Configuration Guides › Federation Security Services Guide › Overview of a SiteMinder Federation Partnership Setup › Set Up Producing Authority Components › Configure Federation Web Services (Producing-side)
Configure Federation Web Services (Producing-side)
The Federation Web Services application is installed on the server with the Web Agent Option Pack or the SPS federation gateway.
To configure Federation Web Services at the asserting party
- Configure a web server running ServletExec or one of the supported application servers to use the Web Agent Option Pack. Refer to the Web Agent Option Pack deployment instructions.
On the SPS federation gateway, Federation Web Services is already deployed.
- Verify that the AgentConfigLocation parameter in the AffWebServices.properties file is set to the full path to the WebAgent.conf file. Be sure that the syntax is correct and the path appears on one line in the file.
The AffWebServices.properties file contains the initialization parameters for Federation Web Services. This file is located in the one of the following directories:
- web_agent_home/affwebservices/WEB-INF/classes
- sps_home/secure-proxy/Tomcat/webapps/affwebservices/WEB-INF/classes
- web_agent_home
-
Represents the installed location of the Web Agent
- sps_home
-
Represents the installed location of the SPS federation gateway
- Enable error and trace logging for the Federation Web Services application. Enable logging in the LoggerConfig.properties file. The logs enable you to see the communication between the asserting party and the relying party.
- Error logging is recorded in the affwebserv.log file, the default error log file.
- Trace logging is recorded in the FWSTrace.log, the default trace log file.
- Test Federation Web Services by opening a web browser and entering the following link:
http://fqhn:port_number/affwebservices/assertionretriever
where,
- fqhn
-
Defines the fully qualified host name.
- port_number
-
Defines the port number of the server where the Federation Web Services application is installed.
For example:
http://myhost.ca.com:81/affwebservices/assertionretriever
If Federation Web Services is operating correctly, you see a message that reads:
Assertion Retrieval Service has been successfully initialized.
The requested servlet accepts only HTTP POST requests.
This message indicates that Federation Web Services is listening for data activity. If Federation Web Services is not operating correctly, you get a message that the Assertion Retrieval Service has failed. If the test fails, look at the Federation Web Services log.
More Information:
Configure ServletExec to Work with Federation Web Services
Configure the AffWebServices.properties File
Set up the LoggerConfig.properties File
Federation Security Services Trace Logging
