Sun Java System Access Manager version 7 2005Q4
Sample
 

Main Page

Liberty Samples


1. Introduction

Access Manager 7 2005Q4 supports Liberty Alliance Version 1.1 Specification. To demostrate the different protocols in Liberty such as Account Federation, Single Sign On, Single Logout and Federation Termination, three different sample applications are included.

    Note :

    <BEGIN_DIR> refers to the Access Manager installation directory:
      Solaris Sparc/x86: BEGIN_DIR = <install_dir>/SUNWam
      Linux : BEGIN_DIR = <install_dir>/sun/identity

    <CONFIG_DIR refers to the Access Manager Configuration Directory.
      Solaris Sparc/x86: CONFIG_DIR = /etc/opt/SUNWam/config
      Linux : CONFIG DIR = /etc/opt/sun/identity/config

Sample 1

This sample scenario includes a Service Provider and an Identity Provider. Each needs to be deployed and configured on two seperate Access Manager installations. For that atleast two machines are required. The Readme in <BEGIN_DIR>/samples/liberty/sample1 directory provides detailed steps on how to deploy and configure this sample.

Sample 2

This sample scenario also includes a Service Provider and an Identity Provider, but in this case the Service Provider's resources are deployed on a web container which is be protected by a Access Manager Policy Agent. This sample will also demonstrate how different authentication contexts can be configured, by associating different authentication levels with different protected pages. This association is made by creating policies for the protected resources.

Here too, the Service and Identity Providers are deployed and configured on two different Access Manager installations. In addition, the Access Manager which is configured as a Service Provider will be used by the Access Manager policy agent.

This sample scenario will require at least two machines, since a web container can be installed on either machine that already has an Access Manager installation.

The Readme for this sample is found in the <BEGIN_DIR/samples/liberty/sample2 directory and provides detailed steps to deploy and configure the sample. The Readme explains a scenario where an Sun Java System Web Server has a policy agent installed on it, could work with other web containers and the corresponding Access Manager policy agent.

Sample 3

This sample scenario includes two Service Providers and two Identity Providers. Access Manager supports multiple hosted providers. The sample uses this feature of the Access Manager to demonstrate two hosted Service Providers and two hosted Identity Providers on a single installation of the Access Manager.

This sample requires one machine on which the Access Manager is installed. Four virtual server instances of the web container are created, one for each of the providers. The machine on which the Access Manager is installed, needs to be hosted in four different DNS domains. This can be simulted by adding entries in the /etc/hosts file for the fully qualified host names of the virtual servers.

Since this scenario involves multiple Identity Providers, you will need to install a common domain service. This service can be installed either on the same machine on which the Access Manager is installed or on a different machine.

The Readme for this is found in <BEGIN_DIR>/samples/liberty/sample3 directory and it provides detailed steps on how to deploy and configure the sample.

NOTE: All the sample scenarios are configured to work with the default setup. You can change different profiles, signature setup, etc. to try out all the different combinations. For more details about these configuration parameters please refer the Sun Java System Access Manager 2005Q4 Administration Guide.


End of Sample