Previous Topic: Install and Configure a JBoss Application Plug-in (IIS 7.x)Next Topic: Install the Proxy Plug-In on WebLogic

Configuration GuideCA SiteMinder IntegrationInstall the Web Proxy Server Plug-inInstall the Proxy Plug-In for JBossInstall and Configure a JBoss Application Plug-in (IIS 6.0)

Install and Configure a JBoss Application Plug-in (IIS 6.0)

This integration assumes that SiteMinder authenticates and authorizes a user before reaching CA IdentityMinder. A user is required to have an SMSESSION cookie before reaching CA IdentityMinder. Use an application plug-in (proxy redirection) protected by a SiteMinder Web Agent. Through this configuration, a user is authenticated by SiteMinder and then redirected to CA IdentityMinder after an SMSESSION cookie has been created.

This procedure is for the deployment and configuration of the JBoss Apache Plug-in for IIS 6.0:

Follow these steps:

  1. Deploy and Update ISAPI filter on the File System.

    Be sure to deploy the ISAPI folder to the root of the C drive.

  2. Edit the jakarta.reg file located in the unzipped folder.

    If you placed the ISAPI folder on the root of C:\, do not change this file. If you place it in a different folder, specify that folder on lines 9, 11,and 12.

  3. Save your changes and then double-click to update your registry.
  4. Edit the workers.properties file by specifying the location of your JBoss application server. The port and type do not need to change.
  5. Deploy the ISAPI filter on IIS.
  6. Open the Internet Information Services Manager from Administrative Tools.
  7. Expand the levels until the Default Web Site is visible. Right-click and select New, Virtual Directory.
  8. Enter jakarta as the alias.
  9. Reference the path where you installed the ISAPI plug-in.
  10. Select Read, Run scripts (such as ASP), and Execute (such as ISAPI applications or CGI).
  11. Click Next to continue and finish the wizard.
  12. Right-click the Default Web Site and select properties, select the ISAPI Filters tab, and click Add.
  13. Enter jakarta for the filter name and then click browse to select the isapi_redirect.dll. Then click OK twice.
  14. For IIS 6.0, enable this filter under the Web Service Extensions.
  15. Select the Web Service Extensions folder. Click the blue link on the left to Add a new Web service extension.
  16. Supply Jakarta-Tomcat for the name. Click Add and browse for the same dll as above. Click OK Click the Set extension status to Allowed and then click OK.
  17. Restart the IIS Server.

With the proxy now in place, you can access CA IdentityMinder through IIS. For example, here are the links for accessing CA IdentityMinder before and after the proxy configuration:

Before

http://identitymgr.forwardinc.ca:8080/idmmange

After

http://smserver.forwardinc/idmmanage

Note: A forward slash "/" can be needed at the end of this URL for the proxy to work. Reference the proxy logs if you are not forwarded to the Management Console.