Skip Navigation Links | |
Exit Print View | |
Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Microsoft Internet Information Services (IIS) 7.0 |
Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Microsoft Internet Information Services (IIS) 7.0
Supported Platforms, Compatibility, and Coexistence for the IIS 7.0 Agent
Supported Platforms for the IIS 7.0 Agent
Compatibility With Access Manager 7.1 and Access Manager 7 2005Q4
Coexistence With Version 2.2 Policy Agents
Pre-Installation Tasks for the IIS 7.0 Agent
Meeting the Requirements for the IIS 7.0 Agent
Downloading and Unzipping the IIS 7.0 Agent Distribution File
To Download and Unzip the IIS 7.0 Agent Distribution File
To Create an Agent Profile in the Oracle OpenSSO Console
Gathering Information to Install and Configure the IIS 7.0 Agent
Installing and Configuring the IIS 7.0 Agent
Creating a Configuration File for the IIS 7.0 Agent
Configuring the IIS 7.0 Agent for a Web Site
Verfiying an IIS 7.0 Agent Installation
Considering Specific Deployment Scenarios for the IIS 7.0 Agent
Installing the IIS 7.0 Agent on Multiple IIS 7.0 Servers
Installing the IIS 7.0 Agent on the OpenSSO Host Server
To Install and Configure the IIS 7.0 Agent With Office SharePoint Server 2010
Post-Installation Tasks for the IIS 7.0 Agent
Creating and Adding Logout URLS in a CDSSO Deployment
To Create the Logout URL Pages
To Add the Logout URLs in the OpenSSO Console
Using SSL With the IIS 7.0 Agent (Optional)
Installing the OpenSSO Root CA Certificate on the IIS 7.0 Agent
Disabling the Trust Behavior for the IIS 7.0 Agent
Changing the Password for an Agent Profile (Optional)
To Change the Password for an Agent Profile
Managing a Version 3.0 Agent With a Centralized Configuration
Managing a Version 3.0 Agent With a Local Configuration
Uninstalling the IIS 7.0 Agent
To Uninstall the IIS 7.0 Agent
Oracle's Accessibility Program
Before you install the IIS 7.0 agent, your deployment must meet these requirements:
Microsoft IIS 7.0 must be installed and configured on the Windows Server 2008 host.
An OpenSSO server instance must be installed and accessible to Microsoft IIS 7.0 and the Windows Server 2008 host.
|
The distribution files are available on the following site: https://edelivery.oracle.com/.
The following table shows the files and directories after you unzip the agent distribution file. These files are in the following directory:
AgentHome\web_agents\iis7_agent
where AgentHome is where you unzipped the agent distribution file. For example: C:\Agents\web_agents\iis7_agent
|
The IIS 7.0 agent uses an agent profile to communicate with Oracle OpenSSO server.
To create an agent profile use either of these methods:
Use the Oracle OpenSSO Administration Console, as described in this section.
Use the ssoadm command-line utility with the create-agent subcommand. For more information about the ssoadm command, see the OpenSSO Enterprise 8.0 Administration Reference in http://download.oracle.com/docs/cd/E19681-01/index.html.
Local: In the OpenSSOAgentConfiguration.properties file on the server where the agent is installed.
Centralized (default): In the OpenSSO server central configuration data repository.
For example: http://openssohost.example.com:8080/opensso
For example: http://agenthost.example.com:8090
The console creates the agent profile and displays the Web agent page again with a link to the new agent profile.
To do additional configuration for the agent, click the specific link to display the Edit agent page. For information about the agent configuration fields, see the Console online Help.
If you prefer, you can also use the ssoadm command-line utility to edit the agent profile. For more information, see the OpenSSO Enterprise 8.0 Administration Reference in http://download.oracle.com/docs/cd/E19681-01/index.html.
A password file is an ASCII text file with only one line specifying a password in clear text. By using a password file, you are not forced to expose a password at the command line.
When you create the IIS 7.0 agent configuration file using the IIS7CreateConfig.vbs script, you will be prompted to specify the path to the IIS 7.0 agent profile password file.
If you plan to use the ssoadm utility to manage the IIS 7.0 agent, you will also need a password file to store the password for the agent administrator (which can be amadmin, if you prefer).
Creating an agent administrator is optional. An agent administrator can manage agents in Oracle OpenSSO, using either the OpenSSO Console or by executing the ssoadm utility.
ID: Name of the agent administrator. For example: AgentAdmin
This is the name you will use to login to the OpenSSO Console .
First Name (optional), Last Name, and Full Name.
For simplicity, use the same name for each of these values that you specified in the previous step for ID.
Password (and confirmation)
User Status: Active
Next Steps
Login into the OpenSSO Console as the new agent administrator. The only available top-level tab is Access Control. Under realm-name, you will see only the Agents tab and sub tabs.