2 Replies Latest reply: Jul 13, 2012 11:50 AM by Mukesh Agarwal RSS

SSO configuration in BAO

Mukesh Agarwal

Hi

i am new to BMC attrium orchestrator - document doesnt clearly say which password should be used and how to allow AD users to login .

Please help with the inputs that i need to provide for setting SSO configuration. Attached is the screen shot that i am trying

  • 1. SSO configuration in BAO
    Ankur Gakkhar

    Hi Mukesh,

     

    Here are the input & their values; hope it helps.

     

     

    Configuration  parameter

     
     

    Value

     
     

    Type

     
     

    LDAP

     
     

    ProviderInfo

     
     

    Default JNDI Authentication Provider

     
     

    Name

     
     

    ActiveDS

     
     

    Description

     
     

    Microsoft Active Directory configuration

     
     

    ConnectionName

     
     

    cn=username,cn=Users,dc=yourdomain,dc=com

     
     

    ConnectionPassword

     
     

    Enter the connection password

     
     

    ConnectionURL

     
     

    ldap://ipaddress:port

     
     

    ContextFactory

     
     

    com.sun.jndi.ldap.LdapCtxFactory

     
     

    Digest

     
     

    SHA-1

     
     

    DigestEncoding

     
     

    UTF-8

     
     

    Referrals

     
     

    follow

     
     

    RoleBase

     
     

    cn=Users,dc=yourdomain,dc=com

     
     

    RoleName

     
     

    cn

     
     

    RoleSearch

     
     

    (member={0})

     
     

    RoleSubtree

     
     

    checked

     
     

    UserBase

     
     

    cn=Users,dc=yourdomain,dc=com

     
     

    UserPattern

     
     

    cn={0},cn=,dc=dc=com

     
     

    UserRoleName

     
     

    member

     
  • 2. SSO configuration in BAO
    Mukesh Agarwal

    Thaks this helped really - i was able to configure BAO with AD . However one open question-

    i need to add same user in AM profiles to allow the user to login to BAO AM will full permissions-

    is their a way to configure with AD groups so that user once made the member of the group gets access to BAO .