NetIQ hybrid solution: CLE and SPA


As organizations worldwide start to explore the synergy in the NetIQ portfolio resulting for the merger of heritage Novell products and heritage NetIQ products, some quick hybrid solutions are available almost out-of-the-box.

Below is a quick step-by-step guide for how to use CLE to provide unauthenticated access to SPA (Secure Password Administrator). For more information on SPA, see:

Click to view.

Figure 1: First step, configure CLE to point to the SPA Self-Service URL. You will need to validate the HTTPS certificate and update the DNS record or test workstation hosts file to match the server name in the assigned certificate.

Click to view.

Figure 2: Windows 7 Logon modified with Self-Service URL.

Click to view.

Figure 3: Self-Service secure page access with unauthenticated user in locked down/kiosk mode.

For this example, I used Client Login Extension Version Patch 2, available from


How To-Best Practice
Comment List