Previous Topic: Customize the SPS Server Files for OAuthNext Topic: Copy and Modify the Open Format Expression File (Optional)

Single Sign-On ServiceSSO Getting Started GuideConfigure and Apply an OAuth Authentication SchemeCopy and Modify the OAuth Properties File

Copy and Modify the OAuth Properties File

The OAuth properties file contains paths to the FCC file and the provider configuration file. The file is necessary for successful OAuth configuration. This file resides on the Policy Server.

Note: The OAuth authentication scheme configuration references this file.

Follow these steps:

  1. Log in to the Policy Server host system.
  2. Go to the following location: 
    siteminder_home/config/properties
    siteminder_home

    Specifies the Policy Server installation path.

    Example: /opt/CA/siteminder/config/properties

  3. Copy the oauth.properties file and name the copy to reflect the OAuth provider and the tenant.

    Examples:

  4. In the file copy, change the following settings:

    FCC=/siteminderagent/forms/duplicate_oauth_fcc_file.fcc

    OAuthProviders=oauthproviders_xml_file_path/duplicate_oauthproviders_file.xml

    Duplicate_oauth_fcc_file.fcc is the Secure Proxy Server file you duplicated and renamed in the Customize the SPS Server Files for OAuth topic.

    Duplicate_oauthproviders_file.xml is the Policy Server file you duplicated and renamed in the Copy and Modify the OAuth Provider Configuration File topic.

    Google Example:

    FCC=/siteminderagent/forms/oauth-google-tenant1.fcc

    OAuthProviders=/opt/CA/siteminder/config/properties/oauthproviders-tenant1.xml

    Facebook Example:

    FCC=/siteminderagent/forms/oauth-facebook-tenant2.fcc

    OAuthProviders=/opt/CA/siteminder/config/properties/oauthproviders-tenant2.xml

  5. (Optional). If the Policy Server host system is behind the proxy, set the ProxyAuthentication value to “yes" and specify the proxy details for the remaining settings. The password that you specify for the proxy user is used in the Secret field of the authentication scheme configuration.

    ProxyAuthentication=yes

    ProxyServer=

    ProxyPort=

    ProxyDomain=

    ProxyUser=

  6. Set the PreProcessingChain setting to the following value:

    PreProcessingChain=com.ca.sm.oauth.chain.StoreClaimsToContext

  7. Leave the AnonymousMode set to false.

    AnonymousMode=false