![]() |
Sun Java System Access Manager version 7 2005Q4 Sample |
Liberty Samples
1. IntroductionAccess Manager 7 2005Q4 supports Liberty Alliance Version 1.1 Specification. To demostrate the different protocols in Liberty such as Account Federation, Single Sign On, Single Logout and Federation Termination, three different sample applications are included.
<BEGIN_DIR> refers to the Access Manager installation directory:
Linux : BEGIN_DIR = <install_dir>/sun/identity <CONFIG_DIR refers to the Access Manager Configuration Directory.
Linux : CONFIG DIR = /etc/opt/sun/identity/config
Sample 1This sample scenario includes a Service Provider and an Identity Provider. Each needs to be deployed and configured on two seperate Access Manager installations. For that atleast two machines are required. TheReadme in <BEGIN_DIR>/samples/liberty/sample1 directory
provides detailed steps on how to deploy and configure this sample.
Sample 2This sample scenario also includes a Service Provider and an Identity Provider, but in this case the Service Provider's resources are deployed on a web container which is be protected by a Access Manager Policy Agent. This sample will also demonstrate how different authentication contexts can be configured, by associating different authentication levels with different protected pages. This association is made by creating policies for the protected resources.Here too, the Service and Identity Providers are deployed and configured on two different Access Manager installations. In addition, the Access Manager which is configured as a Service Provider will be used by the Access Manager policy agent. This sample scenario will require at least two machines, since a web container can be installed on either machine that already has an Access Manager installation.
The
Sample 3This sample scenario includes two Service Providers and two Identity Providers. Access Manager supports multiple hosted providers. The sample uses this feature of the Access Manager to demonstrate two hosted Service Providers and two hosted Identity Providers on a single installation of the Access Manager.
This sample requires one machine on which the Access Manager is installed.
Four virtual server instances of the web container are created, one for each
of the providers. The machine on which the Access Manager is installed,
needs to be hosted in four different DNS domains. This can be simulted by
adding entries in the Since this scenario involves multiple Identity Providers, you will need to install a common domain service. This service can be installed either on the same machine on which the Access Manager is installed or on a different machine.
The NOTE: All the sample scenarios are configured to work with the default setup. You can change different profiles, signature setup, etc. to try out all the different combinations. For more details about these configuration parameters please refer the Sun Java System Access Manager 2005Q4 Administration Guide. |