Application Delivery Management
Application Modernization & Connectivity
CyberRes
IT Operations Management
This article is written for customers and partners who want to test NetIQ Access Manager (NAM) to understand and demonstrate how single sign-on works. Why single sign-on to Facebook? The reason is because it is probably the most widely used Website on the Internet that has a login page.
We want to configure NAM to achieve 2 things:
Firstly, we want to configure NAM as a reverse proxy. This means that when the user keys in a URL (we will use a fictitious domain in this article => www.external.com), NAM will reverse proxy to www.facebook.com
Secondly, we want to configure NAM to automatically sign in to Facebook and thereby achieving single sign-on.
All we need are the following:
Download NAM |
|
1. | ![]()
|
2. | ![]()
|
Setup your VMware workstation |
|
3. | ![]()
|
4. | ![]()
|
5. | ![]()
|
6. | ![]()
|
7. | ![]()
|
8. | ![]()
|
9. | ![]()
|
10. | ![]()
|
11. | ![]()
|
12. | ![]()
|
Installation of NAM |
|
13. | ![]()
|
14. | ![]()
|
15. | ![]()
|
16. | ![]()
|
17. | ![]() You can key in any values that you want. In this example, I used the following values:
|
18. | ![]()
|
19. | ![]()
|
20. | ![]()
|
21. | ![]()
|
22. | ![]()
|
23. | ![]()
|
24. | ![]()
|
Configure NAM for Reverse Proxy |
|
25. | ![]()
|
26. | ![]()
|
27. | ![]()
|
28. | ![]()
|
29. | ![]()
|
30. | ![]()
|
31. | ![]()
|
32. | ![]()
|
33. | ![]()
|
34. | ![]()
|
35. | ![]()
|
36. | ![]()
|
37. | ![]()
|
38. | ![]()
|
39. | ![]()
|
40. | ![]()
|
41. | ![]()
|
42. | ![]() For the new Proxy Service, I keyed in the following values:
|
43. | ![]()
|
44. | ![]()
|
45. | ![]()
|
46. | ![]()
|
47. | ![]()
|
48. |
Click ‘Ok’ until you see the following page: ![]()
|
49. |
At this point, you can test whether your reverse proxy works.
|
Configure NAM for Single Sign-on |
|
50. |
When Facebook website comes up, right click on the website and view source. Look for the following information: |
51. | ![]()
|
52. | ![]()
|
53. | ![]()
|
54. | ![]()
|
55. | ![]() Fill in the following for this page with the information that we found in Step 50:
|
56. | ![]()
|
57. | ![]()
|
58. |
Click ‘Ok’ until you see the following page: ![]()
|
59. | ![]()
|
60. | ![]()
|
61. | ![]()
|
62. | ![]()
|
63. | ![]()
|
64. |
At this point, you can test whether your Single Sign-on works.
|