Configuring The Identity Server - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual
Identity server guide
Hide thumbs
Also See for ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010:
- Manual (264 pages) ,
- User manual (58 pages) ,
- Manual (192 pages)
Table of Contents
Advertisement
3. The ADFS server, which has been configured to use the Identity Server as an identity provider,
gives the user the option of logging in to the Identity Server.
4. The user logs in to the Identity Server and is provided a token that is sent to the ADFS server
and satisfies the request of the resource.
5. The user is allowed to access the resource.
The following section describe how to configure your servers for this scenario:
Section 10.1.1, "Configuring the Identity Server," on page 252
Section 10.1.2, "Configuring the ADFS Server," on page 257
Section 10.1.3, "Logging In," on page 260
Section 10.1.4, "Troubleshooting," on page 260
10.1.1 Configuring the Identity Server
"Prerequisites" on page 252
"Creating a New Authentication Contract" on page 252
"Setting the WS-Fed Contract to Be the Default Contract" on page 253
"Enabling the STS and WS Federation Protocols" on page 253
"Creating an Attribute Set for WS Federation" on page 254
"Enabling the Attribute Set" on page 254
"Creating a WS Federation Service Provider" on page 255
"Configuring the Name Identifier Format" on page 256
"Setting Up Roles for ClaimApp and TokenApp Claims" on page 256
"Importing the ADFS Signing Certificate into the NIDP-Truststore" on page 257
Prerequisites
You have set up the Active Directory Federation Services, Active Directory, and SharePoint
servers and the client as described in the ADFS guide from Microsoft. See the
Guide for Active Directory Federation Services" (http://go.microsoft.com/fwlink/
?linkid=49531).
You have set up the Novell Access Manager 3.1 system with a site configuration that is using
SSL in the Identity Server's base URL. See
Access Manager 3.1 SP2 Setup
Creating a New Authentication Contract
The Microsoft ADFS server rejects the contract URI names of the default Access Manager
contracts, which have a URI format of
URI to look like a URL.
We suggest that you use the following format for the URI of all contracts that you want to use with
the ADFS server:
<baseurl>/name/password/uri
252 Novell Access Manager 3.1 SP2 Identity Server Guide
"Enabling SSL
Guide.
secure/name/password/uri
"Step-by-Step
Communication" in the
Novell
. The ADFS server expects the
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 and is the answer not in the manual?
Questions and answers