That s why it s more practical to only implement SSO on the web client. Before you run this exercise, make sure you have the following files:
|
|
- Heather Cannon
- 8 years ago
- Views:
Transcription
1 How to implement SSO for web client ONLY: To activate SSO on web client, you only have to generate certificates for the WEB Application Server. If you want to activate SSO for the windows client, you have to generate certificates for ALL users that will use the windows client. That s why it s more practical to only implement SSO on the web client. PREREQ: Before you run this exercise, make sure you have the following files: certcreateca.bat certcreatesrvcert.bat certcreateclient.bat Java JDK installed opensslforca.conf Openssl.exe Ssleay32.dll libeay32.dll Contents of the batch file is at the end of this document Contents of the batch file is at the end of this document Contents of the batch file is at the end of this document You can download this from the internet Contents of the conf file is at the end of this document You can download this from the internet You can download this from the internet You can download this from the internet Let s assume the following values: AATAPP123.aat.com.au AATWEB123.aat.com.au SM SM Application Server Name SM Web Application Server Name Tomcat Webapps folder name Steps: 1. Make sure you have set up SM properly with a web client running using Tomcat/IIS 6.0 with ISAPI Filter. This is important, otherwise SSO will not work. It s so hard to implement using Apache Server so you might as well use IIS 6.0. Make sure everything is running so you won t have to spend too much debugging. The succeeding steps are useless unless you have a working service manager system with a web client that runs in IIS Open the batch files and update the entry set JAVA_HOME="C:\Program Files\Java\jre1.5.0_12" with the location of Java JRE in the computer where you will run the batch files. 3. Execute the batch file certcreateca.bat by typing in the command line: certcreateca.bat NEW When prompted for Common Name or First/Last Name enter: AATAPP123.aat.com.au Ignore the other questions by pressing the Enter key A sample screen is shown on the next page. Make sure you don t have any errors inside the command line screen. Otherwise, the succeeding steps will not work.
2 This step will create the following folders and files: Certs\cacerts Certs\mycacert.pem Crs (folder) Key\cakey.pem
3 4. Execute the certcreatesrvcert.bat. A sample output screen is shown below: It will create the following files: Certs\mycacert.srl Certs\smservercert.pem Crs\servercert_request.crs Key\server.keystore
4 5. Execute the certcreateclient.bat by executing it as follows: certcreateclient.bat web When prompted for the First/Last Name or Common Name, enter AATWEB123.aat.com.au. This is important, I got confused before. I thought that I should enter the server name of the Service Manager. IT SHOULD BE THE WEB APPLICATION SERVER NAME where you will copy the Certificate to.
5 It will create the following files: Certs\clientpubkey.cert Certs\Scclientcert.pem Certs\trustedclients.keystore Crs\clientcert_request.crs Key\web.keystore 6. Copy the files certs/cacerts, certs/trustedclients.keystore, key/server.keystore to the RUN directory. 7. Copy the files certs/cacerts and web.keystore to the WEB-INF directory of the sm web apps folder. 8. Open the web.xml located in the Tomcat webapps location and change the values of the highlighted items. Please note that the sample file below has already been updated. <?xml version="1.0" encoding="utf-8"?> (C) Copyright Hewlett-Packard Development Company, L.P. All Rights Reserved. <web-app xmlns=" xmlns:xsi=" xsi:schemalocation=" version="2.4"> <display-name>hp Service Manager</display-name> <description>hp Service Manager</description> CWC custom parameters used to affect the CWC framework <param-name>issavenavpathskipped</param-name> <param-name>shownavcollapse</param-name> Use of the backchannel iframe (used for list grouping) <param-name>isbackchannelused</param-name>
6 <param-name>isbreadcrumbtrayused</param-name> <param-value>false</param-value> Control sorting of the system navigator <param-name>sortnavitems</param-name> MESSAGE TRAY must be set to true <param-name>ismessagetrayused</param-name> <param-name>showlistcollapse</param-name> <param-value>false</param-value> <param-name>showdetailcollapse</param-name> <param-value>false</param-value> <param-name>showrefreshnavbutton</param-name> <param-name>showhelp</param-name> <param-value>false</param-value> <param-name>showlogout</param-name> <param-name>showframeworkreset</param-name> <param-value>false</param-value> <param-name>strappname</param-name> <param-value>hp Service Manager Web</param-value> <param-name>srclist</param-name> <param-value>list.do</param-value> <param-name>srcdetail</param-name> <param-value>detail.do</param-value> <param-name>srclistdetail</param-name> <param-value>detail.do</param-value> <param-name>srcmessages</param-name> <param-value>detail.do</param-value> <param-name>showaddbookmark</param-name> <param-value>false</param-value> <param-name>showsynctree</param-name> <param-value>false</param-value> <param-name>showspellcheck</param-name> Spring configuration files Apps should use the ST security component as is, configuring it via a security.properties file. This app provides specifies custom security in it's application-context.xml to change the behavior, making it more suitable to a sample app.
7 <param-name>contextconfiglocation</param-name> <param-value>classpath*:application-context.xml</param-value> Key bindings for commom operations. These key numbers are combined w/ the ALT key to produce the complete keystroke. Take note that certain third-party browser toolbars trap ALT+<key> for their own use. Be sure to select keys that will not confict w/ such toolbar key mappings. default is 'g' <param-name>keymessages</param-name> <param-value>71</param-value> default is 'p' <param-name>keyprint</param-name> <param-value>80</param-value> default is 'c' <param-name>keyspellcheck</param-name> <param-value>67</param-value> default is 'n' <param-name>keycollapseexpandnav</param-name> <param-value>78</param-value> default is 'r' <param-name>keyrefresh</param-name> <param-value>82</param-value> default is 'o' <param-name>keyabout</param-name> <param-value>79</param-value> default is the number '1' <param-name>keymanagefav</param-name> <param-value>49</param-value> default is the number '2' <param-name>keyaddfav</param-name> <param-value>50</param-value> override default F1 <param-name>functionkeyhelp</param-name> <param-value/> default is 'i' <param-name>keyhelp</param-name> <param-value>73</param-value> <param-name>isfullscreenlogin</param-name> <param-value>false</param-value> <param-name>iscustomauthenticationused</param-name> <param-value>false</param-value> <param-name>logouturl</param-name> <param-value>/goodbye.jsp</param-value> Response Compression
8 <filter> <filter-name>compression Filter</filter-name> <filter-class>org.apache.compressionfilters.compressionfilter</filter-class> <param-name>compressionthreshold</param-name> <param-value>2048</param-value> <param-name>debug</param-name> <param-value>0</param-value> </filter> Acegi security filter (proxy for the spring bean filter chain) <filter> <filter-name>acegi Filter Chain Proxy</filter-name> <filter-class>org.acegisecurity.util.filtertobeanproxy</filter-class> <param-name>targetclass</param-name> <param-value>org.acegisecurity.util.filterchainproxy</param-value> </filter> <filter> <filter-name>cachecontrol</filter-name> <filter-class> org.acegisecurity.util.filtertobeanproxy </filter-class> <param-name>targetbean</param-name> <param-value>cachecontrolproxy</param-value> </filter> LWSSO filter for integrations using HP lightweight single sign-on PLEASE NOTE: Uncomment this filter and the associated filter-mapping, and see application-context.xml for additional configuration needed for LWSSO. <filter> <filter-name>lwsso</filter-name> <filter-class>com.hp.sw.bto.ast.security.lwsso.lwssofilter</filter-class> </filter> filter mappings for Cache Control <filter-mapping> <filter-name>cachecontrol</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> LWSSO filter-mapping, please read description for LWSSO filter above before uncommenting this. <filter-mapping> <filter-name>lwsso</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> Acegi <filter-mapping> <filter-name>acegi Filter Chain Proxy</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>compression Filter</filter-name> <url-pattern>*.do</url-pattern> </filter-mapping> <filter-mapping> <filter-name>compression Filter</filter-name> <url-pattern>*.jsp</url-pattern> </filter-mapping> <filter-mapping> <filter-name>compression Filter</filter-name> <url-pattern>*.html</url-pattern> </filter-mapping> <filter-mapping>
9 <filter-name>compression Filter</filter-name> <url-pattern>*.css</url-pattern> </filter-mapping> <filter-mapping> <filter-name>compression Filter</filter-name> <url-pattern>*.js</url-pattern> </filter-mapping> <listener> <listener-class>com.hp.ov.cwc.web.cwcservletcontextlistener </listener-class> </listener> Loads the root application context of this web app at startup. The application context is then available via WebApplicationContextUtils.getWebApplicationContext(servletContext). <listener> <listener-class>org.springframework.web.context.contextloaderlistener </listener-class> </listener> Acegi The HttpSessionEventPublisher will publish HttpSessionCreatedEvent and HttpSessionDestroyedEvent to the WebApplicationContext <listener> <listener-class>org.acegisecurity.ui.session.httpsessioneventpublisher </listener-class> </listener> <servlet> <description/> <display-name>hp Service Manager Web</display-name> <servlet-name>hp Service Manager Web</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.webcontrollerservlet </servlet-class> ******************************************************** The following parameters can also be supplied in the URL ******************************************************** Specify the HP Service Manager server host and port location <param-name>serverhost</param-name> <param-value>aatapp123.aat.com.au</param-value> <param-name>serverport</param-name> <param-value>13080</param-value> <param-name>honorurlhost</param-name> <param-value>false</param-value> <param-name>honorurlport</param-name> <param-value>false</param-value> ESS users would override this with URL param. But the application could be set to always operate in ESS mode if this were set to true. If so the user will not need to have that parameter set. When it is true the server is notifed so that the correct applications are initialized. <param-name>essuser</param-name> <param-value>false</param-value> Enable background checking of status messages. When enabled the user's browser issues requests back to the server on timed basis and updates the client's message bar with new messages if any are supplied. <param-name>refreshmessages</param-name> Number of milliseconds between message refresh check
10 <param-name>refreshmessagesinterval</param-name> <param-value>15000</param-value> Enable to support the display of active note messages <param-name>viewactivenotes</param-name> <param-value>false</param-value> Specify the location of help server. If defined, the browser provides the user with a link to online help page <param-name>helpserverhost</param-name> <param-value/> <param-name>helpserverport</param-name> <param-value/> Enable to prompt the user to save their changes if they modify a record and then attempt to leave the screen without saving <param-name>viewpromptforsave</param-name> Enables split list/detail display after a search is performed. <param-name>viewrecordlist</param-name> Specify the number of row displayed in the record list <param-name>recordlistcount</param-name> <param-value>32</param-value> Enables submission of forms when the user presses the ENTER key. <param-name>autosubmit</param-name> Enables secure encoding of queries <param-name>querysecurity</param-name> Use of the custom tab orders defined in the form designer to set the tabindex attributes. Default is false and the tabindex is set to blanks which will let the browsers determine the tab orders. <param-name>useservertabs</param-name> <param-value>false</param-value> ******************************************************** The following parameters can't be supplied in the URL: they can only be changed in web.xml ******************************************************** Control the encryption of network communication between the application server and the HP Service Manager server <param-name>ssl</param-name> Specify the CA certificate store to use in encrypted communication If this value is empty, the JDK's default jre/lib/security/cacerts file is used If this is a relative path, it will be relative to the web application's deploy directory but still needs a leading slash <param-name>cacerts</param-name> <param-value>/web-inf/cacerts</param-value> Specify the client's private keystore to use in encrypted communication. This is necessary
11 for client authentication when using single sign-on, but not for a standard SSL connection. If this is a relative path, it will be relative to the web application's deploy directory but still needs a leading slash <param-name>keystore</param-name> <param-value>/web-inf/web.keystore</param-value> Specify the password for the client's private keystore <param-name>keystorepassword</param-name> <param-value>clientkeystore</param-value> Compress network communication between the application server and the HP Service Manager server <param-name>compress_soap</param-name> <load-on-startup>1</load-on-startup> </servlet> <servlet> <description>a compression capable servlet used for downloading file attachments associated with the current DBMS record. </description> <display-name>attachment Download Servlet</display-name> <servlet-name>attachmentdownload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.filedownloadservlet </servlet-class> <param-name>scope</param-name> <param-value>attachmentsonly</param-value> <param-name>disablecompression</param-name> </servlet> <servlet> <description>a compression capable servlet used for downloading file attachments associated with the current DBMS record. </description> <display-name>file Download Servlet</display-name> <servlet-name>filedownload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.filedownloadservlet </servlet-class> <param-name>scope</param-name> <param-value>attachmentsonly</param-value> <param-name>forcedownload</param-name> <param-name>disablecompression</param-name> </servlet> <servlet> <description>file Upload Servlet.</description> <display-name>file Upload Servlet</display-name> <servlet-name>fileupload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.fileuploadservlet</servlet-class> </servlet> <servlet> <description>image Upload Servlet.</description> <display-name>image Upload Servlet</display-name> <servlet-name>imageupload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.fileuploadservlet</servlet-class> <param-name>allowed</param-name> <param-value>bmp,jpg,jpeg,png,gif</param-value>
12 <param-name>success</param-name> <param-value>../imageuploaded.jsp</param-value> </servlet> <servlet> <description>attachment upload servlet</description> <display-name>attachment Upload Servlet</display-name> <servlet-name>attachmentupload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.fileuploadservlet</servlet-class> <param-name>success</param-name> <param-value>../attachmentuploaded.jsp</param-value> </servlet> <servlet> <description>unique attachment upload servlet</description> <display-name>unique Upload Servlet</display-name> <servlet-name>uniqueupload</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.fileuploadservlet</servlet-class> <param-name>success</param-name> <param-value>../uniqueuploaded.jsp</param-value> </servlet> <servlet> <description>servlet allowing download of an attachment from any record in the database </description> <display-name>attachment Servlet</display-name> <servlet-name>attachment</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.attachmentservlet</servlet-class> </servlet> <servlet> <description>servlet allowing download of an attachment image from any record in the database and scale it for display </description> <display-name>image Servlet</display-name> <servlet-name>image</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.imageservlet</servlet-class> </servlet> <servlet> <description>servlet to get a graph definition or update from an application </description> <display-name>graph Servlet</display-name> <servlet-name>graph</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.graphservlet</servlet-class> </servlet> <servlet> <description>servlet to get content of a Popup Subform </description> <display-name>popup Subform</display-name> <servlet-name>popupsubform</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.hoverformservlet</servlet-class> </servlet> <servlet> <description>servlet in charge of messages management</description> <display-name>messages</display-name> <servlet-name>messages</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.messagesservlet</servlet-class> </servlet> <servlet> <description>servlet allowing download of HTML content to display in HTML viewer </description> <display-name>html Viewer</display-name> <servlet-name>htmlviewer</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.htmlviewerservlet</servlet-class> </servlet> <servlet> <description>servlet to open a record or list from a link in the HTML viewer </description> <display-name>record Link</display-name> <servlet-name>recordlink</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.linkservlet</servlet-class> </servlet> <servlet>
13 <description>navigation Menu Servlet</description> <display-name>navigation Menu</display-name> <servlet-name>navmenu</servlet-name> <servlet-class>com.hp.ov.sm.client.webtier.navmenuservlet</servlet-class> </servlet> <servlet> <description>responsible for emitting references to.css files associated with a custom theme </description> <display-name>theme Servlet</display-name> <servlet-name>themeservlet</servlet-name> <servlet-class>com.hp.ov.cwc.web.themeservlet</servlet-class> </servlet> <servlet-mapping> <servlet-name>themeservlet</servlet-name> <url-pattern>/cwc/customthemecss</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>hp Service Manager Web</servlet-name> <url-pattern>*.do</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>filedownload</servlet-name> <url-pattern>/servlet/download/*</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>attachmentdownload</servlet-name> <url-pattern>/attachments/*</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>fileupload</servlet-name> <url-pattern>/servlet/upload</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>imageupload</servlet-name> <url-pattern>/servlet/imageupload</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>attachmentupload</servlet-name> <url-pattern>/servlet/attachmentupload</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>uniqueupload</servlet-name> <url-pattern>/servlet/uniqueupload</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>attachment</servlet-name> <url-pattern>/servlet/attachment/*</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>image</servlet-name> <url-pattern>/servlet/image</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>graph</servlet-name> <url-pattern>/servlet/graph</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>popupsubform</servlet-name> <url-pattern>/popupsubform</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>messages</servlet-name> <url-pattern>/servlet/messages</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>htmlviewer</servlet-name> <url-pattern>/servlet/htmlviewer</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>recordlink</servlet-name> <url-pattern>/servlet/recordlink</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>navmenu</servlet-name> <url-pattern>/cwc/nav.menu</url-pattern>
14 </servlet-mapping> The following session-timeout value is in minutes. If a user closes a browser window without logging out, the application server will wait this long before sending HP Service Manager a request to end the user's scenter process. <session-config> <session-timeout>15</session-timeout> </session-config> <welcome-file-list> <welcome-file>index.html</welcome-file> </welcome-file-list> <error-page> <exception-type>java.lang.throwable</exception-type> <location>/cwc/error.jsp</location> </error-page> <error-page> <error-code>500</error-code> <location>/goodbye.jsp</location> </error-page> <jsp-config> <jsp-property-group> <url-pattern>*.jsp</url-pattern> <el-ignored>false</el-ignored> <page-encoding>utf-8</page-encoding> </jsp-property-group> </jsp-config> <env-entry> <description>hp Service Manager client theme</description> <env-entry-name>alternatetheme</env-entry-name> <env-entry-type>java.lang.string</env-entry-type> <env-entry-value/> </env-entry> <env-entry> <description>log4j configuration properties file location</description> <env-entry-name>log.properties</env-entry-name> <env-entry-type>java.lang.string</env-entry-type> <env-entry-value>/web-inf/log4j.properties</env-entry-value> </env-entry> </web-app> 9. Open the application-context.xml file located at WEB-INF/classes and set the following highlighted values. Please note that the copy below has been updated already: <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" " Application specific beans go here. Applications should configure component behavior via properties files, and not duplicate configuration information. <beans> this bean is used by the Filter Chain Proxy defined in the web.xml it applies a chain of filters based on the pattern. In this case it applies a filter to set up a Spring context for the session, and then the HTTP Basic authentication filter. <bean id="filterchainproxy" class="org.acegisecurity.util.filterchainproxy"> <property name="filterinvocationdefinitionsource"> <value> PATTERN_TYPE_APACHE_ANT /images/**=#none# /js/**=#none# /css/**=#none# /cwc/images/**=#none# /cwc/js/**=#none# /cwc/css/**=#none# /cwc/tree/**=#none# /**=httpsessioncontextintegrationfilter,preauthenticationfilter,anonymousprocessingfil ter </value> </property> </bean> add preauthenticationfilter before the anonymousprocessingfilter in the filter
15 chain above to enable preauthentication, thus: /**=httpsessioncontextintegrationfilter,preauthenticationfilter,anonymousprocessingfil ter or for integrations requiring HP Lightweight Single Sign-on (lwsso) use the lwssofilter and uncomment it below. /**=httpsessioncontextintegrationfilter,lwssofilter,anonymousprocessingfilter <bean id="cachecontrolproxy" class="org.acegisecurity.util.filterchainproxy"> <property name="filterinvocationdefinitionsource"> <value> PATTERN_TYPE_APACHE_ANT /images/**=cachefilter /js/**=cachefilter /css/**=cachefilter /cwc/images/**=cachefilter /cwc/js/**=cachefilter /cwc/css/**=cachefilter /cwc/tree/**=cachefilter /*.do*=nevercachefilter /**/*.jsp=nevercachefilter /*.jsp=nevercachefilter </value> </property> </bean> <bean id="nevercachefilter" class="com.hp.ov.cwc.web.cachecontrolfilter"> <property name="headers"> <map> <entry key="expires"><value>sat, 6 May :00:00 GMT</value></entry> <entry key="cache-control"><value>no-store, no-cache, must-revalidate, postcheck=0, pre-check=0</value></entry> <entry key="pragma"><value>no-cache</value></entry> </map> </property> </bean> This filter tells the browser to cache these files up to the specified max-age time specified in seconds sec is 2 hours. See RFC-2616 for more information. <bean id="cachefilter" class="com.hp.ov.cwc.web.cachecontrolfilter"> <property name="headers"> <map> <entry key="expires"><value>sat, 6 May :00:00 GMT</value></entry> <entry key="cache-control"><value>public, max-age=7200</value></entry> </map> </property> </bean> <bean id="httpsessioncontextintegrationfilter" class="org.acegisecurity.context.httpsessioncontextintegrationfilter"> <property name="allowsessioncreation"> <value>true</value> </property> <property name="context"> <value>org.acegisecurity.context.securitycontextimpl</value> </property> </bean> <bean id="anonymousprocessingfilter" class="org.acegisecurity.providers.anonymous.anonymousprocessingfilter"> <property name="key"> <value>foobar</value> </property> <property name="userattribute"> <value>anonymoususer,role_anonymous</value> </property> </bean> <bean id="anonymousauthenticationprovider" class="org.acegisecurity.providers.anonymous.anonymousauthenticationprovider"> <property name="key"> <value>foobar</value> </property>
16 </bean> <bean id="authenticationmanager" class="org.acegisecurity.providers.providermanager"> <property name="providers"> <list> <ref bean="preauthenticationprovider"/> <ref bean="anonymousauthenticationprovider"/> </list> </property> </bean> <bean id="preauthenticationfilter" class="com.hp.ov.cwc.security.acegi.preauthenticationfilter"> <property name="authenticationmanager"> <ref bean="authenticationmanager"/> </property> <property name="defaultrole"> <value>role_pre</value> </property> </bean> <bean id="preauthenticationprovider" class="com.hp.ov.cwc.security.acegi.preauthenticationprovider"/> <bean id="spellcheck" class="com.hp.ov.cwc.web.spellchecker.wintertree.spellcheckerbean"> <property name="propertiesfile"> <value>/web-inf/wintertree.properties</value> </property> </bean> <bean id="spellcheck" class="com.hp.ov.cwc.web.spellchecker.wintertree.spellcheckerbean"> <property name="propertiesfile"> <map> <entry> <key> <value>en</value> </key> <value>/web-inf/wintertree.properties</value> </entry> <entry> <key> <value>de</value> </key> <value>/web-inf/wintertree_de.properties</value> </entry> <entry> <key> <value>es</value> </key> <value>/web-inf/wintertree_es.properties</value> </entry> <entry> <key> <value>fr</value> </key> <value>/web-inf/wintertree_fr.properties</value> </entry> <entry> <key> <value>it</value> </key> <value>/web-inf/wintertree_it.properties</value> </entry> </map> </property> </bean> This bean is used for HP Lightweight Single Sign-on, to integrate with other Hewlett-Packard software products. Uncomment it here and reference it in the filterchainproxy as commented above. <bean id="lwssofilter" class="com.hp.ov.sm.client.webtier.lwsso.lwssopreauthenticationfilter"> <property name="authenticationmanager"> <ref bean="authenticationmanager"/>
17 </property> <property name="defaultrole"> <value>role_pre</value> </property> </bean> </beans> 10. Go to IIS Manager and go to Default Web site. There should be a Jakarta virtual directory in there as a result of installing the ISAPI Filter. Go to its properties (right click) and go to Directory Security. Make sure it looks like the screen below:
18 11. Make sure that the Directory Security of the Default Website (right click to go to Properties) looks like the one below: 12. Open \Apache Software Foundation\Tomcat 5.5\conf\server.xml and update as follows: <?xml version="1.0"?> Licensed to the Apache Software Foundation (ASF) under one or more contributor license agreements. See the NOTICE file distributed with this work for additional information regarding copyright ownership. The ASF licenses this file to You under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. Example Server Configuration File Note that component elements are nested corresponding to their parent-child relationships with each other A "Server" is a singleton element that represents the entire JVM, which may contain one or more "Service" instances. The Server listens for a shutdown command on the indicated port. Note: A "Server" is not itself a "Container", so you may not define subcomponents such as "Valves" or "Loggers" at this level. <Server port="8005" shutdown="shutdown">
19 Comment these entries out to disable JMX MBeans support used for the administration web application <Listener classname="org.apache.catalina.core.aprlifecyclelistener" /> <Listener classname="org.apache.catalina.mbeans.serverlifecyclelistener" /> <Listener classname="org.apache.catalina.mbeans.globalresourceslifecyclelistener" /> <Listener classname="org.apache.catalina.storeconfig.storeconfiglifecyclelistener"/> Global JNDI resources <GlobalNamingResources> Test entry for demonstration purposes <Environment name="simplevalue" type="java.lang.integer" value="30"/> Editable user database that can also be used by UserDatabaseRealm to authenticate users <Resource name="userdatabase" auth="container" type="org.apache.catalina.userdatabase" description="user database that can be updated and saved" factory="org.apache.catalina.users.memoryuserdatabasefactory" pathname="conf/tomcat-users.xml" /> </GlobalNamingResources> A "Service" is a collection of one or more "Connectors" that share a single "Container" (and therefore the web applications visible within that Container). Normally, that Container is an "Engine", but this is not required. Note: A "Service" is not itself a "Container", so you may not define subcomponents such as "Valves" or "Loggers" at this level. Define the Tomcat Stand-Alone Service <Service name="catalina"> A "Connector" represents an endpoint by which requests are received and responses are returned. Each Connector passes requests on to the associated "Container" (normally an Engine) for processing. By default, a non-ssl HTTP/1.1 Connector is established on port You can also enable an SSL HTTP/1.1 Connector on port 8443 by following the instructions below and uncommenting the second Connector entry. SSL support requires the following steps (see the SSL Config HOWTO in the Tomcat 5 documentation bundle for more detailed instructions): * If your JDK version 1.3 or prior, download and install JSSE or later, and put the JAR files into "$JAVA_HOME/jre/lib/ext". * Execute: %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows) $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix) with a password value of "changeit" for both the certificate and the keystore itself. By default, DNS lookups are enabled when a web application calls request.getremotehost(). This can have an adverse impact on performance, so you can disable it by setting the "enablelookups" attribute to "false". When DNS lookups are disabled, request.getremotehost() will return the String version of the IP address of the remote client. Define a non-ssl HTTP/1.1 Connector on port 8080 <Connector port="8080" maxhttpheadersize="8192" maxthreads="150" minsparethreads="25" maxsparethreads="75" enablelookups="false" redirectport="8443" acceptcount="100" connectiontimeout="20000" disableuploadtimeout="true" /> Note : To disable connection timeouts, set connectiontimeout value to 0 Note : To use gzip compression you could set the following properties : compression="on" compressionminsize="2048" nocompressionuseragents="gozilla, traviata" compressablemimetype="text/html,text/xml"
20 Define a SSL HTTP/1.1 Connector on port 8443 <Connector port="8443" maxhttpheadersize="8192" maxthreads="150" minsparethreads="25" maxsparethreads="75" enablelookups="false" disableuploadtimeout="true" acceptcount="100" scheme="https" secure="true" clientauth="false" sslprotocol="tls" /> Define an AJP 1.3 Connector on port 8009 <Connector port="8009" enablelookups="false" tomcatauthentication="false" redirectport="8443" protocol="ajp/1.3" /> Define a Proxied HTTP/1.1 Connector on port 8082 See proxy documentation for more information about using this. <Connector port="8082" maxthreads="150" minsparethreads="25" maxsparethreads="75" enablelookups="false" acceptcount="100" connectiontimeout="20000" proxyport="80" disableuploadtimeout="true" /> An Engine represents the entry point (within Catalina) that processes every request. The Engine implementation for Tomcat stand alone analyzes the HTTP headers included with the request, and passes them on to the appropriate Host (virtual host). You should set jvmroute to support load-balancing via AJP ie : <Engine name="standalone" defaulthost="localhost" jvmroute="jvm1"> Define the top level container in our container hierarchy <Engine name="catalina" defaulthost="localhost"> The request dumper valve dumps useful debugging information about the request headers and cookies that were received, and the response headers and cookies that were sent, for all requests received by this instance of Tomcat. If you care only about requests to a particular virtual host, or a particular application, nest this element inside the corresponding <Host> or <Context> entry instead. For a similar mechanism that is portable to all Servlet 2.4 containers, check out the "RequestDumperFilter" Filter in the example application (the source for this filter may be found in "$CATALINA_HOME/webapps/examples/WEB-INF/classes/filters"). Request dumping is disabled by default. Uncomment the following element to enable it. <Valve classname="org.apache.catalina.valves.requestdumpervalve"/> Because this Realm is here, an instance will be shared globally This Realm uses the UserDatabase configured in the global JNDI resources under the key "UserDatabase". Any edits that are performed against this UserDatabase are immediately available for use by the Realm. <Realm classname="org.apache.catalina.realm.userdatabaserealm" resourcename="userdatabase"/> Comment out the old realm but leave here for now in case we need to go back quickly <Realm classname="org.apache.catalina.realm.memoryrealm" /> Replace the above Realm with one of the following to get a Realm stored in a database and accessed via JDBC <Realm classname="org.apache.catalina.realm.jdbcrealm" drivername="org.gjt.mm.mysql.driver"
21 connectionurl="jdbc:mysql://localhost/authority" connectionname="test" connectionpassword="test" usertable="users" usernamecol="user_name" usercredcol="user_pass" userroletable="user_roles" rolenamecol="role_name" /> <Realm classname="org.apache.catalina.realm.jdbcrealm" drivername="oracle.jdbc.driver.oracledriver" connectionname="scott" connectionpassword="tiger" usertable="users" usernamecol="user_name" usercredcol="user_pass" userroletable="user_roles" rolenamecol="role_name" /> <Realm classname="org.apache.catalina.realm.jdbcrealm" drivername="sun.jdbc.odbc.jdbcodbcdriver" connectionurl="jdbc:odbc:catalina" usertable="users" usernamecol="user_name" usercredcol="user_pass" userroletable="user_roles" rolenamecol="role_name" /> Define the default virtual host Note: XML Schema validation will not work with Xerces 2.2. <Host name="localhost" appbase="webapps" unpackwars="true" autodeploy="true" xmlvalidation="false" xmlnamespaceaware="false"> Defines a cluster for this node, By defining this element, means that every manager will be changed. So when running a cluster, only make sure that you have webapps in there that need to be clustered and remove the other ones. A cluster has the following parameters: classname = the fully qualified name of the cluster class name = a descriptive name for your cluster, can be anything mcastaddr = the multicast address, has to be the same for all the nodes mcastport = the multicast port, has to be the same for all the nodes mcastbindaddr = bind the multicast socket to a specific address mcastttl = the multicast TTL if you want to limit your broadcast mcastsotimeout = the multicast readtimeout mcastfrequency = the number of milliseconds in between sending a "I'm alive" heartbeat mcastdroptime = the number a milliseconds before a node is considered "dead" if no heartbeat is received tcpthreadcount = the number of threads to handle incoming replication requests, optimal would be the same amount of threads as nodes tcplistenaddress = the listen address (bind address) for TCP cluster request on this host, in case of multiple ethernet cards. auto means that address becomes InetAddress.getLocalHost().getHostAddress() tcplistenport = the tcp listen port case the OS tcpselectortimeout = the timeout (ms) for the Selector.select() method in has a wakup bug in java.nio. Set to 0 for no timeout printtoscreen = true means that managers will also print to std.out expiresessionsonshutdown = true means that usedirtyflag = true means that we only replicate a session after
22 setattribute,removeattribute has been called. false means to replicate the session after each request. false means that replication would work for the following piece of code: (only for SimpleTcpReplicationManager) <% HashMap map = (HashMap)session.getAttribute("map"); map.put("key","value"); %> replicationmode = can be either 'pooled', 'synchronous' or 'asynchronous'. * Pooled means that the replication happens using several sockets in a synchronous way. Ie, the data gets replicated, then the request return. This is the same as the 'synchronous' setting except it uses a pool of sockets, hence it is multithreaded. This is the fastest and safest configuration. To use this, also increase the nr of tcp threads that you have dealing with replication. * Synchronous means that the thread that executes the request, is also the thread the replicates the data to the other nodes, and will not return until all nodes have received the information. * Asynchronous means that there is a specific 'sender' thread for each cluster node, so the request thread will queue the replication request into a "smart" queue, and then return to the client. The "smart" queue is a queue where when a session is added to the queue, and the same session already exists in the queue from a previous request, that session will be replaced in the queue instead of replicating two requests. This almost never happens, unless there is a large network delay. When configuring for clustering, you also add in a valve to catch all the requests coming in, at the end of the request, the session may or may not be replicated. A session is replicated if and only if all the conditions are met: 1. usedirtyflag is true or setattribute or removeattribute has been called AND 2. a session exists (has been created) 3. the request is not trapped by the "filter" attribute The filter attribute is to filter out requests that could not modify the session, hence we don't replicate the session after the end of this request. The filter is negative, ie, anything you put in the filter, you mean to filter out, ie, no replication will be done on requests that match one of the filters. The filter attribute is delimited by ;, so you can't escape out ; even if you wanted to. filter=".*\.gif;.*\.js;" means that we will not replicate the session after requests with the URI ending with.gif and.js are intercepted. The deployer element can be used to deploy apps cluster wide. Currently the deployment only deploys/undeploys to working members in the cluster so no WARs are copied upons startup of a broken node. The deployer watches a directory (watchdir) for WAR files when watchenabled="true" When a new war file is added the war gets deployed to the local instance, and then deployed to the other instances in the cluster. When a war file is deleted from the watchdir the war is undeployed locally and cluster wide <Cluster classname="org.apache.catalina.cluster.tcp.simpletcpcluster" managerclassname="org.apache.catalina.cluster.session.deltamanager" expiresessionsonshutdown="false" usedirtyflag="true" notifylistenersonreplication="true">
23 <Membership classname="org.apache.catalina.cluster.mcast.mcastservice" mcastaddr=" " mcastport="45564" mcastfrequency="500" mcastdroptime="3000"/> <Receiver classname="org.apache.catalina.cluster.tcp.replicationlistener" tcplistenaddress="auto" tcplistenport="4001" tcpselectortimeout="100" tcpthreadcount="6"/> <Sender classname="org.apache.catalina.cluster.tcp.replicationtransmitter" replicationmode="pooled" acktimeout="15000"/> <Valve classname="org.apache.catalina.cluster.tcp.replicationvalve" filter=".*\.gif;.*\.js;.*\.jpg;.*\.htm;.*\.html;.*\.txt;"/> <Deployer classname="org.apache.catalina.cluster.deploy.farmwardeployer" tempdir="/tmp/war-temp/" deploydir="/tmp/war-deploy/" watchdir="/tmp/war-listen/" watchenabled="false"/> </Cluster> Normally, users must authenticate themselves to each web app individually. Uncomment the following entry if you would like a user to be authenticated the first time they encounter a resource protected by a security constraint, and then have that user identity maintained across *all* web applications contained in this virtual host. <Valve classname="org.apache.catalina.authenticator.singlesignon" /> Access log processes all requests for this virtual host. By default, log files are created in the "logs" directory relative to $CATALINA_HOME. If you wish, you can specify a different directory with the "directory" attribute. Specify either a relative (to $CATALINA_HOME) or absolute path to the desired directory. <Valve classname="org.apache.catalina.valves.accesslogvalve" directory="logs" prefix="localhost_access_log." suffix=".txt" pattern="common" resolvehosts="false"/> Access log processes all requests for this virtual host. By default, log files are created in the "logs" directory relative to $CATALINA_HOME. If you wish, you can specify a different directory with the "directory" attribute. Specify either a relative (to $CATALINA_HOME) or absolute path to the desired directory. This access log implementation is optimized for maximum performance, but is hardcoded to support only the "common" and "combined" patterns. <Valve classname="org.apache.catalina.valves.fastcommonaccesslogvalve" directory="logs" prefix="localhost_access_log." suffix=".txt" pattern="common" resolvehosts="false"/> </Host> </Engine> </Service> </Server>
24 13. Your SM.INI file should look like the one below: # ServiceManager Initialization file # (c) Copyright 2008 Hewlett-Packard Development Company, L.P. # 3/25/10 7:03 AM #Default Autopass Directory on Unix Platform #autopass_dir:/opt/ov/hpovlic #Default Autopass Directory on Windows Platform #autopass_dir:c:/program Files/Common Files/Hewlett-Packard/HPOvLIC shared_memory: log:../logs/sm.log alertlog:../logs/sm.alert.log system:13080 sslconnector:0 sqldictionary:sqlserver [sqlserver] sqldb:sm7dev sqllogin:sm7admin/$m7adm1n plugin0:kmplugin.dll #SSL/SSO setup #Keystore keystorefile:server.keystore keystorepass:serverkeystore #Trusted Clients File and password ssl_trustedclientsjks:trustedclients.keystore ssl_trustedclientspwd:trustedclients #Known Certificate Authorities - The signing CA must be in here truststorefile:cacerts truststorepass:changeit
25 14. Edit the uriworkermap.properties in the \Apache Software Foundation\Tomcat 5.5\conf folder. Please note that this file will only be created after you installed ISAPI Filter. When installing ISAPI Filter, you have to change the default location to the location of your Tomcat. # uriworkermap.properties - IIS # # This file provides sample mappings for example wlb # worker defined in workermap.properties.minimal # The general syntax for this file is: # [URL]=[Worker name] /admin/*=wlb /manager/*=wlb /jsp-examples/*=wlb /servlets-examples/*=wlb /smdev/*=wlb *.jsp=wlb *.do=wlb # Optionally filter out all.jpeg files inside that context # For no mapping the url has to start with exclamation (!)!/servlets-examples/*.jpeg=wlb # # Mount jkstatus to /jkmanager # For production servers you will need to # secure the access to the /jkmanager url # /jkmanager=jkstatus 15. Your SM.CFG should look like the one below: # # HP Service Manager Server Configuration File # # Used by HP Service Manager service on Windows and smstart script on Unix # to start the Service Manager server processes. # ###################################################################################### # # (c) Copyright 2008 Hewlett-Packard Development Company, L.P. # All Rights Reserved # ###################################################################################### # # start a Service Manager listener # #sm # When unable to start the server as a service # uncomment the following line to produce an output # file which may contain some information from the # Java JVM. #cmd /c "sm" > C:\\process_stdout 2>&1 # # start background schedulers # sm -httpport: loadbalancer #you need to have a copy of the cacerts file in the windows client directory before #you can use the below port, otherwise use sm -httpport: httpsport: sslconnector:1 -ssl:1 #the ports below are for web client use only because we only generated SSL certificates for the #web app server sm -httpport: httpsport: sslconnector:1 -ssl:1 -ssl_reqclientauth:1 sm -httpport: httpsport: sslconnector:1 -ssl:1 -ssl_reqclientauth:2 -debugnode:1 sm -httpport: httpsport: sslconnector:1 -ssl:1 -ssl_reqclientauth:2 -trustedsignon:1 - debugnode:1
26 sm -que:ir sm system.start 16. Make sure you create an operator record that matches your windows account and password before you proceed to the next step. 17. In your web.xml, try using the following ports IN ORDER. This will help you in debugging process. Make sure that you can connect to the service manager successfully when using the ports. You should be able to connect successfully using the port and before you attempt The last port is the set up that uses trusted sign on You should still see the login screen when you use this port. The parameters for this port only signify that the web application server has a valid certificate when communicating with the server You should still see the login screen when you use this port. The parameters for this port only signify that the web application server s certificate is in the list of trusted certificates of the server You should now be presented with the main screen and NOT the login screen. 18. Check the sm.log file for error messages. Sometimes, you just have to regenerate again the Client Certificates in order to fix some errors. 19. Make sure that you ve also set the IIS and Jakarta Directory Security properly (integrated windows authentication)
27 Contents of certcreateca.bat SM SSL Certificates Creator (server component) This batch file facilitates the creation of the SSL certificates that are needed to setup SSL encryption for Service Manager 7.0x. Run this batch file only once to create the certificates for the Service Manager server Based on HPs file but CA creation separated out. G.A. off if "X%1X"=="XNEWX" goto ok goto dontrun :ok Openssl settings This batch file uses the openssl.conf file as input for the the openssl program. All _default values can be set according to your organisation. Only one openssl.conf is needed set OPENSSL=openssl Java Settings set the JAVA_HOME variable to the installation path of the JRE you want to use set JAVA_HOME="C:\Program Files\Java\jre1.5.0_12" set KEYTOOL=%JAVA_HOME%\bin\keytool Password settings These are the default password settings used by the openssl and keytool programs. All passwords can be changed, EXCEPT the CACERT_PASSWD, as this is the default password that the SUN cacert from the JRE uses! set set CACERT_PASSWD=changeit set SERVER_KEYSTORE_PASSWD=serverkeystore set CLIENT_KEYSTORE_PASSWD=clientkeystore set /q /q /q crs copy %JAVA_HOME%\lib\security\cacerts %JAVA_HOME%\lib\security\cacerts.orig copy %JAVA_HOME%\lib\security\cacerts certs\cacerts Private Key & Root Certificate generation REM create the private key for your Creating a Self-Signed Certificate (cakey.pem) %OPENSSL% genrsa -des3 -passout pass:%caroot_passwd% -out key/cakey.pem 2048
28 REM create the root CA Creating the root ca certificate (mycacert.pem) %OPENSSL% req -new -key key/cakey.pem -x509 -days out certs\mycacert.pem -config./openssl.conf -passin pass:%caroot_passwd% REM import the certificate into the System-wide Importing the certificate into the System-wide keystore (cacerts) %KEYTOOL% -import -keystore certs/cacerts -trustcacerts -alias servicemanager -file certs/mycacert.pem -storepass %CACERT_PASSWD% copy certs\cacerts %JAVA_HOME%\lib\security goto end :dontrun echo!!!!!!!!!!! Dont run this unless you want to overwrite your CA authority echo!!!!!!!!!! Use the following syntax if you really want to create new CA echo certceateca NEW pause :end
29 Contents of certcreatesrvcert.bat SM SSL Certificates Creator (server component) This batch file facilitates the creation of the SSL certificates that are needed to setup SSL encryption for Service Manager 7.0x. Run this batch file only once to create the certificates for the Service Manager server off Openssl settings This batch file uses the openssl.conf file as input for the the openssl program. All _default values can be set according to your organisation. Only one openssl.conf is needed set OPENSSL=openssl Java Settings set the JAVA_HOME variable to the installation path of the JRE you want to use set JAVA_HOME="C:\Program Files\Java\jre1.5.0_12" set KEYTOOL=%JAVA_HOME%\bin\keytool Password settings These are the default password settings used by the openssl and keytool programs. All passwords can be changed, EXCEPT the CACERT_PASSWD, as this is the default password that the SUN cacert from the JRE uses! set set CACERT_PASSWD=changeit set SERVER_KEYSTORE_PASSWD=serverkeystore set CLIENT_KEYSTORE_PASSWD=clientkeystore set TRUSTEDCLIENTS_KEYSTORE_PASSWD=trustedclients /q key /q certs /q crs key certs crs #copy %JAVA_HOME%\lib\security\cacerts %JAVA_HOME%\lib\security\cacerts.orig #copy %JAVA_HOME%\lib\security\cacerts certs\cacerts Server Key & Certficate generation REM generate private server key and Creating the Server keystore (server.keystore) %KEYTOOL% -genkey -alias smserver -keystore key/server.keystore -storepass %SERVER_KEYSTORE_PASSWD%
Configuring ActiveVOS Identity Service Using LDAP
Configuring ActiveVOS Identity Service Using LDAP Overview The ActiveVOS Identity Service can be set up to use LDAP based authentication and authorization. With this type of identity service, users and
More informationSetting up Single Sign-on in Service Manager
Setting up Single Sign-on in Service Manager SSL Setup and Single Sign-on in Service Manager using Windows or Third Party Authentication Introduction... 3 Overview of trusted sign-on... 3 Prerequisites...
More informationThe JBoss 4 Application Server Web Developer Reference
The JBoss 4 Application Server Web Developer Reference JBoss AS 4.0.5 Release 2 Copyright 2006 JBoss, Inc. Table of Contents 1. The Tomcat Service...1 2. The server.xml file...3 2.1. The Connector element...3
More informationHow To Integrate IIS6 and Apache Tomcat
How To Integrate IIS6 and Apache Tomcat By Glenn Barnas / InnoTech Consulting Group www.innotechcg.com This is a step by step guide to installing Apache Tomcat 6.x on systems running IIS 6.0. The process
More informationApache Tomcat ISAPI Redirector and Canto Cumulus WPP
Apache Tomcat ISAPI Redirector and Canto Cumulus WPP Chad Gray Carey Color Inc. http://www.careyweb.com/ 9/1/2007 ver 1.0.0 WHY? If you want to run JSP, HTML and.net applications all on one web site you
More informationTo install and configure SSL support on Tomcat 6, you need to follow these simple steps. For more information, read the rest of this HOW-TO.
pagina 1 van 6 Apache Tomcat 6.0 Apache Tomcat 6.0 SSL Configuration HOW-TO Table of Contents Quick Start Introduction to SSL SSL and Tomcat Certificates General Tips on Running SSL Configuration 1. Prepare
More informationTrademarks: Yellowfin and the Yellowfin Logo are registered trademarks of Yellowfin International.
Yellowfin Release 7 Clustering Guide Under international copyright laws, neither the documentation nor the software may be copied, photocopied, reproduced, translated or reduced to any electronic medium
More informationConfiguring multiple Tomcat instances with a single Apache Load Balancer
Configuring multiple Tomcat instances with a single Apache Load Balancer How to set up Tomcat and Apache for load balancing HP Software Service Management Introduction... 2 Prerequisites... 2 Configuring
More informationThe Server.xml File. Containers APPENDIX A. The Server Container
APPENDIX A The Server.xml File In this appendix, we discuss the configuration of Tomcat containers and connectors in the server.xml configuration. This file is located in the CATALINA_HOME/conf directory
More informationSupplement IV.E: Tutorial for Tomcat. For Introduction to Java Programming By Y. Daniel Liang
Supplement IV.E: Tutorial for Tomcat For Introduction to Java Programming By Y. Daniel Liang This supplement covers the following topics: Obtaining and Installing Tomcat Starting and Stopping Tomcat Choosing
More information[TFS 4.1 ADVANCED GUIDE]
2011 HANCOM, INC. Cloud Solution Team [TFS 4.1 ADVANCED GUIDE] To administrator for installation/upgrade/management Contents Section Subject page Installation Server hardware specification and server topology
More informationDISTRIBUTED CONTENT SSL CONFIGURATION AND TROUBLESHOOTING GUIDE
White Paper Abstract This white paper explains the configuration of Distributed Content (ACS, BOCS and DMS) in SSL mode and monitors the logs for content transfer operations. This guide describes the end-to-end
More informationService Manager 9.32: Generating SSL Profiles for an F5 HWLB
Knowledge Article Service Manager 9.32: Generating SSL Profiles for an F5 HWLB Describes how to create SSL Profiles for an F5 hardware load balancer to communicate with the Service Manager 9.32 server
More informationHP Service Manager. Mobile Applications. For the Supported Windows and UNIX operating systems Software Version: 1.0. Document Release Date: July 2011
HP Service Manager For the Supported Windows and UNIX operating systems Software Version: 1.0 Mobile Applications Document Release Date: July 2011 Software Release Date: July 2011 Legal Notices Warranty
More informationConfiguring the JBoss Application Server for Secure Sockets Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Web
Configuring the JBoss Application Server for Secure Sockets Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Web Applications Configuring SSL and Client-Certificate Authentication
More informationSSO Plugin. Authentication service for HP, Kinetic, Jasper, SAP and CA products. J System Solutions. Page 1 of 23. http://www.javasystemsolutions.
Page 1 of 23 SSO Plugin Authentication service for HP, Kinetic, Jasper, SAP and CA products J System Solutions Version 4.0 Page 2 of 23 Introduction... 4 Implementing SSO... 5 Licensing... 6 Copying the
More informationThis document uses the following conventions for items that may need to be modified:
Contents Overview... 3 Purpose of this Document... 3 Conventions Used in this Document... 3 Before You Begin... 3 Setting Up HTTPS... 5 Creating a Certificate... 5 Configuring Contract Management to Use
More informationCrawl Proxy Installation and Configuration Guide
Crawl Proxy Installation and Configuration Guide Google Enterprise EMEA Google Search Appliance is able to natively crawl secure content coming from multiple sources using for instance the following main
More informationSSO Plugin. Authentication service for HP, Kinetic, Jasper, SAP and CA products. J System Solutions. JSS SSO Plugin Authentication service
SSO Plugin Authentication service for HP, Kinetic, Jasper, SAP and CA products J System Solutions http://www.javasystemsolutions.com Version 3.6 Introduction... 4 Implementing SSO... 5 Copying the SSO
More informationIUCLID 5 Guidance and Support
IUCLID 5 Guidance and Support Web Service Installation Guide July 2012 v 2.4 July 2012 1/11 Table of Contents 1. Introduction 3 1.1. Important notes 3 1.2. Prerequisites 3 1.3. Installation files 4 2.
More informationProject (Group) Management Installation Guide (Linux) Version 1.3. Copyright 2007 MGH
Project (Group) Management Installation Guide (Linux) Version 1.3 Copyright 2007 MGH Table of Contents About this Guide iii Document Version History iii Prerequisites 1 Required Software 1 Install 4 Installing
More informationEMC Smarts Service Assurance Manager Dashboard Version 8.0. Configuration Guide P/N 300-007-748 REV A01
EMC Smarts Service Assurance Manager Dashboard Version 8.0 Configuration Guide P/N 300-007-748 REV A01 EMC Corporation Corporate Headquarters: Hopkinton, MA 01748-9103 1-508-435-1000 www.emc.com Copyright
More informationRHEV 2.2: REST API INSTALLATION
RHEV 2.2: REST API INSTALLATION BY JAMES RANKIN REVISED 02/14/11 RHEV 2.2: REST API INSTALLATION 1 TABLE OF CONTENTS OVERVIEW PAGE 3 JAVA AND ENVIRONMENT VARIABLES PAGE 3 JBOSS INSTALLATION PAGE 5 REST
More information24x7 Scheduler Multi-platform Edition 5.2
24x7 Scheduler Multi-platform Edition 5.2 Installing and Using 24x7 Web-Based Management Console with Apache Tomcat web server Copyright SoftTree Technologies, Inc. 2004-2014 All rights reserved Table
More informationJasperServer Localization Guide Version 3.5
Version 3.5 2008 JasperSoft Corporation. All rights reserved. Printed in the U.S.A. JasperSoft, the JasperSoft logo, JasperAnalysis, JasperServer, JasperETL, JasperReports, JasperStudio, ireport, and Jasper4
More informationUPGRADING TO XI 3.1 SP6 AND SINGLE SIGN ON. Chad Watson Sr. Business Intelligence Developer
UPGRADING TO XI 3.1 SP6 AND SINGLE SIGN ON Chad Watson Sr. Business Intelligence Developer UPGRADING TO XI 3.1 SP6 What Business Objects Administrators should consider before installing a Service Pack.
More informationMID-TIER DEPLOYMENT KB
MID-TIER DEPLOYMENT KB Author: BMC Software, Inc. Date: 23 Dec 2011 PAGE 1 OF 16 23/12/2011 Table of Contents 1. Overview 3 2. Sizing guidelines 3 3. Virtual Environment Notes 4 4. Physical Environment
More informationSSL CONFIGURATION GUIDE
HYPERION RELEASE 9.3.1 SSL CONFIGURATION GUIDE CONTENTS IN BRIEF About This Document... 2 Assumptions... 2 Information Sources... 2 Identifying SSL Points for Hyperion Products... 4 Common Activities...
More informationSIEMENS. Teamcenter 11.2. Web Application Deployment PLM00015 11.2
SIEMENS Teamcenter 11.2 Web Application Deployment PLM00015 11.2 Contents Getting started deploying web applications.................................. 1-1 Deployment considerations...............................................
More informationEnterprise Knowledge Platform 5.6
Enterprise Knowledge Platform 5.6 EKP Multiple Instance Configurations for Apache2/Tomcat4 Document Information Document ID: EN144 Document title: EKP Multiple Instance Configurations for Apache/Tomcat
More informationConfiguring Nex-Gen Web Load Balancer
Configuring Nex-Gen Web Load Balancer Table of Contents Load Balancing Scenarios & Concepts Creating Load Balancer Node using Administration Service Creating Load Balancer Node using NodeCreator Connecting
More informationContents About the Contract Management Post Installation Administrator's Guide... 5 Viewing and Modifying Contract Management Settings...
Post Installation Guide for Primavera Contract Management 14.1 July 2014 Contents About the Contract Management Post Installation Administrator's Guide... 5 Viewing and Modifying Contract Management Settings...
More informationCHAPTER 7 SSL CONFIGURATION AND TESTING
CHAPTER 7 SSL CONFIGURATION AND TESTING 7.1 Configuration and Testing of SSL Nowadays, it s very big challenge to handle the enterprise applications as they are much complex and it is a very sensitive
More informationConfiguring Secure Socket Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Systems That Use Oracle WebLogic 10.
Configuring Secure Socket Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Systems That Use Oracle WebLogic 10.3 Table of Contents Overview... 1 Configuring One-Way Secure Socket
More informationCA Nimsoft Unified Management Portal
CA Nimsoft Unified Management Portal HTTPS Implementation Guide 7.6 Document Revision History Document Version Date Changes 1.0 June 2014 Initial version for UMP 7.6. CA Nimsoft Monitor Copyright Notice
More informationApache and Tomcat Clustering Configuration Table of Contents
Apache and Tomcat Clustering Configuration Table of Contents INTRODUCTION REVISION HISTORY DOWNLOAD AND INSTALL JDK DOWNLOAD AND INSTALL APACHE WEB SERVER (HTTPD) DOWNLOAD AND INSTALL TOMCAT SERVER APACHE
More informationBlackBerry Enterprise Service 10. Version: 10.2. Configuration Guide
BlackBerry Enterprise Service 10 Version: 10.2 Configuration Guide Published: 2015-02-27 SWD-20150227164548686 Contents 1 Introduction...7 About this guide...8 What is BlackBerry Enterprise Service 10?...9
More informationConfiguring IIS 6 to Load Balance a JBoss 4.2 Adobe LiveCycle Enterprise Suite 2 (ES2) Cluster
Adobe LiveCycle ES2 Technical Guide John C. Cummins, Technical Architect, Adobe Professional Services Public Sector Configuring IIS 6 to Load Balance a JBoss 4.2 Adobe LiveCycle Enterprise Suite 2 (ES2)
More informationCentraSite SSO with Trusted Reverse Proxy
CentraSite SSO with Trusted Reverse Proxy Introduction Single-sign-on (SSO) via reverse proxy is the preferred SSO method for CentraSite. Due to its flexibility the reverse proxy approach allows to apply
More informationLiquidOffice v4 Architecture/Technologies
2005-06-14 OVERVIEW... 3 Components... 3 1. STORAGE... 4 1.1. Static Elements... 4 1.2. Dynamic Elements... 6 2. COMMUNICATION... 9 2.1. Client-Tier Web Server Tier Communication... 10 2.2. Web Server
More informationtc Server Administration Guide
tc Server Administration Guide Juliet Shackell 2.0 Copyright 2010 VMware Inc. All rights reserved. Table of Contents 1. Copyright Notice... 1 2. Overview of tc Server Administration... 3 3. Configuring
More informationConfiguring Secure Socket Layer (SSL) for use with BPM 7.5.x
Configuring Secure Socket Layer (SSL) for use with BPM 7.5.x Configuring Secure Socket Layer (SSL) communication for a standalone environment... 2 Import the Process Server WAS root SSL certificate into
More informationAhsay Offsite Backup Server v5.5. High Availability Option Setup Guide. Ahsay TM Online Backup - Development Department
Ahsay Offsite Backup Server v5.5 High Availability Option Setup Guide Ahsay TM Online Backup - Development Department September 1, 2009 Copyright Notice Ahsay Systems Corporation Limited 2007. All rights
More informationUser Guide Generate Certificate Signing Request (CSR) & Installation of SSL Certificate
User Guide Generate Certificate Signing Request (CSR) & Installation of SSL Certificate APACHE MODSSL Generate CSR 1. Type this command to generate key: $ openssl genrsa -out www.virtualhost.com.key 2048
More informationFunambol Exchange Connector v6.5 Installation Guide
Funambol Exchange Connector v6.5 Installation Guide Last modified: May 7, 2008 Table of Contents 1.Introduction...3 1.1. Prerequisites...3 1.2. Related documents...3 2.Funambol Exchange Synchronization
More informationWeb Application Architecture (based J2EE 1.4 Tutorial)
Web Application Architecture (based J2EE 1.4 Tutorial) 1 Disclaimer & Acknowledgments Even though Sang Shin is a full-time employee of Sun Microsystems, the contents here are created as his own personal
More informationUniversal Content Management Version 10gR3. Security Providers Component Administration Guide
Universal Content Management Version 10gR3 Security Providers Component Administration Guide Copyright 2008 Oracle. All rights reserved. The Programs (which include both the software and documentation)
More informationPre-Installation Instructions
Agile Product Lifecycle Management PLM Mobile Release Notes Release 2.0 E49504-02 October 2014 These Release Notes provide technical information about Oracle Product Lifecycle Management (PLM) Mobile 2.0.
More informationCHAPTER 1 - JAVA EE OVERVIEW FOR ADMINISTRATORS
CHAPTER 1 - JAVA EE OVERVIEW FOR ADMINISTRATORS Java EE Components Java EE Vendor Specifications Containers Java EE Blueprint Services JDBC Data Sources Java Naming and Directory Interface Java Message
More informationWeb Server Configuration Guide
Web Server Configuration Guide FOR WINDOWS & UNIX & LINUX DOCUMENT ID: ADC50000-01-0680-01 LAST REVISED: February 11, 2014 Copyright 2000-2014 by Appeon Corporation. All rights reserved. This publication
More informationSetting Up B2B Data Exchange for High Availability in an Active/Active Configuration
Setting Up B2B Data Exchange for High Availability in an Active/Active Configuration 2010 Informatica Abstract This document explains how to install multiple copies of B2B Data Exchange on a single computer.
More informationEQUELLA. Clustering Configuration Guide. Version 6.0
EQUELLA Clustering Configuration Guide Version 6.0 Document History Document No. Reviewed Finalised Published 1 17/10/2012 17/10/2012 17/10/2012 October 2012 edition. Information in this document may change
More informationDefine BA Server Advanced Security
Define BA Server Advanced Security This document supports Pentaho Business Analytics Suite 5.0 GA and Pentaho Data Integration 5.0 GA, documentation revision February 3, 2014, copyright 2014 Pentaho Corporation.
More informationConfiguration Worksheets for Oracle WebCenter Ensemble 10.3
Configuration Worksheets for Oracle WebCenter Ensemble 10.3 This document contains worksheets for installing and configuring Oracle WebCenter Ensemble 10.3. Print this document and use it to gather the
More informationKINETIC SR (Survey and Request)
KINETIC SR (Survey and Request) Installation and Configuration Guide Version 5.0 Revised October 14, 2010 Kinetic SR Installation and Configuration Guide 2007-2010, Kinetic Data, Inc. Kinetic Data, Inc,
More informationRunning Multiple Shibboleth IdP Instances on a Single Host
CESNET Technical Report 6/2013 Running Multiple Shibboleth IdP Instances on a Single Host IVAN NOVAKOV Received 10.12.2013 Abstract The article describes a way how multiple Shibboleth IdP instances may
More informationTcat Server User s Guide. Version 6 R2 December 2009
Tcat Server User s Guide Version 6 R2 December 2009 Confidential The ideas contained in this publication are subject to use and disclosure restrictions as set forth in the license agreement. Copyright
More informationSecuring Adobe connect Server and CQ Server
Securing Adobe connect Server and CQ Server To Enable SSL on Connect Server and CQ server (Index) Configure custom.ini File Uncomment the SSL TAGs in Server.xml file. Configure the Four components of connect
More informationSpagoBI Tomcat Clustering Using mod_jk and httpd on Centos - In-Memory Session Replication.
SpagoBI Tomcat Clustering Using mod_jk and httpd on Centos - In-Memory Session Replication. In an earlier post we did a basic session based replication, but the session was not redundant. Now we will be
More informationChapter 1: How to Configure Certificate-Based Authentication
Chapter 1: How to Configure Certificate-Based Authentication Introduction Product: CA ControlMinder Release: All OS: All This scenario describes how a system or a CA ControlMinder administrator configures
More informationExchange Reporter Plus SSL Configuration Guide
Exchange Reporter Plus SSL Configuration Guide Table of contents Necessity of a SSL guide 3 Exchange Reporter Plus Overview 3 Why is SSL certification needed? 3 Steps for enabling SSL 4 Certificate Request
More informationSSO Plugin. J System Solutions. Troubleshooting SSO Plugin - BMC AR System & Mid Tier. http://www.javasystemsolutions.com
SSO Plugin Troubleshooting SSO Plugin - BMC AR System & Mid Tier J System JSS SSO Plugin Troubleshooting Introduction... 3 Common investigation methods... 4 Log files... 4 Fiddler... 6 Download Fiddler...
More informationFileMaker Server 12. FileMaker Server Help
FileMaker Server 12 FileMaker Server Help 2010-2012 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker is a trademark of FileMaker, Inc.
More informationPowerChute TM Network Shutdown Security Features & Deployment
PowerChute TM Network Shutdown Security Features & Deployment By David Grehan, Sarah Jane Hannon ABSTRACT PowerChute TM Network Shutdown (PowerChute) software works in conjunction with the UPS Network
More informationConfiguring Single Sign-On for Documentum Applications with RSA Access Manager Product Suite. Abstract
Configuring Single Sign-On for Documentum Applications with RSA Access Manager Product Suite Abstract This white paper outlines the deployment and configuration of a Single Sign-On solution for EMC Documentum
More informationC-Series How to configure SSL
C-Series How to configure SSL Points of Interest The installer for C-Series products will set up HTTP and HTTPS access by default. If you select the option to Turn on HTTPS only as part of the installation,
More informationCopyright 2013 EMC Corporation. All Rights Reserved.
White Paper INSTALLING AND CONFIGURING AN EMC DOCUMENTUM CONTENT TRANSFORMATION SERVICES 7.0 CLUSTER TO WORK WITH A DOCUMENTUM CONTENT SERVER 7.0 CLUSTER IN SECURE SOCKETS LAYER Abstract This white paper
More informationwww.novell.com/documentation User Guide Self Service Password Reset 2.0.0 April 2012
www.novell.com/documentation User Guide Self Service Password Reset 2.0.0 April 2012 Legal Notices Novell, Inc. makes no representations or warranties with respect to the contents or use of this documentation,
More informationEnhanced Connector Applications SupportPac VP01 for IBM WebSphere Business Events 3.0.0
Enhanced Connector Applications SupportPac VP01 for IBM WebSphere Business Events 3.0.0 Third edition (May 2012). Copyright International Business Machines Corporation 2012. US Government Users Restricted
More informationOracle WebLogic Server 11g Administration
Oracle WebLogic Server 11g Administration This course is designed to provide instruction and hands-on practice in installing and configuring Oracle WebLogic Server 11g. These tasks include starting and
More informationConfiguring IBM WebSphere Application Server 7 for Secure Sockets Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Web
Configuring IBM WebSphere Application Server 7 for Secure Sockets Layer and Client-Certificate Authentication on SAS 9.3 Enterprise BI Server Web Applications Configuring IBM WebSphere 7 for SSL and Client-Certificate
More informationApache Tomcat. Load-balancing and Clustering. Mark Thomas, 20 November 2014. 2014 Pivotal Software, Inc. All rights reserved.
2 Apache Tomcat Load-balancing and Clustering Mark Thomas, 20 November 2014 Introduction Apache Tomcat committer since December 2003 markt@apache.org Tomcat 8 release manager Member of the Servlet, WebSocket
More informationWebNow. Installation and Setup Guide. ImageNow Version: 6.7.x Environment: Windows Web Application Server: Tomcat
WebNow Installation and Setup Guide ImageNow Version: 6.7.x Environment: Windows Web Application Server: Tomcat Written by: Product Documentation, R&D Date: November 2013 2013 Perceptive Software. All
More informationC O N F I G U R I N G O P E N L D A P F O R S S L / T L S C O M M U N I C A T I O N
H Y P E R I O N S H A R E D S E R V I C E S R E L E A S E 9. 3. 1. 1 C O N F I G U R I N G O P E N L D A P F O R S S L / T L S C O M M U N I C A T I O N CONTENTS IN BRIEF About this Document... 2 About
More informationTransNav Management System Documentation. Management Server Guide
Force10 Networks Inc. TransNav Management System Documentation Management Server Guide Release TN4.2.2 Publication Date: April 2009 Document Number: 800-0006-TN422 Rev. A Copyright 2009 Force10 Networks,
More informationContents. Pentaho Corporation. Version 5.1. Copyright Page. Introduction. Implement Advanced Security. Switch to MS Active Directory.
Contents Pentaho Corporation Version 5.1 Copyright Page Introduction Implement Advanced Security Switch to MS Active Directory Switch to LDAP Manual MSAD Configuration Manual LDAP Configuration Use Nested
More informationEhcache Web Cache User Guide. Version 2.9
Ehcache Web Cache User Guide Version 2.9 October 2014 This document applies to Ehcache Version 2.9 and to all subsequent releases. Specifications contained herein are subject to change and these changes
More informationStruts 2 - Practical examples
STRUTS 2 - Practical examples Krystyna Bury Katarzyna Sadowska Joanna Pyc Politechnika Wrocławska Wydział Informatyki i Zarządzania Informatyka, III rok Spis treści What will we need? 1 What will we need?
More informationCA Performance Center
CA Performance Center Single Sign-On User Guide 2.4 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation ) is
More informationCreating and Managing Certificates for My webmethods Server. Version 8.2 and Later
Creating and Managing Certificates for My webmethods Server Version 8.2 and Later November 2011 Contents Introduction...4 Scope... 4 Assumptions... 4 Terminology... 4 File Formats... 5 Truststore Formats...
More informationFileMaker Server 11. FileMaker Server Help
FileMaker Server 11 FileMaker Server Help 2010 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker is a trademark of FileMaker, Inc. registered
More informationConfiguring BEA WebLogic Server for Web Authentication with SAS 9.2 Web Applications
Configuration Guide Configuring BEA WebLogic Server for Web Authentication with SAS 9.2 Web Applications This document describes how to configure Web authentication with BEA WebLogic for the SAS Web applications.
More informationTable of Contents. Requirements and Options 1. Checklist for Server Installation 5. Checklist for Importing from CyberAudit 2.0 13
Cy be r Audi t We b Table of Contents C H A P T E R 1 Requirements and Options 1 System and Hardware Requirements...1 Computer... 1 Operating System... 1 Browser... 2 CyberLock Hardware... 2 Installation
More informationJMETER - MONITOR TEST PLAN
http://www.tutorialspoint.com JMETER - MONITOR TEST PLAN Copyright tutorialspoint.com In this chapter, we will discuss how to create a Test Plan using JMeter to monitor webservers. The uses of monitor
More informationEnabling SSO between Cognos 8 and WebSphere Portal
Guideline Enabling SSO between Cognos 8 and WebSphere Portal Product(s): Cognos 8 Area of Interest: Security Enabling SSO between Cognos 8 and WebSphere Portal 2 Copyright Your use of this document is
More information[1]Oracle Communications Billing and Revenue Management Web Services Manager Release 7.5 E16724-11
[1]Oracle Communications Billing and Revenue Management Web Services Manager Release 7.5 E16724-11 December 2015 Oracle Communications Billing and Revenue Management Web Services Manager, Release 7.5 E16724-11
More informationFTP, IIS, and Firewall Reference and Troubleshooting
FTP, IIS, and Firewall Reference and Troubleshooting Although Cisco VXC Manager automatically installs and configures everything you need for use with respect to FTP, IIS, and the Windows Firewall, the
More informationHP Service Manager 9.31 Mobile Applications
HP Service Manager 9.31 Mobile Applications For the Supported Windows and UNIX operating systems Software Version: 1.0 User Guide Document Release Date: October 2012 Software Release Date: October 2012
More informationSolarWinds Technical Reference
SolarWinds Technical Reference Using SSL Certificates in Web Help Desk Introduction... 1 How WHD Uses SSL... 1 Setting WHD to use HTTPS... 1 Enabling HTTPS and Initializing the Java Keystore... 1 Keys
More informationStep- by- Step guide to extend Credential Sync between IBM WebSphere Portal 8.5 credential vault and Active Directory 2012 using Security Directory
Step- by- Step guide to extend Credential Sync between IBM WebSphere Portal 8.5 credential vault and Active Directory 2012 using Security Directory Integrator (ex TDI) on Red- Hat (part 3) Summary STEP-
More informationMastering Tomcat Development
hep/ Mastering Tomcat Development Ian McFarland Peter Harrison '. \ Wiley Publishing, Inc. ' Part I Chapter 1 Chapter 2 Acknowledgments About the Author Introduction Tomcat Configuration and Management
More informationSetting Up CAS with Ofbiz 5
1 of 11 20/01/2009 9:56 AM Setting Up CAS with Ofbiz 5 This wiki explains how to setup and test CAS-Ofbiz5 integration and testing on a Centos 5.2 box called "elachi". In this configuration Ofbiz and the
More informationHow to Integrate IIS with JBoss / Tomcat Under Windows XP and Linux
How to Integrate IIS with JBoss / Tomcat Under Windows XP and Linux Yogesh Chaudhari IT SHASTRA (INDIA) PVT. LTD. 106, Bldg 2, Sector-1, Millennium Business Park, Mahape, Navi Mumbai 400 701. INDIA Phone:
More informationBitrix Site Manager ASP.NET. Installation Guide
Bitrix Site Manager ASP.NET Installation Guide Contents Introduction... 4 Chapter 1. Checking for IIS Installation... 5 Chapter 2. Using An Archive File to Install Bitrix Site Manager ASP.NET... 7 Preliminary
More informationWhite paper version: 1.2 Date: 29th April 2011 AUTHORS: Vijeth R. Rajoli Krishna Chalamasandra
White paper version: 1.2 Date: 29th April 2011 AUTHORS: Vijeth R. Rajoli Krishna Chalamasandra A complete guide for Installation, configuration and integration of Open Access Manager 9.0 with Cisco Unified
More informationVersion 9. Generating SSL Certificates for Progeny Web
Version 9 Generating SSL Certificates for Progeny Web Generating SSL Certificates for Progeny Web Copyright Limit of Liability Trademarks Customer Support 2015. Progeny Genetics, LLC, All rights reserved.
More informationEnabling Single-Sign-On on WebSphere Portal in IBM Cognos ReportNet
Guideline Enabling Single-Sign-On on WebSphere Portal in IBM Cognos ReportNet Product(s): IBM Cognos ReportNet Area of Interest: Security 2 Copyright Copyright 2008 Cognos ULC (formerly Cognos Incorporated).
More informationSecureAware on IIS8 on Windows Server 2008/- 12 R2-64bit
SecureAware on IIS8 on Windows Server 2008/- 12 R2-64bit Note: SecureAware version 3.7 and above contains all files and setup configuration needed to use Microsoft IIS as a front end web server. Installing
More information