Documentation Home
> Sun Java System Portal Server Secure Remote Access 7.2 Administration Guide
Sun Java System Portal Server Secure Remote Access 7.2 Administration Guide
Book Information
Index
A
B
C
D
E
F
G
H
J
L
M
N
O
P
R
S
T
U
W
X
Preface
Part I Secure Remote Access Server Components
Chapter 1 Introduction to Portal Server Secure Remote Access Server
Introduction to Secure Remote Access
Open Mode
Secure Mode
Secure Remote Access Services
Configuring the Secure Remote Access Attributes
Setting Conflict Resolution
To Set the Conflict Resolution Level
Supported Applications
Before You Begin
To Enable SRA for a Portal
Chapter 2 Working With Gateway
Introduction to Gateway
Creating a Gateway Profile
Creating Multiple Instances of a Gateway
Creating Multi-homed Gateway Instances
Creating Gateway Instances Using the Same LDAP
Restarting the Gateway
Configuring the Gateway Watchdog
Specifying a Virtual Host
Specifying a Proxy to Contact Access Manager
Understanding the platform.conf File
Using Web Proxies
Web Proxy Configuration
Syntax
Example
Processing the Web Proxy Information
Rewriting Based on the Proxies for Domains and Subdomains List
Default Domain and Subdomain
Using Automatic Proxy Configuration
Sample PAC File Usage
Example with Either DIRECT or NULL Return
Example with STARPROXY Return
Specifying PAC File Location
Adding Services in Separate Sessions
Using a Netlet Proxy
Enabling a Netlet Proxy
Restarting a Netlet Proxy
To Configure a Netlet Proxy Watchdog
Using a Rewriter Proxy
Creating Instances of a Rewriter Proxy
Enabling a Rewriter Proxy
Restarting a Rewriter Proxy
Configuring a Rewriter Proxy Watchdog
Using a Reverse Proxy with the Gateway
Obtaining Client Information
Using Authentication Chaining
Using Wild Card Certificates
Disabling Browser Caching
Customizing the Gateway Service User Interface
Modifying the srapGateway.properties File
Modifying the srapgwadminmsg.properties File
Sharing LDAP Directories
Chapter 3 Working With Proxylet
Working with Proxylet
Overview of Proxylet
HTTPS Support
Advantages of Using Proxylet
Configuring Proxylet
Chapter 4 Working with Rewriter
Introduction to Rewriter
Character Set Encoding
Rewriter Usage Scenarios
URLScraper
Gateway
Writing Rulesets
Public Interface (RuleSet DTD)
Sample XML DTD
Procedure to Write Rules
Ruleset Guidelines
Defining the RuleSet Root Element
Using the Recursive Feature
Defining Language Based Rules
Rules for HTML Content
Attribute Rules for HTML Content
Attribute Rule Syntax
Attribute Rule Example
DJS Attribute Example
Form Rules for HTML Content
Form Rule Syntax
Form Rule Example
Applet Rules for HTML Content
Applet Rule Syntax
Applet Rule Example
Using Pattern Matching in Rules
Specifying Specialized Characters in valuePatterns
Using Wild Cards in valuePatterns
Rules for JavaScript Content
Variables
The generic syntax for variables is:
URL Variables
URL Variable Syntax
URL Variable Example
EXPRESSION Variables
EXPRESSION Variable Syntax
EXPRESSION Variable Example
DHTML(Dynamic HTML) Variables
DHTML Syntax
DHTML Example
DJS (Dynamic JavaScript) Variables
DJS Syntax
DJS Example
SYSTEM Variables
SYSTEM Variable Syntax
SYSTEM Variable Example
Function Arguments
Generic Syntax
URL Parameters
URL Parameter Syntax
URL Parameter Example
EXPRESSION Parameters
EXPRESSION Parameter Syntax
EXPRESSION Parameter Example
DHTML Parameters
DHTML Parameter Syntax
DHTML Parameter Example
DJS Parameters
DJS Parameter Syntax
DJS Parameter Example
Rules for XML Content
Tag Text
Tag Text Syntax
Tag Text Example
Attribute
Attribute Syntax
Attribute Example
Rules for Cascading Style Sheets
Rules for WML
Using the Recursive Feature
Troubleshooting Using Debug Logs
Setting the Rewriter Debug Level
To Set the Rewriter Debug Level
Debug File Names
Working Samples
Samples for HTML Content
Sample for HTML Attributes
To Use the HTML Attributes Sample
HTML Before Rewriting
Rule
HTML After Rewriting
Sample for HTML Dynamic JavaScript Tokens
To Use the HTML JavaScript Token Sample:
HTML Before Rewriting
Rule
HTML After Rewriting
Sample for HTML Forms
To Use the Form Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for HTML Applets
To Use the Sample for Applets
HTML Before Rewriting
Rule
HTML After Rewriting
Samples for JavaScript Content
Sample for JavaScript URL Variables
To Use the JavaScript URL Variables Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript EXPRESSION Variables
To Use the JavaScript Expression Variables Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript DHTML Variables
To Use the JavaScript DHTML Variables Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript DJS Variables
To Use the JavaScript DJS Variables Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript SYSTEM Variables
To Use the JavaScript System Variables Sample
HTML Page Before Rewriting
Rule
HTML After Rewriting
Sample for JavaScript URL Functions
To Use the JavaScript URL Functions Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript EXPRESSION Functions
To Use the JavaScript Expressions Function Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript DHTML Functions
To Use the JavaScript DHTML Functions Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for JavaScript DJS Functions
To Use the JavaScript DJS Functions Sample
HTML Page Before Rewriting
Rule
HTML Page After Rewriting
Sample for XML Attributes
To Use the XML Attributes Sample
XML Before Rewriting
Rule
HTML After Rewriting
Case Study
Assumptions
Sample page 1
Description
Ruleset for Outlook Web Access
To Configure the OWA Ruleset
Using Public Folders
Mapping of 6.x RuleSet with 3.0
Chapter 5 Working with NetFile
Introduction to NetFile
Supported File Access Protocols
To Create a NetFile Policy
Chapter 6 Working with Netlet
Introduction to Netlet
Netlet Components
Listen Port on localhost
Netlet Applet
Netlet Rules
Netlet Provider
Netlet Proxy (Optional)
Netlet Usage Scenario
Working With Netlet
Downloading an Applet From a Remote Host
Defining Netlet Rules
Types of Rules
Static Rule
Dynamic Rule
Encryption Ciphers
Supported Ciphers
Backward Compatibility
Netlet Rule Examples
Basic Static Rule
Static Rule With Multiple Host Connections
Static Rule with Multiple Host Selection
Dynamic Rule to Invoke a URL
To Run Netlet After a Rule is Added
Dynamic Rule to Download an Applet
Sample Netlet Rules
Netlet Logging Information
Running Netlet in a Sun Ray Environment
New HTML File
Deprecated HTML File
Part II Configuring the Secure Remote Access Server
Chapter 7 Configuring the Secure Remote Access Server Access Control
Configuring Access Control
To Configure the Access Control
Chapter 8 Configuring the Secure Remote Access Gateway
Configuring the Profile Core Options
Configuring the Startup Mode
To Configure the Startup Mode
Configuring the Core Components
To Configure the Components
Configuring the Basic Options
About the Cookie Management Attribute
About the HTTP Basic Authentication Attribute
About the Portal Servers Attribute
About the URLs to Which User Session Cookie is Forwarded Attribute
About the Obtain Session from URL Attribute
To Configure the Basic Options
Configuring the Deployment Options
Configuring the Proxy Settings
To Configure the Proxy Settings
Configuring the Rewriter Proxy and Netlet Proxy
To Configure the Rewriter Proxy and Netlet Proxy
Configuring the Security Options
Configuring the PDC and Non Authenticated URLs
To Configure the PDC and Non Authenticated URLs
Configuring the TLS and SSL Options
To Configure the TLS and SSL Options
Configuring the Performance Options
Configuring the Timeouts and Retries
To Configure the Timeouts and Retries
Configuring the HTTP Options
To Configure the HTTP Options
Monitoring the Secure Remote Access Performance
To Monitor Secure Remote Access Performance
Configuring the Rewriter Options
Configuring the Basic Options
To Configure the Basic Options
Configuring the Map URIs to RuleSets
To Configure the Map URIs to RuleSets
Configuring the Map Parser to MIME Types
To Configure the Map Parser to MIME Types
Configuring Personal Digital Certificate Authentication
To Configure PDCs and Encoded Devices
To import the Root CA certificate on the gateway machine
Configuring Gateway Attributes Using the Command Line Options
To Manage Storage of External Server Cookies
To Enable Marking Cookies as Secure
To Create List of URLs for Proxies Not to be Used
To Manage RuleSet to URI Mapping
To Specify the Default Domain
To Manage MIME Guessing
To Create a List of URI Mappings to Parse
To Manage Masking
To Specify the masking Seed String
To Create a List of URIs Not to Mask
To Make a Gateway Protocol the Same as the Original URI Protocol
Chapter 9 Configuring Rewriter in the Gateway Service
Creating a List of URIs to RuleSet Mappings
Using Wildcards Within the Syntax
Configuring Rewriter in the Gateway Service
To Enable the Gateway to Rewrite All URLs
To Specify the URIs Not to Rewrite
To Map a URI to a RuleSet
To Specify MIME Mappings
To Specify the Default Domains
Chapter 10 Working with Certificates
Introduction to SSL Certificates
Certificate Files
Certificate Trust Attributes
CA Trust Attributes
The certadmin Script
Generating Self-Signed Certificates
To Generate a Self-Signed Certificate After Installation
Generating a Certificate Signing Request (CSR)
To Generate a CSR
Adding a Root CA Certificate
To Add a Root CA Certificate
Installing SSL Certificates From the Certificate Authority
Ordering a Certificate from a CA
To Order a Certificate From a CA
Installing a Certificate from a CA
To Install a Certificate From a CA
Deleting a Certificate
To Delete a Certificate
Modifying the Trust Attributes of a Certificate
To Modify the Trust Attributes for a Certificate
Listing Root CA Certificates
To View the List of Root CAs
Listing All Certificates
To List All the Certificates
Printing a Certificate
To Print a Certificates
Chapter 11 Configuring the Netlet
Configuring the Netlet Attributes
To Configure the Basic Attributes
Configuring the Advanced Attributes
To Create, Modify, or Delete a Netlet Rule
Proxy Configuration for Netlet
Chapter 12 Configuring Netlet With Private Domain Certificates
Configuring Netlet for PDC
To Configure Netlet for PDC
Chapter 13 Configuring Proxylet
Configuring the Proxylet Attributes
To Configure the Proxylet Attributes
Configuring Applications to the Portal Desktop
To Configure an Application to the Portal Desktop
Launching Proxylet in Java Web Start or Applet Mode
To Launch Proxylet in Java Web Start or Applet Mode
Chapter 14 Configuring NetFile
Configuration Tasks for NetFile
To Configure the Basic Options
To Configure the Access Privileges
To Configure the Host Preferences
To Configure the Operation Preferences
To Configure the Operation Privileges
Chapter 15 Configuring Secure Socket Layer Accelerators
Introduction to Accelerators
Sun Crypto Accelerator 1000
Enable Crypto Accelerator 1000
To Configure Crypto Accelerator 1000
Sun Crypto Accelerator 4000
Enable Crypto Accelerator 4000
To Configure Crypto Accelerator 4000
External SSL Device and Proxy Accelerators
To Enable an External SSL Device Accelerator
To Configure External SSL Device Accelerators
Part III Managing the Secure Remote Access Server
Chapter 16 Managing the Gateway
Tasks to Manage the Gateway
To Create a Gateway Profile
To Create Gateway Instances Using the Same LDAP
To Start the Gateway Instances
To Stop the Gateway
To Start and Stop Gateway Using Management Console
To Restart the Gateway with a Different Profile
To Restart the Gateway
To Specify a Virtual Host
To Specify a Proxy
To create a Netlet Proxy instance
To Restart a Netlet Proxy
To Create a Rewriter Proxy Instance
To Restart a Rewriter Proxy
To Enable a Reverse Proxy
To Add Authentication Modules to an Existing PDC Instance
To Disable Browser Caching
To Share LDAP Directories
Chapter 17 Federation Management Scenarios
Using Federation Management
Federation Management Scenario
Configuring Federation Management Resources
To Configure Federation Management Resources
Configuration 1
To Configure Gateway to a Service Provider (Portal Server)
Configuration 2
To Configure Gateway to a Service Provider (Portal Server)
Configuration 3
To Configure Gateway to an Identity Provider (Portal Server)
Appendix A Configuration Attributes
Access Control Service
Gateway Service
Core
Proxies
Security
Rewriter
Basic
Advanced
NetFile Service
Hosts
Config
Access
Permissions
View
Operations
Traffic
Search
Compression
General
Netlet Service
Proxylet Service
Appendix B Log Files
About Log Files
Appendix C Country Codes
List of Country Codes
© 2010, Oracle Corporation and/or its affiliates