Hyland Connect

nielsvreeken · ‎04-12-2007

Hello,

Currently I am trying to integrate Alfresco with Tivoli Access Manager regarding a Single Sign On solution. I hope anyone can give me some good advice with this realization.

Current situation:
- I have configured Tivoli Access Manager (LDAP) to pass the user credentials in the header.
- I still have to login twice, first in Tivoli Access Manager and than in Alfresco webclient.
- In Alfresco you can see that the user credentials are passed in the header. (Login as admin user –> Go to admin console –> Click on â€œHTTP Request Headersâ€ –> Credentials are visible in the header (iv_user))

Desired situation:
- Authentication in Tivoli Access Manager (SSO)
- Authorization in Alfresco
- No Alfresco login screen (replaced by TAM login)

Question:
- How can I remove login Alfresco?
- How can Alfresco be configured to automatically pick up (TAM) credentials from the header to authenticate the user?
- Does anyone have an example of configuration files where Alfresco auhtenticates by using header information.
- Do I also have to configure JBoss to pass the credentials?

Configuration
- JBoss 4
- Alfresco Enterprise 1.4
- Suse 9
- Tivoli Access Manager 5

Many thanks in advance for your help!

Kind regards, Niels.

andy · ‎04-30-2007

Hi

You can use the NovellIChainsHTTPRequestAuthenticationFilterauthentication filter. This takes the user id from the header "x-user". This is on my list to make configurable but is hard coded at the moment.

You need to have SSL between alfresco and your authentication layer or it will trust a user name anyone sends on the header.

Andy

ipuljiz · ‎03-22-2011

hej,

i'm trying to assemble SSO for Alfresco 3.4.d with Tivoli access manager 6.1

How can I do it.

Hyland Connect

Single Sign On (SSO) with Tivoli Access Manager 5