Web Agent Guides › Web Agent Configuration Guide › Authenticate Users with Forms › Use Credential Collectors for Authentication and Single Sign-On › Use a Special Forms Template for Passport Authentication

Use a Special Forms Template for Passport Authentication

Beginning with Web Agent 5.x QMR1, n FCC file named loginusername.fcc was provided for use with the Passport authentication scheme. If you configure SiteMinder to use this form, when a user requests a protected resource, SiteMinder will:

1. Recognize a signed-in Passport user as a mapped user from the SiteMinder user directory.
2. Present the form, which:
   • Automatically displays the user name of the mapped user
   • Prompts for the corresponding password

To use the loginusername.fcc file:

1. Edit the value of the IgnoreExt Web Agent parameter by removing the .fcc entry from the list of extensions that the Agent should ignore.
2. Protect loginusername.fcc, using the Passport (Custom) authentication scheme.

   Note: For more information, see the Policy Server documentation.

3. For each realm protected by the Passport authentication scheme, create a response on the Policy Server. For each response, configure a Web Agent response attribute as follows:
   1. Select WebAgent-HTTP-Header-Variable from the Attribute drop-down list.
   2. Select the User Attribute radio button from the Attribute Kind group box.
   3. In the Attribute Name field, enter the name of the user directory attribute that corresponds to the user name or user id. For example, if an LDAP directory contains the users mapped to Passport holders, enter uid.
   4. In the Variable Name field, enter a name for the response variable, such LDAPUID.

      Note: For more information, see the Policy Server documentation.

4. Edit the loginusername.fcc form to reflect the Variable Name value. Continuing with this example, the variable name is LDAPUID.

You can add these advanced features to the Agent configuration file or an Agent Configuration Object.