Agent GuideConfigure the SiteMinder Authentication ProviderConfigure the SiteMinder Authentication Provider in WebLogic › Configure the SiteMinder Authentication Provider

Previous Topic: Configure the SiteMinder Authentication Provider in WebLogic

Next Topic: Determine How Users Are Authenticated

Configure the SiteMinder Authentication Provider

Configure the Authentication Provider in the Security Realms Node in the WebLogic Administration console.

To configure the SiteMinder Authentication Provider

  1. Start the WebLogic Server and the WebLogic Server Administration Console.
  2. In the navigation frame on the left of the Console, click the Security Realms node in the Domain Structure list.
  3. Click on the name of the realm you are configuring (for example, myrealm).
  4. Click the Providers tab.
  5. If necessary, click the Authentication tab to display the Authentication Providers list.
  6. Click New to create a new Authentication Provider.
  7. On the Create a New Authentication Provider page:

    Note: If SiteMinderAuthenticationProvider is not listed, check the SiteMinder Agent installation to determine if it was successful.

  8. Click OK to save the new Authentication Provider.
  9. Click the entry for your SiteMinder Authentication Provider in the Authentication Providers list to open it for editing.
  10. In the SiteMinder Authentication Provider settings page, complete the following:
    1. In the Control Flag field, select the priority that applies to the SiteMinder Authentication Provider.

      Note: If your environment includes other authentication providers, we recommend setting the Control Flag for the SiteMinder Authentication Provider to SUFFICIENT.

    2. Click the Provider Specific tab.
    3. In the SMAuth Provider Config File field, enter the location of the configuration file for the Authentication Provider.

      If you are using the default Agent configuration file, the location is ASA_HOME/conf/WebAgent.conf. If you created a new Agent configuration file for the Authentication Provider, be sure to enter the location and file name of the file you created.

      You can use an absolute or relative path. If you use a relative path, the configuration file will be relative to the directory smasa.home/conf or relative to your current WebLogic Server working directory, WLS_HOME/user_projects/yourdomain.

    4. Click Save.
  11. If multiple authentication providers are configured for the security realm, specify the order in which WebLogic executes the authentication providers as described in Configure the Execution Order.
  12. If the Default Authentication Provider is configured for the security realm, change the Control Flag setting for the Default Authentication Provider from REQUIRED to SUFFICIENT.
  13. Enable the Authentication Provider.
  14. Enable SiteMinder logging.
  15. Restart the WebLogic server and check SiteMinder logs to verify that the Authentication Provider is configured correctly.

    If you are configuring additional SiteMinder Agent SiteMinder Agent Providers, you can restart the WebLogic server after all of the configuration steps are complete.

More Information

Install the SiteMinder Agent for WebLogic

Troubleshoot the SiteMinder Agent

Set Up the Agent Configuration File (WebAgent.conf)

Logging

Enable and Disable the Authentication Provider

Set the Control Flag

Copyright © 2010 CA. All rights reserved. Email CA about this topic