Policy Server Guides › Policy Server Configuration Guide › Authentication Schemes › SafeWord Server and HTML Forms Authentication Schemes

SafeWord Server and HTML Forms Authentication Schemes

The SafeWord Server and HTML forms authentication scheme authenticates users against a SafeWord Server together with a custom HTML form. The scheme also covers users who are logging in using SafeWord hardware tokens. You can define multiple instances of this scheme. The exact configuration parameters of the SafeWord Server is defined in the SafeWord configuration file.

SafeWord Server and HTML Forms Scheme Prerequisites

Complete the following prerequisites before configuring a SafeWord Server and HTML Forms authentication scheme:

• The SafeWord Server is installed on a network accessible by the Policy Server.
• The exact location of the SafeWord Server is specified in the SafeWord configuration file.
• A customized .fcc file resides on a Web Agent server in the cookie domain in which you want to implement HTML Forms authentication. CA provides sample .fcc files under the Samples/Forms subdirectory, where you installed your Web Agent.
• A customized .unauth file resides on the Web Agent server

  Note: The .unauth file is not required if the .fcc file uses smerrorpage directive.

• A directory connection exists between the Policy Server and the user directory.
• The default HTML forms library is installed. The HTML forms library handles HTML Forms authentication processing:
  • SmAuthHTML.dll on Windows
  • smauthhtml.so on Solaris

  These files are installed automatically when you configure a Web Agent.

• (Sun Java Systems) If you are using a Sun Java Systems web server, increase the value of the StackSize parameter in the magnus.conf file to a value greater than 131072. Failing to change the value causes the web server to dump its core and restart each time there is an authentication request using forms.

More information:

User Directories

Configure a SafeWord Server and HTML Forms Authentication Scheme

Use a SafeWord Server and HTML Forms authentication scheme when to authenticate users against a SafeWord Server and a custom HTML form. This scheme also covers users who are logging in via SafeWord hardware tokens.

Note: The following procedure assumes that you are creating an object. You can also copy the properties of an existing object to create an object. For more information, see Duplicate Policy Server Objects.

Follow these steps:

1. Click Infrastructure, Authentication.
2. Click Authentication Schemes.
3. Click Create Authentication Scheme.

   Verify that the Create a new object of type Authentication Scheme is selected.

   Click OK

4. Enter a name and protection level.
5. Select SafeWord HTML Form Template from the Authentication Scheme Type list.
6. Enter the server name, the location of the SafeWord configuration file, and server and target information.
7. Click Submit.

   The authentication scheme is saved and can be assigned to a realm.