5.13.3 iDIH Configuration to Configure the SSO Domain

This procedure configures the SSO domain for iDIH.
  1. Establish a GUI session on the NOAM server by using the VIP IP address of the NOAM server. Open the web browser and type https://<Primary_NOAM_VIP_IP_Address> as the URL. Log in as the admusr user.
  2. In NOAM VIP GUI, configure DNS.
    1. Navigate to Administration, and then Remote Servers, and then DNS Configuration.
    2. Select the NOAM tab.
    3. Configure values for the following fields:

      Domain Name

      Name Server

      Search Domain 1


      GUI

    4. If values have already been configured, click Cancel. Otherwise configure the values and click OK.
  3. In NOAM VIP GUI, establish SSO local zone.
    1. Navigate to Access Control, and then Certification Management.
    2. Click Establish SSO Zone.
    3. Type a value for Zone Name.
    4. Click OK.

      Information for the new certificate type of SSO local displays.

    5. Click Report.

      The Certificate Report appears.

    6. Select and copy the encoded certificate text to the clipboard for future access.
      Example of Certificate Report:
      -----BEGIN CERTIFICATE-----
      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
      -----END CERTIFICATE-----
  4. Log in to iDIH Application server GUI.
    1. Establish a GUI session on the iDIH application server, using the xmi IP address https://<app server IP>
    2. Log in as the idihadmin user.
      GUI

  5. In iDIH Application server GUI, launch the OAM portal.
    Navigate to the OAM portal icon to start the OAM web application.
    GUI

  6. In iDIH Application server GUI, configure the SSO domain.
    1. Navigate to System, and then Single Sign On.
      GUI

    2. Select SSO Parameters tab.
      GUI

    3. Click Edit Value icon.
    4. Type a value for the Domain Name.

      Note:

      This should be the same domain name assigned in the DSR NOAM DNS Configuration (step 2).
    5. Click Save icon.
    6. Click Refresh icon to display data saved for the remote zone.
  7. In iDIH Application server GUI, configure the SSO Remote Zone.
    1. Navigate to System, and then Single Sign On.
    2. Select SSO Zones tab.
    3. Click Add icon.
    4. Type a value for field Remote Name.
    5. For field X.509 Certificate, paste the encoded certificate text from the clipboard that was previously copied from the DSR NOAM.
      certificate

    6. Click Save.
    7. Click Refresh to display data saved for the remote zone.