Sun OpenSSO Enterprise 8.0 Update 1 Release Notes

Using ssoadm With OpenSSO Enterprise Configured as a Site

In a typical large deployment, OpenSSO Enterprise server instances are configured behind one or load balancers. The HTTP(s) traffic is usually one directional. That is, the traffic goes from one of the load balancers to the servers, but requests from servers are unable to reach the load balancers.

If the above scenario applies to your deployment and you need to use the ssoadm utility (Solaris and Linux systems) or ssoadm.bat utility (Windows), perform the following procedure.

ProcedureTo Use ssoadm With OpenSSO Enterprise Configured as a Site

  1. After you install the tools, edit the ssoadm or ssoadm.bat utility by adding the following property to the java command:

    -D"com.iplanet.am.naming.map.site.to.server=
    http://lb.example.com:8080/opensso=http://sso1.example.com:8080/opensso"

    where lb is the load balancer, and sso1 is the OpenSSO Enterprise server where ssoadm or ssoadm.bat is installed.

  2. Save the ssoadm or ssoadm.bat utility.

    The utility can now send naming requests to the OpenSSO Enterprise server instance.