1、建立junction
server task default-webseald-abc.ibm.com create -t tcp -h abc.ibm.com -p 80 -a -f "/data1/chemchina.key" -z passw0rd -j -c all -f /portal
2、檢視物件命名空間命令:object list /webseal
結果:/webseal/abc.ibm.com-default
3、建立組
group import wpsadmins "cn=wpsadmins,cn=groups,dc=chemchina,dc=com"
user import wpsadmin "uid=wpsadmin,cn=users,dc=chemchina,dc=com"
user modify wpsadmin account-valid yes
user import wpsbind "uid=wpsbind,cn=users,dc=chemchina,dc=com"
user modify wpsbind account-valid yes
4、portal junction相關alc命令:
acl create wps_authenticated_access
acl create wps_admin_access
acl create wps_no_access
acl modify wps_admin_access set user sec_master tcmdbsvabrxl
acl modify wps_admin_access set group iv-admin tcmdbsvarxl
acl modify wps_admin_access set group webseal-servers tgmdbsrxl
acl modify wps_admin_access set group wpsadmins tr
acl modify wps_admin_access set any-other t
acl modify wps_admin_access set unauthenticated t
acl modify wps_no_access set user sec_master tcmdbsvabrxl
acl modify wps_no_access set group iv-admin tcmdbsvarxl
acl modify wps_no_access set group webseal-servers tgmdbsrxl
acl modify wps_no_access set group wpsadmins t
acl modify wps_no_access set any-other t
acl modify wps_no_access set unauthenticated t
acl modify wps_authenticated_access set user sec_master tcmdbsvabrxl
acl modify wps_authenticated_access set group iv-admin tcmdbsvarxl
acl modify wps_authenticated_access set group webseal-servers tgmdbsrxl
acl modify wps_authenticated_access set group wpsadmins tr
acl modify wps_authenticated_access set any-other tr
acl modify wps_authenticated_access set unauthenticated t
acl modify wps_all_access set user sec_master tcmdbsvabrxl
acl create wps_all_access
acl modify wps_all_access set group iv-admin tcmdbsvarxl
acl modify wps_all_access set group webseal-servers tgmdbsrxl
acl modify wps_all_access set group wpsadmins tr
acl modify wps_all_access set any-other tr
acl modify wps_all_access set unauthenticated tr
acl attach /webseal/abc.ibm.com-default/portal/wps/config wps_admin_access
acl attach /webseal/abc.ibm.com-default/portal/wps/myportal wps_authenticated_access
acl attach /webseal/abc.ibm.com-default/portal/wps/portal wps_all_access
acl attach /webseal/abc.ibm.com-default/portal/wps/doc wps_all_access
acl attach /webseal/abc.ibm.com-default/portal/wps/wps wps_all_access
5、建立ldif檔案:
dn: dc=chemchina,dc=com
changetype: modify
add: aclentry
aclentry:group:cn=securitygroup,secauthority=default:system:rsc:normal:rwsc:restricted:rwsc
aclentry:group:cn=ivacld-servers,cn=securitygroups,secauthority=default:system:rsc:normal:rsc
aclentry:group:cn=remote-acl-users,cn=securitygroups,secauthority=default:system:rsc:normal:rsc
aclentry:group:cn=anybody:system:rsc:normal:rsc:restricted:rsc
6、匯入ldif檔案:
#./ldapmodify -d cn=root -w passw0rd -f /data1/acl.ldif
7、在webseal伺服器/tivoli/pdweb/www-default/lib目錄下,新增dynurl.conf,jmt.conf兩個檔案,檔案的內容分別為:
jmt.conf:
/portal /wps/portal*
/portal /wps/config*
/portal /wps/doc*
/portal /wps/myportal*
dynurl.conf:
/portal/wps/portal /portal/wps/portal*
/portal/wps/myportal /portal/wps/myportal*
/portal/wps/config /portal/wps/config*
/portal/wps/doc /portal/wps/doc*
/portal /wps*
8、備份/tivoli/pdweb/etc下的webseald-default.conf檔案,編輯修改該檔案的引數如下:
9、重啟portal伺服器的server1,portalserver,重啟policy server、webseal
10、至此portal sso配置完畢。
websphere6 1 X安裝與配置
websphere6.1.x安裝與配置 red hat enterprise linux as release 4 上安裝firefox2.0 啟動firefox若報錯 找不到libstdc so.5,請安裝compat libstdc 33 3.2.3 47.3.i386.rpm,安裝rpm指令 ...
Cordova 6 1 ionic 安裝和配置
在安裝框架之前需要準備好的環境如下 win 32位 node.js 4.4.4 win 64位 node.js 4.4.4 node.js官網 官網 這些環境的安裝和配置網上有太多了。就不在囉嗦的。準備好後就可以安裝需要的框架了。安裝命令 npm install g ionic cordova 這裡...
SRM6 1安裝配置指南
1 假設兩個站點均已部署好esxi主機和vcenter,vcenter版本為vcsa,首先在兩個站點中安裝vr,安裝vr時一定要用web client進行部署,需要注意的是vr在配置和vcenter的連線時一定要用網域名稱,如果沒有dns伺服器,要在vr和vcenter中修改hosts檔案。另外一定...