Federation Security Services Guide › Deploying Federation with the FSS Sample Application › Deploy the Sample Application on Two Systems

Deploy the Sample Application on Two Systems

You can install the sample application on two separate systems, one system acting as the Identity Provider and the other system acting as the Service Provider. Be aware that after you run the SetupFederationSample.pl once, running it again deletes the sample policy objects created by the previous execution of the script.

To execute the sample application on two systems

1. Complete all the core SiteMinder and Federation prerequisites on both systems.
2. Modify the host file of each system so it recognizes the other system with which it is communicating.
   • On the IdP system, www.idp.demo, modify the host file of this system to include the IP address of the SP system.
   • On the SP system, www.sp.demo, modify the host file of this system to include the IP address of the IdP system.

   On Windows, the host file is typically located in WINDOWS\system32\drivers\etc\hosts.

   On Solaris/UNIX, the host file is commonly located in /etc/hosts.

3. (Optional) If you are using a web browser on a system that does not have the correct host mappings for www.idp.demo and www.sp.demo, add these mappings to the system's hosts file.
4. Define your environment by configuring the FederationSample.conf file for each system.
5. Execute the sample application as follows:
   • On the IdP system, enter the following command:

     perl SetupFederationSample.pl -admin siteminder_administrator
     -password administrator_password -idp FSS
     

   • On the SP system, enter the following command:

     perl SetupFederationSample.pl -admin siteminder_administrator 
     -password administrator_password -sp FSS
     

6. Restart both Policy Servers.
7. Test single sign-on and single logout.