Sun Java System Access Manager 2005Q1 |
|
JCDI Auth Module
About JCDI Auth ModuleThis module enables authentication of JAVA Card (Certificate and the Serial Number) using "com.sun.jndi.ldap.LdapCtxFactory". PRODUCT_DIR setting on different Platforms:
Steps to compile the JCDI Auth Module program
Steps to deploy the JCDI Auth Module program
<PRODUCT_DIR>/bin/amadmin --runasdn
uid=amAdmin,ou=People,<default_org>,
Steps to load JCDI Auth module into Access Manager
Setting up the Schema and the User1) Update the ldap schema with
<PRODUCT_DIR>/samples/authentication/spi/jcdi/schema.ldif using
'ldapmodify' command in LDAP Server. 2) Create the 'user' into LDAP using LDAP Console or Access Manager Administration Console under the required LDAP Search Root (for e.g. "ou=people, dc=iplanet, dc=com" subtree ). 3) Then add into the object-classes
list for that 'user' the 'authentication-service' object-class.
4) Fill those attributes with :
2) Restart Directory server (e.g /<DS-home-dir>/slapd-<host>/start-slapd) and web container (e.g /<WS-home-dir>/https-<WS-instance-name>/start, /<AS-home-dir>/domains/domain1/server1/bin/start for Sun ONE Web Server and Sun ONE App server respectively) Steps to run the JCDI Auth Module1) Login to the Access Manager as amAdmin 2) Verify that the JCDI service is available under the Service Management Tab.If not, go back and follow the loading steps according to the instructions listed above 3) Under the Identity Management tab, select the Org for which you'd like to configure JCDI AuthN. Select the Services View for that Org 4) Register the JCDI service 5) Create a new template for the JCDI service by clicking on the arrow next to the newly registed service 6) Modify the parameters as follows (according to your own settings)
7) Save the service and click on the core service 8) Select JCDI as an AuthN module
for that service (Holding Control will allow you to select multiple)
in the "Organization Authentication Modules"list. 9) Save the core service and Logout. 10) You should be all set to login
with Authentication Remote API sample 'JCDILogin' by following
|
|
|