Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010 Manual page 118

To stop this from happening, you must first configure Access Gateway to use SSL. See
"Configuring SSL Communication with the Browsers and the Identity Server," on page
you have SSL configured, you need to configure Tomcat to secure the cookie. See one of the
following:
"Securing the Cookie on the Access Gateway Appliance" on page 118
"Securing the Cookie on the Access Gateway Service" on page 118
Securing the Cookie on the Access Gateway Appliance
1 On the Linux Access Gateway Appliance, log in as
2 Specify the following command to create the
/var/novell/.setsecureESP
3 Specify the following command to restart the Access Gateway Appliance:
/etc/init.d/novell-vmc stop
/etc/init.d/novell-vmc start
Securing the Cookie on the Access Gateway Service
1 On the Access Gateway Service machine, log in as the admin user.
2 Change to the Tomcat configuration directory.
Linux:
Windows:
3 In a text editor, open the
4 Search for the connector on port 8080.
5 Add the following parameter to this connector:
secure="true"
These lines should look similar to the following:
<Connector port="8080"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" redirectPort="8443" acceptCount="100"
debug="0" connectionTimeout="20000"
disableUploadTimeout="true" secure="true" />
6 Save the
7 Restart Tomcat.
Linux:
Windows: Use the following commands:
net stop "Apache Tomcat"
net start "Apache Tomcat"
118 Novell Access Manager 3.1 SP2 Access Gateway Guide
/var/opt/novell/tomcat5/conf
/Program Files/Novell/Tomcat/conf
server.xml
file.
server.xml
/etc/init.d/novell-tomcat5 restart
.
root
touch file:
.setsecureESP
file.
Section 3.3,
112. After