lelle1 Absent Member.
Absent Member.
1882 views

Access Manager 4.4 and AAF 6 oauth

Hi,

I'm trying to integrate Access Manager 4.4 and AAF 6 thru oauth, fairly simle to setup since almost everything is auto generated. But what is the "Redirect URIs" in AAF Oauth setup?
I quess that it related to Access manager in some way, but I'm unable to figure otu how

/Lelle
0 Likes
6 Replies
ScorpionSting Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

lelle;2482738 wrote:
Hi,

I'm trying to integrate Access Manager 4.4 and AAF 6 thru oauth, fairly simle to setup since almost everything is auto generated. But what is the "Redirect URIs" in AAF Oauth setup?
I quess that it related to Access manager in some way, but I'm unable to figure otu how

/Lelle


https://xxxx.xxxx.xxxxx/osp/a/TOP/auth/oauth2/grant

Visit my Website for links to Cool Solution articles.
0 Likes
ScorpionSting Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

lelle;2482738 wrote:
Hi,

I'm trying to integrate Access Manager 4.4 and AAF 6 thru oauth, fairly simle to setup since almost everything is auto generated. But what is the "Redirect URIs" in AAF Oauth setup?
I quess that it related to Access manager in some way, but I'm unable to figure otu how

/Lelle


https://www.netiq.com/documentation/access-manager-44/admin/data/b1caobu1.html#adv_auth_server

https://www.netiq.com/documentation/advanced-authentication-56/server-administrator-guide/data/configuring_event.html#t4483o24fnau

Visit my Website for links to Cool Solution articles.
0 Likes
janvdmeij Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

ScorpionSting;2482743 wrote:
https://www.netiq.com/documentation/access-manager-44/admin/data/b1caobu1.html#adv_auth_server

https://www.netiq.com/documentation/advanced-authentication-56/server-administrator-guide/data/configuring_event.html#t4483o24fnau


Fair enough. But the documentation is not crystal clear. E.g. for this situation:

AAF (appliance) has an internal servername for example 'linux07'. But externally the server is known as aaf.domain.com. And the server itself is behind Access Manager. And ofcourse the proxy name is aaf.domain.com in Access Manager. What will be the servername to use in the Redirect URI?

1. The authentication page of the nidp https://login.domain.com
2. The authentication page with the proxy url?

And for Access Manager. Do we use the proxy name in the OAuth plugin or the internal name for AAF?

Jan
0 Likes
lelle1 Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

Have to read slower, I think I done that error before.
Thanks a lot

/Lelle
0 Likes
ScorpionSting Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

janvdmeij;2482769 wrote:
Fair enough. But the documentation is not crystal clear. E.g. for this situation:

AAF (appliance) has an internal servername for example 'linux07'. But externally the server is known as aaf.domain.com. And the server itself is behind Access Manager. And ofcourse the proxy name is aaf.domain.com in Access Manager. What will be the servername to use in the Redirect URI?

1. The authentication page of the nidp https://login.domain.com
2. The authentication page with the proxy url?

And for Access Manager. Do we use the proxy name in the OAuth plugin or the internal name for AAF?

Jan


Because you would have set up your Public external URLs (load balancers) Policy correctly, you would use this URL:

https://blog.varonis.com/introduction-to-oauth/

https://www.csoonline.com/article/3216404/authentication/what-is-oauth-how-the-open-authorization-framework-works.html

Visit my Website for links to Cool Solution articles.
0 Likes
janvdmeij Absent Member.
Absent Member.

Re: Access Manager 4.4 and AAF 6 oauth

ScorpionSting;2482977 wrote:
Because you would have set up your Public external URLs (load balancers) Policy correctly, you would use this URL:

https://blog.varonis.com/introduction-to-oauth/

https://www.csoonline.com/article/3216404/authentication/what-is-oauth-how-the-open-authorization-framework-works.html


I do not see the answer in this response. It only explains Oauth in general.

Jan
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.