utility, set the following agent properties:
-
com.sun.identity.agents.config.user.mapping.mode[]
-
com.sun.identity.agents.config.user.attribute.name
-
com.sun.identity.agents.config.user.principal
-
com.sun.identity.agents.config.user.token
All of the user mapping properties are hot-swappable.
- © 2010, Oracle Corporation and/or its affiliates