000022003 - Oracle 10g Application Server integration with RSA ClearTrust on Sun Solaris 9

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022003
Applies ToRSA ClearTrust 5.5.3
Oracle Application Server Portal (OracleAS Portal) 10g
Apache 2.0
RSA ClearTrust Agent 4.6 for Apache 2.0.x
Sun Solaris 2.9
IssueOracle 10g Application Server integration with RSA ClearTrust on Sun Solaris 9
ResolutionSince RSA ClearTrust Agent 3.5 for Apache is not currently supported on Sun Solaris 9, the procedure below is a workaround that utilizes Apache 2 and the associated Agent 4.6 on Solaris 8 as a proxy server to Oracle 10g. This environment will be supported.

Follow the summary below to correctly configure the single sign-on (SSO) integration between Oracle 10g Application Server Portal and ClearTrust on Solaris 9 with Apache 2.0 web server as a proxy server protected with ClearTrust Agent 4.6. This integration also utilizes the instructions detailed in the integration guide located at http://rsasecurity.agora.com/rsasecured/results.asp?product_program=110&page=3.

Stage 1

Run the ?runInstaller? script to install the Oracle infrastructure component and application server (portal) component. This installer needs to be run as a user other than root, though during the installation, a "root.sh" script will need to be executed as root. You may wish to contact your Oracle Administrators for assistance.

Install ClearTrust 5.5.3 according to the RSA ClearTrust 5.5 installation guide and setup the Apache 2.0 webserver. Integrate it with the 4.6 agent to ensure that ClearTrust is protecting the webserver pages.

Stage 2

Configure the Apache 2 web server as a proxy server, redirecting the user to the Oracle 10g?s Apache 1 based web server to serve the Portal web resources

Stage 3

Configure ClearTrust to protect the Oracle 10g portal server pages via the proxy server so that a user would temporarily have to authenticate once via the ClearTrust logon page and then once at the portal logon page to enter the portal builder interface. For example, create and entitle a user ?orcladmin? to be able to access this resource.

Stage 4

- Utilize the SSOCTAuth.jar file and follow the instructions within the implementation guide to configure the SSO between ClearTrust and Oracle 10g.
- Complete the instructions in the "Deploying OracleAS Single Sign-On with a Proxy Server" section of Chapter 8 in the following guide, Advanced Deployment Options) in the Single Sign-On Administrator's Guide, located at http://download-west.oracle.com/docs/cd/B14099_06/manage.1012/b14078.pdf. Please also review the Portal Configuration Guide that details setting up the Portal in different configurations - http://download-west.oracle.com/docs/cd/B14099_06/portal.1012/b14037.pdf.

Stage 5

- Navigate to http://machinename.domain:proxyPort#/pls/orasso and ClearTrust authenticate as ?orcladmin? - you will be directed to the ?Access Partner Applications? page
- Click ?login? in the top right corner ? you will arrive at ?SSO Server Administration? page
- Click on ?SSO Server Administration?
- Click on ?Administer Partner Applications?
- Click ?edit? next to ?Oracle Portal (portal)?
- Modify the URL link details to utilize the proxy port # and ensure that the other settings are as expected
- Click "OK" and then close (setup done)

Stage 6 - test SSO

- Navigate to http://machinename.domain:proxyPort#/pls/orasso and ClearTrust authenticate as ?orcladmin? - you will be directed to the ?Access Partner Applications? page
- Click ?login? in the top right corner ? you will arrive at ?SSO Server Administration? page
- Click ?Oracle Portal (portal)? ? you will arrive at the Portal Builder logon page
- Click ?login? in the top right corner or the ?login? button
- You will then be ?SSO-ed? into the portal builder interface and view the message Welcome ORCLADMIN to OracleAS Portal
Legacy Article IDa26491

Attachments

    Outcomes