Skip to main content
 
developerWorks
AIX and UNIX
Information Mgmt
Lotus
New to Lotus
Products
How to buy
Downloads
Live demos
Technical library
Training
Support
Forums & community
Events
Rational
Tivoli
WebSphere
Java™ technology
Linux
Open source
SOA and Web services
Web development
XML
My developerWorks
About dW
Submit content
Feedback



developerWorks  >  Lotus  >  Forums & community  >  IBM Connections Forum

IBM Connections Forum

developerWorks

  

Sign in to participate PreviousPrevious NextNext


Tomasz tj Janin 23.May.17 09:50 AM a Web browser
Administration All releases Windows


Hi,


I try configuring correctly CASifying IBM WebSphere by instruction on this page: https://wiki.jasig.org/pages/viewpage.action?pageId=19314

My configuration working correctly only for login to IBM Connections.
When i open my https://connections.ibm.com then I click login button so I redirect to https://cas.ibm.com:8443/cas/login?locale=pl&service=https://connections.ibm.com/homepage
I enter my login and password and when validation succesfull then i can working on Connections.

Configuration:
1. Installing components - add jar files to <WPSInstallDirectory>/AppServer/lib/ext
2. Deploying and configuring TAI - add Interceptors so i enter:
Interceptor Classname : com.octo.cas.client.websphere.CasTAI511
Add Custom Properties required properties :
CAS_VALIDATION_URL = your cas server url, ex : 'https://cas.ibm.com:8443/cas/serviceValidate'
DEBUG = 'true'
PRINCIPAL_PREFIX= ''
PRINCIPAL_SUFFIX = ''

3. navigate to _Security > Authentication Mechanisms > LTPA > Trust Associations
4. Enable "Trust Associations" in console
5. Navigate to _Security > Authentication Mechanisms > LTPA > SSO
6. Enable SSO, with your domain name
7. Save configuration and reboot the WebSphere server

Validate the installation
In <WPSInstallDirectory>/AppServer/logs/server1/SystemOut.log

[5/23/17 14:42:27:339 CEST] 00000001 TrustAssociat A SECJ0121I: Trust Association Init class com.ibm.ws.security.oauth20.tai.OAuthTAI loaded successfully
[5/23/17 14:42:27:354 CEST] 00000001 TrustAssociat A SECJ0122I: Trust Association Init Interceptor signature: 1.0
[5/23/17 14:42:27:354 CEST] 00000001 TrustAssociat A SECJ0121I: Trust Association Init class com.octo.cas.client.websphere.CasTAI511 loaded successfully
[5/23/17 14:42:27:370 CEST] 00000001 SystemOut O

CasTAIHelper configuration :
CAS_REALM_NAME='CAS_REALM'
CAS_VALIDATION_URL='https://cas.ibm.com:8443/cas/serviceValidate'
STORE_PROXY_TICKET='false'
CAS_CALLBACK_PROXY_URL='null'
CAS_CALLBACK_PROXY_SERVLET='/CasProxyServlet'
PRINCIPAL_PREFIX=''
PRINCIPAL_SUFFIX=''
DEBUG='true'


[5/23/17 14:42:27:370 CEST] 00000001 TrustAssociat A SECJ0122I: Trust Association Init Interceptor signature: 1.0.0

[5/23/17 14:42:27:370 CEST] 00000001 distSecurityC I SECJ0240I: Security service initialization completed successfully

------------------------------------------------------------------------------------------------------------------

So now i can using cas to login Connections. In SystemOut.log:



[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O try to get ticket
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O ticket not null : ST-1060-EjPuGnlzP3oXax7TsdKg
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O new ticket validator
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O serviceUrl generated: https://nowy-intranet.pwr.edu.pl/homepage
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O set validation url :https://logowanie.pwr.edu.pl:8443/cas/serviceValidate
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O set service : https://nowy-intranet.pwr.edu.pl/homepage
[5/23/17 15:14:41:623 CEST] 000001f5 SystemOut O set ticket : ST-1060-EjPuGnlzP3oXax7TsdKg
[5/23/17 15:14:41:670 CEST] 000001f5 SystemOut O validation done
[5/23/17 15:14:41:670 CEST] 000001f5 SystemOut O got xml response :




<cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
<cas:authenticationSuccess>
<cas:user>MyCasUserId</cas:user>


</cas:authenticationSuccess>
</cas:serviceResponse>

[5/23/17 15:14:41:670 CEST] 000001f5 SystemOut O sucess:user=MyCasUserId
[5/23/17 15:14:41:670 CEST] 000001f5 SystemOut O cas uid : MyCasUserId
[5/23/17 15:14:41:670 CEST] 000001f5 SystemOut O CAS Authentication success, returned principal: 'MyCasUserId'








Now i try configure automate logout with Connections when user use LOGOUT on serwer https://cas.ibm.com

User click LOGOUT on https://cas.ibm.com and TICKET generated is remove correctly, but user still login on Conenctions because LTPAToken,LTPAToken2 is not removed.

Who can help me with this?






IBM Connections and CAS (Tomasz tj Janin... 23.May.17)
. . RE: IBM Connections and CAS (Ben Williams 23.May.17)
. . . . RE: IBM Connections and CAS (Tomasz tj Janin... 24.May.17)
. . . . . . RE: IBM Connections and CAS (Ben Williams 24.May.17)





  Document options
Print this pagePrint this page

 Search this forum

  Forum views and search
Date (threaded)
Date (flat)
With excerpt
Author
Category
Platform
Release
Advanced search

 Sign In or Register
Sign in
Forgot your password?
Forgot your user name?
Create new registration

 RSS feedsRSS
All forum posts RSS
All main topics RSS
More Lotus RSS feeds

Resources

 Resources
Forum use and etiquette
Native Notes Access
Web site Feedback

Lotus Support

 Lotus Support
IBM Support Portal - Lotus software
Lotus Support documents
Lotus support by product
Lotus support downloads
Lotus support RSS feeds

Wikis

 Wikis
IBM Composite Applications
IBM Mashup Center
IBM Connections
IBM Connections Cloud Developers
IBM Docs
IBM Forms
IBM Mobile Connect
IBM Sametime
IBM SmartCloud for Social Business
IBM Web Experience Factory
Lotus Domino
Lotus Domino Designer
Lotus Expeditor
Lotus Foundations
Lotus iNotes
Lotus Instructor Community Courseware
Lotus Notes
Lotus Notes & Domino Application Development
Lotus Notes Traveler
Lotus Protector
Lotus Quickr
Lotus Symphony
IBM Web Content Manager
WebSphere Portal

Lotus Forums


 Lotus Forums
Notes/Domino 9.0
Notes/Domino 8.5 + Traveler
Notes/Domino XPages development forum
Notes/Domino 8
Notes/Domino 6 and 7
IBM Connections
IBM Mobile Connect
IBM Sametime
IBM SmartCloud Notes
Lotus Enterprise Integration
Lotus Protector
Lotus Quickr
Lotus SmartSuite