Federation Manager Guide › Federation Manager System Administration › Deployment Settings › SiteMinder Connector Settings

SiteMinder Connector Settings

The SiteMinder Connector lets Federation Manager integrate with a SiteMinder environment for federated communication.

At the asserting party, the SiteMinder Connector can work with SiteMinder as a third-party WAM for delegated authentication. At the relying party, SiteMinder can protect the server where the target resources reside. If SiteMinder is performing access control, the SiteMinder Connector contacts the Policy Server to establish a SiteMinder session so that SiteMinder grants the user access to the target resource.

For Federation Manager to operate with SiteMinder, configure the SiteMinder Connector settings in the Federation Manager UI.

To configure the SiteMinder Connector

1. Log in to the Federation Manager UI.
2. Select a partnership from the Federated Partnerships list.

   The Partnership dialog opens.

3. Do one of the following:
   1. At the relying party, navigate to the User Identification step in the Partnership wizard.
   2. At the asserting party, navigate to the Federation Users step in the Partnership wizard.
4. Select the Enable SiteMinder Connector check box.

   The configuration fields become available.

5. (Optional) Select the Enforce UserDN Comparison check box. Selecting this check box forces a comparison of the UserDN and UserDirectory Name entries between the user directory at Federation Manager and the directory at SiteMinder.
6. Save your changes.
7. Navigate to the Infrastructure tab.
8. From the Infrastructure tab, select Deployment Settings.

   The Configure Deployment Settings dialog opens.

9. Fill in all the fields in the SiteMinder Connector Settings section.

   Note: Click Help for a description of fields, controls, and their respective requirements.

10. Select Register Host and provide the administrator credentials for the SiteMinder Policy Server.

    This step registers Federation Manager as an Agent with the SiteMinder Policy Server.

    Note: You can configure failover support for the host registration process by specifying more than one Policy Server. If the registration with the primary Policy Server fails, Federation Manager moves to the next Policy Server specified until the registration process completes successfully.

11. Select Save in the SiteMinder Connector Settings section of the dialog.

    Selecting Save in the SiteMinder Connector Settings section is necessary after registering the host.

12. Restart the Federation Manager services according to your operating environment.
    • Windows

      Use the Federation Manager stop and start shortcuts as follows. If you logged in as a network user and not a local administrator, right-click the shortcut and select Run as administrator.

      1. Start, All Programs, CA, FederationManager, Stop services
      2. Start, All Programs, CA, FederationManager, Start services
    • UNIX

      a. Open a command window.

      b. Run the following scripts:

      federation_mgr_home/fedmanager.sh stop

      federation_mgr_home/fedmanager.sh start

      When you run the fedmanager.sh script, it sources the Federation Manager environment script, ca_federation_env.ksh.

      Note: Do not stop and start the services as the root user.

The SiteMinder Connector configuration is complete.