Creating The Bcslogin Configuration File - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual
Identity server guide
Hide thumbs
Also See for ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010:
- Manual (264 pages) ,
- User manual (58 pages) ,
- Manual (110 pages)
Table of Contents
Advertisement
13b Click OK.
This allows you to log in directly to the Identity Server by using the Kerberos contract. If
you have already logged in to the Active Directory domain on the Windows machine,
single sign-on is enabled and you are not prompted to log in to the Identity Server.
14 On the Identity Servers page, click Update.
Wait until the Health icon turns green. Click Refresh to update the page.
15 If you have Access Gateways or J2EE Agents that you want to configure to use the Kerberos
contract, update these devices so that the Kerberos contract is available.
16 Continue with
5.3.4 Creating the bcsLogin Configuration File
If you are upgrading from 3.0.4 to 3.1 SP2, the syntax of the
details, see
Guide.
To create the file:
1 Open a text editor.
2 Enter the following lines. The file cannot contain any white space, only end-of-line characters.
Two lines (principal and keyTab) need to specify unique information for your configuration.
The principal line needs to specify the service principle name for the Identity Server. The
keyTab line needs to specify the location of the keytab file. The following file uses the values
of the example configuration for the principal and keyTab lines. The keyTab and ticketCache
lines use the default path for SUSE Linux Enterprise Server (SLES).
com.sun.security.jgss.accept {
com.sun.security.auth.module.Krb5LoginModule required
debug="true"
useTicketCache="true"
ticketCache="/opt/novell/java/jre/lib/security/spnegoTicket.cache"
doNotPrompt="true"
principal="HTTP/amser.provo.novell.com@AD.NOVELL.COM"
useKeyTab="true"
keyTab="/opt/novell/java/jre/lib/security/nidpkey.keytab"
storeKey="true";
};
For Windows, the path needs to contain double slashes:
Files\\Novell\\jre\\lib\\security
Windows Server 2003: The path in the keyTab line should be
Files\\Novell\\jre\\lib\\security\\nidpkey.keytab
The path in the ticketCache line should be
Files\\Novell\\jre\\lib\\security\\spnegoTicket.cache
Windows Server 2008: The path in the keyTab line should be
(x86)\\Novell\\jre\\lib\\security\\nidpkey.keytab
The path in the ticketCache line should be
(x86)\\Novell\\jre\\lib\\security\\spnegoTicket.cache
3 Save this file with a name of
168 Novell Access Manager 3.1 SP2 Identity Server Guide
"Creating the bcsLogin Configuration File" on page
"Upgrading the SP4 Identity
bcsLogin.conf
bcsLogin.conf
Servers" in the
Novell Access Manager 3.1 SP2 Installation
C:\\Program
C:\\Program
C:\\Program Files
.
168.
file has changed. For
C:\\Program
C:\\Program Files
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010
Related Products for Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
- NOVELL CLIENT LOGIN EXTENSION 3.7 - ADMINISTRATION
- NOVELL IDENTITY ASSURANCE SOLUTION 3.0.2 - ADMINISTRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IDENTITY MANAGER 3.6.1 - JOBS GUIDE
- NOVELL IDENTITY MANAGER 3.6.1 - TASK SERVICE DRIVER
- NOVELL IFOLDER 3 - ADMINISTRATION
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- NOVELL POLICY IN DESIGNER 3.5 - 09-18-2009
Need help?
Do you have a question about the ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 and is the answer not in the manual?
Questions and answers