SiteMinder Agent for SharePoint Guide › Advanced Options › How to Protect the Claims WS Service using SSL › Register the Claims search service end point on all web front end servers

Register the Claims search service end point on all web front end servers

Registering a new end point for the claims search service associates the secure connection with the client certificate. A PowerShell script installed with the SiteMinder claims provider automates the registration process. Register the new end point for all of the web front end (WFE) servers in your SharePoint environment.

If you previously registered another SiteMinder claims search service, remove it by running the following script first:

SharePointClaimsProvider_directory\scripts\Remove-SMClaimSearchService.ps1

Follow these steps:

1. Gather the following information:

   –WebApplication url_of_SharePoint_web application

   Specifies the URL associated with the web application hosted on a SharePoint server.

   -ClaimSearchService claims_search_service_URL

   Specifies the URL of the claims search service.

   Limits: If the claim search service uses SSL, specify https: as the protocol in the URL.

   –ClientCertificateName

   Specifies the value in the Issued To: field of your client certificate. This client certificate protects the Claims WS (web service).

2. Open the SharePoint 2010 Management Shell.
3. Navigate to the following directory:

   SharePointClaimsProvider_directory\scripts
   

4. Enter the following command:

   .\Add-SMClaimSearchService.ps1 -WebApplication url_of_web_application url  -ClaimSearchService https://claims_search_service_url -EnableSSLClientAuthentication -ClientCertificateName name_in_Issued-To:_field_of_Certificate
   

   The new end point is registered.

5. Restart your IIS web server.
6. Repeat Steps 1 through 5 on all of the web front end (WFE) servers in your SharePoint environment.