Uploaded image for project: 'OpenAM Agents'
  1. OpenAM Agents
  2. AMAGENTS-2567

Need to update documentation for Basic IIS Authentication and Password Replay Support

    Details

      Description

      The method to set this up was not very clear from documentation (https://backstage.forgerock.com/docs/openam-web-policy-agents/5.5/web-agents-guide/#configure-iis-basic-auth) Would it be possible to modify so that we have something which describes the following steps please:
      1) Go to cd /tomcat/webapps/openam/WEB-INF/lib
      2) Generate a key using command openssl rand -base64 32 you will get back something like (wtxLduN3Mu+0Q2VkNUob1VhsKCthcOS68R6mrFZrVMU=)
      3) Go to AM console and go to Deployment > Servers > Server Name > Advanced
      4) Add the property com.sun.am.replaypasswd.key with wtxLduN3Mu+0Q2VkNUob1VhsKCthcOS68R6mrFZrVMU=
      5) Go to AM console and go to (realms -> top level realm -> authentication -> settings -> post authentication processing -> entered Authentication Post Processing Classes) and give it value com.sun.identity.authentication.spi.JwtReplayPassword
      6) Restart AM so that the settings for step 5 are processed.
      7) Got to Applications > Agent > web > nameofAgent > Advanced
      8) Set Replay Password Key (com.sun.identity.agents.config.replaypasswd.key) as wtxLduN3Mu+0Q2VkNUob1VhsKCthcOS68R6mrFZrVMU=
      9) The iis password header need to be set to true: com.sun.identity.agents.config.iis.password.header=true (this can only be done by specifying it as a custom property).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                chris.lee Chris Lee
                Reporter:
                edward.barker edwardb
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: