openam

问题 I'm try to implementing SSO in my existing web applications with using OpenAM by refer following link http://fczaja.blogspot.com/2012/06/idp-initiated-sso-and-identity_21.html PS. my web applications have their own login page already Now what is got after implementation is, openAM login page are protected in my web applications and i need to make login again to my application what i need is, want to skip the login page of my application to become single sign on. so, can anyone tell me what

问题 Can anyone explain to me what the main differences between SP initiated SSO and IDP initiated SSO are, including which would be the better solution for implementing single sign on in conjunction with ADFS + OpenAM Federation? 回答1: In IDP Init SSO (Unsolicited Web SSO) the Federation process is initiated by the IDP sending an unsolicited SAML Response to the SP. In SP-Init, the SP generates an AuthnRequest that is sent to the IDP as the first step in the Federation process and the IDP then

问题 I did with following steps but its throwing exception: 1.I have installed openam 10.0.0 on windows server 2003. 2.Configured tomcat with ssl on the same windows server machine. 3.It is configured correctly and openam url is accessible with https. 4.Installed openam client sdk on another machine which is ubuntu machine and from that ubuntu machin i am trying to login to openam server using AuthContext lc = new AuthContext("/","https://server.ensarm.com:8443/openam/namingservice"); AuthContext

问题 I am getting the problem in configuring j2ee agent and not able to figure out what is going wrong,if someone can help me out of this proble, my problem is I have configured openam 11 in domain 1 in tomcat server and agentapp in domain2 in tomcat server, now when I create a J2ee agent with Datastore as "OpenDj", I am able to configure my j2ee agent to it, but when I am adding my customized Datastore plugin class which is fetching data from postgre sql, I am able to see the my users and group

问题 So here is the scenario. I have my web app <==> IDP Proxy <==> IDP. Where both IDP proxy and IDP are openam instances. The ideas is we may add our additional IDPs (From other clients) so we want a proxy to shield the complexity. So here IDP Prxy is : http://idpproxydev.devs1.int:8080/openam IDP url is: http://idpdev.devs1.int:80/openam My web app is : http://ocr-jq0zt91.devs1.int:9081/LOS I started using http://static.springsource.org/spring-security/site/extensions/saml/index.html for

问题 I've been doing a lot of research on this, and there are tons of examples, but I am overwhelmed by the choices, but I have put together some code together to do what I want. I have a Apache Load Balancer which re-directs me to a login page for our OpenAM 10. When I go to https://portal.mydomain.com/myapp I get redirected to: https://sso.mydomain.net:9443/sso/UI/Login?module=AGMAuth&goto=https%3A%2F%2Fvmlb.mydomain.net%3A443%2Fmyapp This is my login page, I am asked for a username and password

问题 I have two tomcat servers, one with OpenAM 12, one with the main web applications. Known: HTML pages authenticate without issue, programmatic login using the OpenAM java SDK works from within a servlet. What fails is a call to HttpServletRequest.login(username, password) This is the entry I have within the TomEE+ server: <Realm className="com.sun.identity.agents.tomcat.v6.AmTomcatRealm" debug="99"/> Here is the error I see within the AM J2EEAgent debug log: amRealm:01/29/2014 02:29:47:497 PM

问题 I have implemented oAuth2 Implicit grant flow using IWebBrowser2 control, the authentication dialog box appears from openAM I have entered user name and password it give me access token. But how my application knows which user name is authenticated, I need this user name to be validated from my database also? 回答1: If you request the "openid" scope you will get an access token along with a JWT token called "id_token". The JWT contains the user name. You can also use the access token to call

问题 To replicate the potential production scenario of an IdP initiated SAML request, I'm trying to set up a local (docker-based) version of OpenAM to serve as an IdP for an application (an SP) that I am developing. The application is written in Django and is reliant on its ability to resolve groups associated with the user whose identity is being asserted in the SAML response from this IdP. Specifically, I'd like to receive the names of groups for each user in SAML response in the following

问题 OpenAM version -12 , Agent version 3.5 and 3.3 , tomcat version 7 I have tried to follow the link https://forums.alfresco.com/forum/installation-upgrades-configuration-integration/authentication-ldap-sso/sso-openam-06052012 to set up my J2EE Agent. Let me paste the steps after asking the question(see at the end) but I am getting the error as asked below Not able to configure J2ee agent on adding my customized data store for users I have tried to use 3.5 version installed and uninstalled