In 2009, Shane Weeden posted an article about using WebSEAL without a user registry. The article made use of a number of components, including TFIM as a mechanism to generate an ISAM credential and return that to WebSEAL to build a session. This pattern is particularly useful in scenarios where the users are stored in... Continue Reading →
By default, when External Authentication Interface (EAI) authentication has been configured, and the authentication header is returned to WebSEAL by the backend application server, WebSEAL authenticates the user, and then generates a 302 redirect to either the cached request or the login redirect url. If you want the page returned to the browser but the... Continue Reading →
Since the move to the ISAM for Web Appliance, certificate mapping for client authentication is performed by an XSL stylesheet mapping mechanism. Since it was not immediately obvious to me, I've included two examples here where the CN of the certificate, is used as the username for the user in ISAM. Provide Full LDAP DN:... Continue Reading →
Background: In the latest release of Oracle E-Business, there has been a number of modifications to the security that is applied to their default login form. I captured the initial changes in a blog entry that was posted to on this site here: https://philipnye.com/posts/webseal-forms-sso-into-oracle-ebs-v12/ Disabling the security parameters to make the standard login forms work... Continue Reading →
When using IBM Security Federated Identity Manager (TFIM) for an LTPA junction, I ran into a NullpointerException. STSLTPATokenM 3 com.tivoli.am.fim.trustserver.sts.modules.STSLTPATokenModule consumeSTSUniversalUser Adding attribute to userMap: AZN_CRED_PRINCIPAL_UUID:[e57142ba-37c7-11e2-935f-c0a82f84aa77] STSLTPATokenM 3 com.tivoli.am.fim.trustserver.sts.modules.STSLTPATokenModule consumeSTSUniversalUser Adding attribute to userMap: AZN_CRED_VERSION:[0x00000611] STSLTPATokenM 3 com.tivoli.am.fim.trustserver.sts.modules.STSLTPATokenModule consumeSTSUniversalUser Adding attribute to userMap: AZN_CRED_AUTH_METHOD:[password] STSLTPATokenM 3 com.tivoli.am.fim.trustserver.sts.modules.STSLTPATokenModule consumeSTSUniversalUser... Continue Reading →
I've just completed phase 1 of the development of a website that was inspired by my girlfriend. She found that while studying she kept finding great sites to help her learn particular medical topics for her Medical Degree. But she had nowhere to put them that would benefit others. From there medreviewed was born! It's... Continue Reading →
Philip Nye 