SSO Plugin. Integration for BMC MyIT and SmartIT. J System Solutions. http://www.javasystemsolutions.com Version 4.0



Similar documents
SSO Plugin. Authentication service for HP, Kinetic, Jasper, SAP and CA products. J System Solutions. Page 1 of 23.

SSO Plugin. J System Solutions. Upgrading SSO Plugin 3x to 4x - BMC AR System & Mid Tier.

SSO Plugin. Integration for Jasper Server. J System Solutions. Version 3.6

SSO Plugin. Integrating Business Objects with BMC ITSM and HP Service Manager. J System Solutions. Version 4.

SSO Plugin. HP Service Request Catalog. J System Solutions. Version 3.6

SSO Plugin. Authentication service for HP, Kinetic, Jasper, SAP and CA products. J System Solutions. JSS SSO Plugin Authentication service

SSO Plugin. Installation for BMC AR System. J System Solutions. Version 4.0

SSO Plugin. Case study: Integrating with Ping Federate. J System Solutions. Version 4.0

SSO Plugin. Installation for BMC AR System and WUT. J System Solutions. Version 3.4

Customizing the SSOSessionTimeout.jsp page for Kofax Front Office Server 3.5.2

SSO Plugin. J System Solutions. Troubleshooting SSO Plugin - BMC AR System & Mid Tier.

Migrating helpdesk to a new server

BusinessObjects Enterprise XI Release 2

TypingMaster Intra. LDAP / Active Directory Installation. Technical White Paper (2009-9)

Acrolinx IQ. Acrolinx IQ Plug-in for Adobe CQ Rich Text Editor Installation Guide Version: 2.9

TM Online Storage: StorageSync

1. CONFIGURING REMOTE ACCESS TO SQL SERVER EXPRESS

McAfee One Time Password

EMC Documentum Connector for Microsoft SharePoint

CA Business Intelligence

Restoring Sage Data Sage 200

How to add your Weebly website to a TotalCloud hosted Server

Getting Started with the Ed-Fi ODS and Ed-Fi ODS API

TECHNICAL NOTE. The following information is provided as a service to our users, customers, and distributors.

Installation Guide. Research Computing Team V1.9 RESTRICTED

Workshop for WebLogic introduces new tools in support of Java EE 5.0 standards. The support for Java EE5 includes the following technologies:

PORTAL ADMINISTRATION

EMC Documentum Content Services for SAP Repository Manager

Crawl Proxy Installation and Configuration Guide

Important Release Information and Technical and Deployment Support Notes


SourceAnywhere Service Configurator can be launched from Start -> All Programs -> Dynamsoft SourceAnywhere Server.

Microsoft SQLServer Restore / Redirected Restore Procedure

Upgrading from MSDE to SQL Server 2005 Express Edition with Advanced Services SP2

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

SSO Plugin. Release notes. J System Solutions. Version 3.6

To install Multifront you need to have familiarity with Internet Information Services (IIS), Microsoft.NET Framework and SQL Server 2008.

Eylean server deployment guide

AVG Business SSO Connecting to Active Directory

R i o L i n x s u p p o r r i o l i n x. c o m 1 / 3 0 /

User Management Tool 1.5

Installing Oracle 12c Enterprise on Windows 7 64-Bit

IIS, FTP Server and Windows

Sophos Enterprise Console server to server migration guide. Product version: 5.1 Document date: June 2012

Backing Up CNG SAFE Version 6.0

Cloudfinder for Office 365 User Guide. November 2013

Upgrading Your Web Server from ClientBase Browser Version 2.0 or Above to Version 2.1.1

MICROSTRATEGY 9.3 Supplement Files Setup Transaction Services for Dashboard and App Developers

Virtual Appliance Setup Guide

Luminis Platform Banner Document Management Suite Portal Guide. Release November 2011

WESTERNACHER OUTLOOK -MANAGER OPERATING MANUAL

Sophos Enterprise Console server to server migration guide. Product version: 5.2

Upgrade of Business Systems Data Warehouse Reporting

File Share Navigator Online 1

DEPLOYING WEBTOP 6.8 ON JBOSS 6.X APPLICATION SERVER

Livezilla How to Install on Shared Hosting By: Jon Manning

Migrating MSDE to Microsoft SQL 2008 R2 Express

Technical Bulletin. SQL Express Backup Utility

Lenovo Online Data Backup User Guide Version

Specops Command. Installation Guide

DocAve Upgrade Guide. From Version 4.1 to 4.5

1 How to install CQ5 with an Application Server

Technical White Paper - JBoss Security

Perceptive Intelligent Capture Solution Configration Manager

DEPLOYING EMC DOCUMENTUM BUSINESS ACTIVITY MONITOR SERVER ON IBM WEBSPHERE APPLICATION SERVER CLUSTER

Configuring Single Sign-On for Documentum Applications with RSA Access Manager Product Suite. Abstract

Desktop Surveillance Help

Upgrade Guide BES12. Version 12.1

How to Configure Windows 8.1 to run ereports on IE11

USER GUIDE Deploying Your Application to WinHost

How To Install Vembu Onlinebackup On Windows (Windows) (Windows 7) (For Windows) (Powerbook) (Winstone) (Vembu) (Program) (Procedure) (

NSi Mobile Installation Guide. Version 6.2

BackupAgent Management Console User Manual

SecurEnvoy IIS Web Agent. Version 7.2

Print Manager Plus 2010 How to Migrate your Database to a New SQL or Print Server

QUANTIFY INSTALLATION GUIDE

NetIQ. How to guides: AppManager v7.04 Initial Setup for a trial. Haf Saba Attachmate NetIQ. Prepared by. Haf Saba. Senior Technical Consultant

Release Notes Date: September 2013

ShadowControl ShadowStream

WhatsUp Gold v16.2 MSP Edition Deployment Guide This guide provides information about installing and configuring WhatsUp Gold MSP Edition to central

Version USER GUIDE

WhatsUp Gold v16.1 Installation and Configuration Guide

Configuring the LCDS Load Test Tool

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

Installation and Configuration Guide

Online Backup Management Console 3.8 User Manual

RemoteLab 2.0 Admin Guide

Configuring user provisioning for Amazon Web Services (Amazon Specific)

Tool-Assisted Knowledge to HL7 v3 Message Translation (TAMMP) Installation Guide December 23, 2009

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

Predictive Analytics Client

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

Install SQL Server 2014 Express Edition

Getting Started With SAM Director SAM Director User Guide

USERS MANUAL FOR OWL A DOCUMENT REPOSITORY SYSTEM

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

ZeroTurnaround License Server User Manual 1.4.0

Deploying Intellicus Portal on IBM WebSphere

Transcription:

SSO Plugin Integration for BMC MyIT and SmartIT J System Solutions Version 4.0

JSS SSO Plugin Integration with BMC MyIT Introduction... 3 Deployment approaches... 3 SSO Plugin integration... 4 Configuring SSO Plugin... 5 Patch the MyIT web.xml... 6 Installing SSO Plugin for BMC MyIT 2.2... 7 Installing SSO Plugin for BMC MyIT 2.0 & 2.1... 9

Page 3 of 12 Introduction This document covers installation and configuration of SSO Plugin for BMC MyIT 2+. Separate documents are available for other BMC components (ie AR System, Dashboards). We do not support versions of MyIT prior to version 2.1 because BMC have vastly improved the product since the original release and this has simplified the SSO integration. JSS has worked closely with BMC MyIT releases, in particular, around the MyIT SSO interface. We therefore recommend you use version 2.2 of MyIT, or a suitably patched version of 2.1 (please contact JSS support for the most up to date advice). As of MyIT version 2.1, the SmartIT product is encapsulated within MyIT so by following this document, SSO will be enabled for both MyIT and SmartIT. The JSS support website contains all the SSO Plugin documentation and videos covering installation and configuration. Deployment approaches This installation method in this document assumes an existing SSO Plugin enabled BMC Mid Tier is available, and re-uses its SSO integration. If the users of MyIT do not have access to Mid Tier (ie it is behind a firewall for external users) then you will need to integrate MyIT directly with the SSO implementation and these instructions can be found in the 'SSO Plugin Authentication Service' download. If in any doubt, discuss your implementation options with JSS support.

Page 4 of 12 SSO Plugin integration SSO Plugin runs on the Mid Tier providing SSO for the existing BMC applications, and also extends SSO to MyIT through the JSS Identity Federation Service. This allows third party products, BMC or non-bmc, to be SSO enabled with the Mid Tier (and hence, AR System User form) as a single repository of data. The flow of data is as follows: 1. When a request hits the SSO Plugin URL (http://myit.ssoplugin.local:9000/ux/myitapp/) on MyIT and no session exists, it is redirected to the Mid Tier running SSO Plugin. 2. The user passes through the configured SSO implementation and when complete, the request is sent back to MyIT with the AR System User form detail (such as their groups). 3. The SSO Plugin passes the username into MyIT which progresses through the existing MyIT login process.

Page 5 of 12 Configuring SSO Plugin You must first set up SSO Plugin to enable the Identity Federation Service, typically running on BMC Mid Tier: 1. Login to the Mid Tier SSO Plugin configuration page, ie. http://yourmidtier/arsys/jsssso/index.jsp. 2. Click Configuration. 3. Tick 'Enable Identity Federation Service'. 4. Enter a unique key or press the Random button to create one. Take a note of the key for the next section. 5. Click 'Set configuration' and ensure the SSO Plugin still functions using the 'Test SSO' link.

Page 6 of 12 Patch the MyIT web.xml The MyIT ux web.xml file (default location is C:\Program Files\BMC Software\Smart_IT_MyIT\Smart_IT_MyIT\ux\WEB-INF) requires patching. We provide a tool on the JSS support website to do this for you and recommend you use it, or you can do this manually. 1. Browse to the following page /jss/service 2. Select BMC MyIT from the Product menu 3. Enter your full URL of the Mid Tier default web path as it is configured in the AR System Administration Console. Example http://midtier.yournetwork.com/arsys 4. Enter the Federation Key copied in the previous task, to the Federation Key box 5. Click the Choose File button and browse to the MyIT ux web.xml on your installation. Note that your existing web.xml file will not be modified. 6. Click Get patched file and save the new patched-web.xml to the same directory for use in the next section.

Page 7 of 12 Installing SSO Plugin for BMC MyIT 2.2 To enable SSO Plugin for BMC MyIT, the following steps must be followed: 1. Stop the instance of Tomcat running MyIT. The display name is Smart IT/MyIT Application 2. Backup the original web.xml file and rename the patched-web.xml that was configured via the JSS website and saved in the previous section to web.xml. The default directory is C:\Program Files\BMC Software\Smart_IT_MyIT\Smart_IT_MyIT\ux\WEB-INF 3. Copy the WEB-INF directory and contents from the SSO Plugin download MyIT folder and paste into the MyIT installation ux directory. Example screenshot: 4. Locate the index.html file under the ux web application directory. 5. Rename the index.html file to index.jsp. 6. Open the index.jsp file in your favourite text editor and add the following to the top of the file: <% response.setheader("cache-control", "no-cache"); %> 7. A setting in the MyIT database switches on SSO. Locate the TENANT table and set SAML_AUTHENTICATION=1 where PK=1. Example SQL: update [SmartIT]. [SmartIT_System].TENANT set SAML_AUTHENTICATION = 1 where PK = 1 8. Example screenshot:

Page 8 of 12 9. Start the instance of Tomcat running MyIT. The display name is Smart IT/MyIT Application 10. Verify the installation by browsing to http://myit.yourdomain.com:9000/ux/

Page 9 of 12 Installing SSO Plugin for BMC MyIT 2.0 & 2.1 To enable SSO Plugin for BMC MyIT, the following steps must be followed: 1. Stop the Tomcat instance running MyIT. 2. The MyIT application is deployed as a war file and requires unpacking so it can be configured for use with SSO Plugin. Prior to MyIT2.1 it is called myit.war, and since MyIT2.1 it is called ux.war. The following instructions assume it is called myit.war but if using MyIT2.1, the same steps are followed but use ux.war where you read myit.war. a. Locate the war file in the MyIT installation directory, ie c:\program Files\BMC Software\MyIT\MyIT\myit.war or ux.war. b. Take a backup of the war file so it can be re-introduced if the SSO integration fails. c. Rename the war file to myit.war.zip. d. Extract myit.war.zip to a directory called myit.war. e. Delete the myit.war.zip file. Screenshot Example

Page 10 of 12 3. Locate the SSO Plugin MyIT installation files and copy them into the MyIT web application directory unpacked in the previous step. Copying will ask you to confirm the folder replace because WEB-INF already exists. Please select Yes. Copying the files a. Move the new jar to C:\Program Files\BMC Software\MyIT\MyIT\myit.war\WEB- INF\lib Overwriting the old file if it still exists. 4. Various index.html files require a small change in order to ensure the browser does not cache them: a. In MyIT 2.0.x, locate the index.html files under the app and app-full directories. b. In MyIT 2.1.x, locate the index.html files under the myit-app and smartit directories. Two changes must be made to each index.html file: a. Rename it to index.jsp. b. Open it in your favourite text editor and add the following to the top of the file: <% response.setheader("cache-control", "no-cache"); %> 5. A setting in the MyIT database switches on SSO. Locate the TENANT table and set SAML_AUTHENTICATION=1 where PK=1 as per the following screenshot:

Page 11 of 12 6. The MyIT web.xml file (in the C:\Program Files\BMC Software\MyIT\MyIT\myit.war\WEB- INFdirectory) requires patching. We provide a tool on the JSS support website to do this for you (/jss/service) and recommend you use it, or you can do this manually by following these steps: a. Open the web.xml.patch file from myit\web-inf, select all and copy to clipboard. b. Open the myit\web-inf\web.xml file. c. Locate the first filter-mapping element and paste the patch before it, ie. <!-- paste patch here --> <filter-mapping>... d. Referring to the patch pasted above, perform the following changes: http://bmcmidtier:8080/arsys i. identityfederationserviceurl: This points to the identity federation service running on the SSO Plugin installation. The identity federation service URL is /jss-sso/identityfederationservice, relative to the Mid Tier installation. Therefore, if the Mid Tier is installed at: then the identityfederationserviceurl is:

http://bmcmidtier:8080/arsys/jss-sso/identityfederationservice Page 12 of 12 ii. key: This must be set to the federated identity key set in the Mid Tier SSO Plugin interface. 7. Start the MyIT Tomcat instance. 8. The URL entry points differ per MyIT version: a. Prior to version 2.1, navigate to: http://host/myit. b. From version 2.1 or above, navigate to: i. http://host/ux/myit-app (for MyIT). ii. http://host/ux/smartit (for SmartIT). 9. If there is an issue you can not resolve in the SSO implementation, follow these steps: a. Stop the MyIT Tomcat instance. b. Move the myit war file from the webapps directory into a location outside of Tomcat so it can be kept for debugging purposes. c. Place the myit.war file backed up in step 2(b) in the webapps directory. d. Start the MyIT Tomcat instance.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information