OTP SERVER NETEGRITY SITEMINDER 6. Rev 1.0 INTEGRATION MODULE. Copyright, NordicEdge, 2005 O T P S E R V E R I N T E G R A T I O N M O D U L E

Similar documents
How to Integrate CA SiteMinder with the Barracuda Web Application Firewall

Configuring a Secure Access etrust SiteMinder Server Instance (NSM Procedure)

KB 2449 CA Wily APM security example: CA SiteMinder for authentication with CA EEM for authorization

CA SiteMinder. Agent for JBoss Guide SP1

CA SiteMinder. Agent for JBoss Guide. r12.1 SP3. Third Edition

etrust SiteMinder Agent r5.5 for BEA WebLogic 9.0 etrust SiteMinder Agent for BEA WebLogic Guide

CA SITEMINDER OVERVIEW

etrust SiteMinder Connector for Oracle Solutions Architecture, Installation and Configuration Guide For UNIX Version 1.6 (Rev 1.

etrust SiteMinder Agent r6.0 for IBM WebSphere

CA SiteMinder. Agent for JBoss Guide 12.51

RSA SecurID Ready Implementation Guide

Integrating CA (formerly Netegrity) SiteMinder 6.0 with IBM Lotus Connections 2.0

Setup and Configure the Siteminder Policy Store with Dxmanager

CA SiteMinder Web Services Security

API Gateway Version September Authentication and Authorization Integration Guide

Installation Guide. Unisphere Central. Installation. Release number REV 07. October, 2015

Hotel Booking System For Magento

Trivelio User Guide. Purpose

ELOQUA INTEGRATION GUIDE

EMC Unisphere 360 for VMAX

Travel Agent - User Guide

Dell EMC Unisphere 360

EMC Unisphere 360 for VMAX

User Reference Manual

Bonita Workflow. Getting Started BONITA WORKFLOW

Firewall Network and Proxy Datasheet

Implementing OpenID for Your Social Networking Web Site

Wishlist Auto Registration Manual

Video Media Center - VMC 1000 Getting Started Guide

GDC Services Access via PDA. User Guide

MARKETO INTEGRATION GUIDE

Concur Travel: View More Air Fares

Concur Travel: User Supplied Hotels

Fox World Travel/Concur Documentation Concur FAQ

The implications of. Simon Willison Google Tech Talk, 25th June 2007

LS-Data. Manual. Altenrhein Luftfahrt GmbH Office Park 3 Top 312 / Postfach 90 A-1300 Wien Flughafen

By Prabath Siriwardena, WSO2

Concur Travel-Frequently Asked Questions

Supports full integration with Apollo, Galileo and Worldspan GDS.

CA SiteMinder Federation Standalone

Management System for Flight Information

Help Document for utsonmobile - Windows Phone

Multiple Wishlists extension for Magento2. User Guide

Overseas Travel Registration System Operation Manual

Specialty Cruises. 100% Tally and Strip Cruises

WHAT S NEW in 7.9 RELEASE NOTES

Product information & MORE. Product Solutions

MyFBO Help. Contents TRAINING ONLY

Concur Travel: HOTEL DE Direct Connect

VARIBLE COMMISSIONS OVERVIEW

CASS & Airline User Manual

Click the Profile link to review and update your profile. You must save your profile before you first attempt to book a trip. TOP

TECHNOLOGICAL SOLUTIONS FOR BAGGAGE HANDLING ON TIME PERFORMANCE. Copyright 2017 Project Business Digital Airport. All Rights Reserved.

CruisePay Enhancements for 2005 Training Guide Version 1.0

Specialty Cruises. A. 100% Tally and Strip Cruises

S-Series Hotel App User Guide

Federal GIS Conference February 10 11, 2014 Washington DC. ArcGIS for Aviation. David Wickliffe

Tivoli/Plus for ADSM 1.0

Virgin Australia s Corporate Booking Portal User Guide

Exhibitor System Quick Start Guide

Emerging Locator & Flight Data Technology

EMC Unisphere 360 for VMAX

FareStar Ticket Window Product Functionality Guide

Book Upto 12 tickets in a month by linking Aadhaar

Cvent Passkey Glossary

PILOT PORTAL. User s Manual for registered users. of the COMSOFT Aeronautical Data Access System (CADAS) ARO Tallinn

Concur Travel: Post Ticket Change Using Sabre Automated Exchanges

User Guide for E-Rez

CA SiteMinder. Federation.NET SDK Guide 12.51

BHP BILLITON. Contractor Management System. User Guide for Booking Inductions - MAC Administrators

Canadian Classic Airlines Members Handbook

easycredit Integration Guide Version As of: About easycredit: General information about easycredit

InHotel. Installation Guide Release version 1.5.0

mobile and web Click on each question category for a series of questions and answers to help you learn more about mycwt TM s features.

myldtravel USER GUIDE

Concur Travel - Frequently Asked Questions

Punt Policing and Monitoring

myldtravel USER GUIDE

Aircraft Communication and Reporting System (ACARS) User s manual

Navitaire GoNow Day-of-departure services

e-airportslots Tutorial

Paperless Aircraft Operations - IATA s Vision and Actions - Chris MARKOU IATA Operational Costs Management

MYOB EXO OnTheGo. Release Notes 1.2

Management System for Flight Information

Special edition paper Development of a Crew Schedule Data Transfer System

Concur Travel FAQs. 5. How do I log in to Concur Travel? Visit or the link is available on the Travel page of the Compass.

DART. Duty & Recreation Travel STAFF TRAVEL SIMPLIFIED. Straightforward, easy to use staff travel management system for the airline industry

ITU Delegate Registration

FAST FERRY RESERVATION SYSTEM

2018 PSO Profile Highlights and Tips. December 18, :00 3:00 PM

ICTAP Program. Interoperable Communications Technical Assistance Program. Communication Assets Survey and Mapping (CASM) Tool Short Introduction

Concur Travel User Guide

Secure Flight Passenger Data (SFPD) FAQs

GetThere User Training

Cisco CMX Cloud Proxy Configuration Guide

HEATHROW S VIP SERVICE

The Official s Guide to Athletix

RECENT ADVANCES in E-ACTIVITIES, INFORMATION SECURITY and PRIVACY. Hierarchy OpenID

Last Updated: July 04 th, 2014.Changes from the previous version are in green. SITEMINDER ,29 PLATFORM SUPPORT 1. Policy Server 11,

HPHConnect for Providers. Revalidation of Users of Your HPHConnect Account User Guide

Transcription:

OTP SERVER INTEGRATION MODULE NETEGRITY SITEMINDER 6 Copyright, NordicEdge, 2005 www.nordicedge.se Copyright, 2005, NordicEdge AB Page 1 of 11

1 Introduction 1.1 OTP Server Overview Nordic Edge OTP Server adds an extra security layer to protect your applications. When the user id and password is successfully verified, a One Time Password is sent to the user s mailbox or mobile phone through SMS (Short Message Services). This One Time Password will be verified and only then will the user be authenticated to the application. 1.2 Netegrity SiteMinder 6 integration Overview NordicEdge Secure Custom Authentication scheme for Netegrity SiteMinder 6 enables strong authentication for applications using the Netegrity SiteMinder SSO framework. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 2 of 11

1.3 Pre-requisites & System requirements 1.3.1 SiteMinder SiteMinder 6 and above 1.3.2 OTP Server OTP Server 14C or higher. OTP Server must be configured before the scheme can be used. See OTP Server Administration Manual for more information on how to configure this. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 3 of 11

2 Installation 2.1 Installing custom authentication scheme 2.1.1 Files needed Unzip the file otp4siteminder.zip: nordicedgeotp.jar NordicEdge OTP Authentication Scheme otp1.fcc Sample Login Page otp2.fcc Sample Response Page pwchange.jsp Sample jsp file to support password services pwchange.asp Sample asp file to support password services PWSelfChangeLogin.template Sample password services CGI template file 2.1.2 Other <SM installation> = the path where SiteMinder policy server was installed. <SM agent installation> = the path where SiteMinder agent was installed. 2.1.3 Install Follow these steps for a successful installation of the custom authentication scheme: 1. Copy nordicedgeotp.jar to all policy servers to the directory. Sample: <SM installation>\bin www.nordicedge.se Copyright, 2005, NordicEdge AB Page 4 of 11

2. Copy otp1.fcc and otp2.fcc to the web server where the agent is installed to the directory <SM agent installation>\samples\forms 3. Add the jar file to the classpath in <siteminder>\config\jvmoptions.txt, like: -Djava.class.path=C:/Program Files/Netegrity/SiteMinder/bin/nordicedgeotp.jar;C:/Program Files/Netegrity/SiteMinder/config/properties;C:/Program Files/Netegrity/SiteMinder/bin/jars/SmJavaApi.jar;... www.nordicedge.se Copyright, 2005, NordicEdge AB Page 5 of 11

3 Configuration 3.1 Scheme Configuration All settings for the authentication scheme are defined in SiteMinder custom authentication scheme. If a value is to be left blank a comma still has to be entered to maintain the enumeration of the parameters. 3.1.1 Parameters Nr Default value Description 1 /siteminderagent/forms/otp1.fcc Login URL, the URL to redirect to for initial login. 2 3 4 5 6 7 8 /siteminderagent/forms/otp2.fc c localhost:3100 YES mail /siteminderagent/pwcgi/smpws ervicescgi.exe/ N/A N/A Redirect URL, the URL to redirect to for challenge input. OTP Serverhost, all OTP server names and port, syntax "hostname:portnr;hostname2:portnr" etc. OTP Encryption, if the client should use encrypted communication to OTP server. Value YES/NO. Identity Attribute, the attribute to fetch the user value (mobile number, mail, etc.). Multiple values (max 3) separated by $, like "idattr1$idattr2$idattr3". Password services URL, the URL where SiteMinder Password Services resides. Password Change URL, the URL where the password changes jsp/asp resides. Only use this if PWS is enabled. OTS Attribute, used for integration with OTS (One Time signing). OTS is an additional product. Contact NordicEdge authorized reseller for more info. Leave blank if you don t have that product. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 6 of 11

Nr Default value Description 9 N/A Additional attribute in redirect. Sample: gracelogins LOGINRET OTP scheme will add the value of the users gracelogins to the URL as parameter LOGINRET when redirecting to otp2.fcc. 10 NO Debug, enable/disable debug, set YES to enable. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 7 of 11

3.2 SiteMinder Configuration 3.2.1 Administration 1. In the SiteMinder Admin GUI, create a new auth scheme. 2. Select a name and description. 3. Choose Custom Template in the Authentication Scheme Type drop down list. 4. Change the protection level to apply to your company security policy. 5. Enter smjavaapi as Library. 6. Enter your parameters starting with se.nordicedge.nordicedgeotp followed by a space and the parameters with a, as separator, see Parameters section above. NOTE! There must be no CR or new line since that will cause the scheme to not load. Make sure there is only a space,, leading the parameter list. Sample: se.nordicedge.nordicedgeotp /siteminderagent/forms/otp1.fcc,/siteminderagent/forms/otp2.fcc,192.168.10.1:3100,n o,mobile,,,,,yes 7. Save the auth scheme. 8. Choose the newly created scheme as Authentication Scheme in your realms. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 8 of 11

www.nordicedge.se Copyright, 2005, NordicEdge AB Page 9 of 11

3.2.2 SiteMinder Password Services Due to limitations in the SiteMinder API, a work-around has to be done to enable password services support. This includes a jsp/asp page and a modified password services template. To configure this: 1. Copy PWSelfChangeLogin.template to the agent where the redirect is configured (parameter 8). 2. Copy pwchange.jsp or pwchange.asp to a directory on the web server. 3. Create a basic auth scheme with a lower Protection Level then the OTP auth scheme. 4. Create a realm that protect the pwchange.* and protect it with the basic auth scheme. 5. Under the realm, create a rule with action get. 6. Create a policy, add the rule and make sure to give the users access. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 10 of 11

4 Appendix A: Misc 4.1 Troubleshooting For troubleshooting and support, please go to http://www.nordicedge.se. www.nordicedge.se Copyright, 2005, NordicEdge AB Page 11 of 11

2024 © travelsdocbox.com Privacy Policy | Terms of Service | Feedback